Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu, google mě nenechá vyhledávat

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
TwiggyRamirez
Návštěvník
Návštěvník
Příspěvky: 77
Registrován: 29 čer 2007 14:50

Prosím o kontrolu logu, google mě nenechá vyhledávat

#1 Příspěvek od TwiggyRamirez »

Při google hledaní ve firefoxu vyskočí hláška:
Naše systémy zjistily, že vaše počítačová síť je zdrojem neobvyklého provozu.
Captcha se nezobrazuje.
Prosím o kontolu logu, děkuji.

Log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pivo at 2018-12-05 15:32:55
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 33 GB (5%) free of 700 GB
Total RAM: 3977 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:33:03, on 5.12.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19178)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files\trend micro\Pivo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Služba HP Trust Circles (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 14893 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\Windows\system32\WLANExt.exe 29821888
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
\??\C:\Windows\system32\conhost.exe "8712417192021541106-960289901618748691083167844-1342423634-2136949328-1334409699
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Steam\Steam.exe" -silent
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
-Minimized
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=cs_CZ" "-cachedir=C:\Users\Pivo\AppData\Local\Steam\htmlcache" "-steampid=4716" "-buildid=1543346820" "-steamid=0" "-steamuniverse=Dev" "-clientui=C:\Program Files (x86)\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --disable-features=TouchpadAndWheelScrollLatching,AsyncWheelEvents --enable-media-stream --disable-smooth-scrolling --num-raster-threads=4 --enable-direct-write --disablehighdpi --force-device-scale-factor=1 --device-scale-factor=1 "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Pivo\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1543346820 --initial-client-data=0x1a8,0x1ac,0x1b0,0x1a4,0x1b4,0x7fee5521f78,0x7fee5521f88,0x7fee5521f98
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --lang=cs-CZ --force-device-scale-factor=1 --disablehighdpi --buildid=1543346820 --steamid=0 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --lang=cs-CZ --force-device-scale-factor=1 --disablehighdpi --buildid=1543346820 --steamid=0 --service-request-channel-token=5E61AC8E92F1B5115524410016126260 --mojo-platform-channel-handle=1016 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --force-device-scale-factor=1 --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --service-pipe-token=D5D44266769BD24CE8CF4F2DE107DFAB --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --disable-spell-checking --force-device-scale-factor=1 --disablehighdpi --buildid=1543346820 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=D5D44266769BD24CE8CF4F2DE107DFAB --renderer-client-id=4 --mojo-platform-channel-handle=1508 /prefetch:1
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --force-device-scale-factor=1 --disable-features=AsyncWheelEvents,TouchpadAndWheelScrollLatching --service-pipe-token=FA9B97E28784DBDC997121ECEF800755 --enable-blink-features=ResizeObserver,Worklet,AudioWorklet --lang=cs --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --disable-spell-checking --force-device-scale-factor=1 --disablehighdpi --buildid=1543346820 --steamid=0 --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=FA9B97E28784DBDC997121ECEF800755 --renderer-client-id=5 --mojo-platform-channel-handle=1068 /prefetch:1
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"taskhost.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5408.0.1469238170\816808252" -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - "C:\Users\Pivo\AppData\LocalLow\Mozilla\Temp-{c41db28e-7b50-466c-b092-7e7d34d5ab02}" 5408 "\\.\pipe\gecko-crash-server-pipe.5408" 1292 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5408.1.1128434294\1730351621" -childID 1 -isForBrowser -prefsHandle 1988 -prefMapHandle 1916 -prefsLen 1 -prefMapSize 209222 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5408 "\\.\pipe\gecko-crash-server-pipe.5408" 1932 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5408.13.608170225\2049647452" -childID 2 -isForBrowser -prefsHandle 1940 -prefMapHandle 2624 -prefsLen 1 -prefMapSize 209222 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5408 "\\.\pipe\gecko-crash-server-pipe.5408" 2656 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5408.20.1503527291\213573517" -childID 3 -isForBrowser -prefsHandle 2860 -prefMapHandle 2892 -prefsLen 1 -prefMapSize 209222 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5408 "\\.\pipe\gecko-crash-server-pipe.5408" 2656 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5408.27.1944239096\1638278570" -childID 4 -isForBrowser -prefsHandle 3540 -prefMapHandle 3176 -prefsLen 5140 -prefMapSize 209222 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5408 "\\.\pipe\gecko-crash-server-pipe.5408" 3548 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5408.34.1243590906\682288350" -childID 5 -isForBrowser -prefsHandle 3872 -prefMapHandle 3588 -prefsLen 5140 -prefMapSize 209222 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5408 "\\.\pipe\gecko-crash-server-pipe.5408" 3936 tab

"C:\Program Files (x86)\Winamp\winamp.exe"
"C:\Všehochuť\k shlednuti\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\HPCeeScheduleForPivo.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPivo (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Pivo\AppData\Roaming\Mozilla\Firefox\Profiles\x3v0bf7l.default-1387148469260

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\digitalpersona.com/ChromeDPAgent]
"Description"=
"Path"=C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.191.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.191.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-20 582008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-06-28 66176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-20 245112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-08-07 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-07-30 36352]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-07-04 1703424]
""= []
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-11-21 242392]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-06-28 132736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2018-11-26 3131680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Pivo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^iRadio.lnk]
C:\Users\Pivo\AppData\Roaming\iRadioDesktop\iRadioDesktop.exe [2015-03-17 73728]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2013-08-16 185144]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-22 292848]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-06-24 136488]
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-06-24 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-12 110144]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-05-21 493528]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2013-08-07 2213592]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-05-08 959904]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-10-16 77088]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
""= []
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06 601424]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-06-28 132736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-11-29 18:09:46 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2018-11-29 18:09:46 ----D---- C:\Program Files (x86)\AGEIA Technologies
2018-11-21 00:07:47 ----A---- C:\Windows\system32\aswBoot.exe
2018-11-15 21:49:55 ----D---- C:\Program Files (x86)\JoWood
2018-11-14 10:56:43 ----A---- C:\Windows\system32\mshtml.dll
2018-11-14 10:56:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-11-14 10:56:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-11-14 10:56:40 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-11-14 10:56:40 ----A---- C:\Windows\system32\ieframe.dll
2018-11-14 10:56:39 ----A---- C:\Windows\system32\wininet.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\tquery.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\win32k.sys
2018-11-14 10:56:38 ----A---- C:\Windows\system32\tquery.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\ole32.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\mssrch.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\iertutil.dll
2018-11-14 10:56:37 ----A---- C:\Windows\system32\rpcss.dll
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-11-14 10:56:36 ----A---- C:\Windows\system32\vbscript.dll
2018-11-14 10:56:36 ----A---- C:\Windows\system32\SearchIndexer.exe
2018-11-14 10:56:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-11-14 10:56:35 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2018-11-14 10:56:35 ----A---- C:\Windows\SYSWOW64\mssph.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\scrobj.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\rpcrt4.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\mssvp.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\mssphtb.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\urlmon.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2018-11-14 10:56:34 ----A---- C:\Windows\system32\ntdll.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\mssph.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-11-14 10:56:34 ----A---- C:\Windows\system32\d3d10warp.dll
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-11-14 10:56:33 ----A---- C:\Windows\system32\SearchFilterHost.exe
2018-11-14 10:56:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-11-14 10:56:32 ----A---- C:\Windows\system32\scrrun.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\jscript9.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\iedkcs32.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\hal.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\wshcon.dll
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\wscript.exe
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\cscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\dispex.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\wshcon.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\wscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\schannel.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\rstrui.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\mssprxy.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\msfeeds.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\lsasrv.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\kerberos.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\dispex.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\cscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\conhost.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\certcli.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\advapi32.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\winsrv.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\wdigest.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\TSpkg.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\srcore.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\smss.exe
2018-11-14 10:56:29 ----A---- C:\Windows\system32\rpchttp.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\ncrypt.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\msv1_0.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\KernelBase.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\kernel32.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\wow64win.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\webcheck.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\ntvdm64.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\ieui.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\processr.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\csrsrv.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\auditpol.exe
2018-11-14 10:56:28 ----A---- C:\Windows\system32\appidsvc.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\appidapi.dll
2018-11-14 10:56:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\wow64.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\sspisrv.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\sspicli.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\lsass.exe
2018-11-14 10:56:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-11-14 10:56:27 ----A---- C:\Windows\system32\cryptbase.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\bcrypt.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\wow64cpu.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\srclient.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\secur32.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\jscript.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\ie4uinit.exe
2018-11-14 10:56:26 ----A---- C:\Windows\system32\drivers\appid.sys
2018-11-14 10:56:26 ----A---- C:\Windows\system32\credssp.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\comcat.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-11-14 10:56:26 ----A---- C:\Windows\system32\apisetschema.dll
2018-11-14 10:56:25 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-11-14 10:56:25 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\ieapfltr.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\dxtrans.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\dxtmsft.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-11-14 10:56:23 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2018-11-14 10:56:23 ----A---- C:\Windows\system32\mshtmled.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\occache.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\mssitlb.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\msscntrs.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\msrating.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\jsproxy.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\jscript9diag.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\inseng.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\ieUnatt.exe
2018-11-14 10:56:22 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\user.exe
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\msshooks.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\msobjs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\iesetup.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\iernonce.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-11-14 10:56:21 ----A---- C:\Windows\system32\adtschema.dll
2018-11-14 10:56:20 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-11-14 10:56:20 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-11-14 10:56:20 ----A---- C:\Windows\system32\oleres.dll
2018-11-14 10:56:20 ----A---- C:\Windows\system32\msaudite.dll
2018-11-14 10:56:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-11-13 19:20:38 ----A---- C:\Windows\system32\drivers\aswKbd.sys

======List of files/folders modified in the last 1 month======

2018-12-05 15:33:03 ----D---- C:\Windows\Prefetch
2018-12-05 15:33:01 ----D---- C:\Windows\system32\drivers\etc
2018-12-05 15:33:01 ----D---- C:\Program Files\trend micro
2018-12-05 15:31:21 ----D---- C:\Windows\Temp
2018-12-05 14:47:42 ----D---- C:\Windows\System32
2018-12-05 14:47:42 ----D---- C:\Windows\inf
2018-12-05 14:47:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-12-05 13:10:59 ----D---- C:\Users\Pivo\AppData\Roaming\DAEMON Tools Lite
2018-12-05 13:10:59 ----D---- C:\Program Files (x86)\Steam
2018-12-05 13:09:55 ----D---- C:\Windows\Minidump
2018-12-05 13:09:55 ----D---- C:\Windows\Logs
2018-12-05 13:09:55 ----D---- C:\Windows\debug
2018-12-05 13:09:55 ----AD---- C:\Windows
2018-12-05 12:36:54 ----D---- C:\Windows\system32\config
2018-12-05 12:20:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-12-05 12:20:24 ----D---- C:\Windows\system32\Macromed
2018-12-05 12:20:22 ----D---- C:\Windows\SYSWOW64\Macromed
2018-12-05 12:13:24 ----D---- C:\ProgramData\PDFC
2018-12-05 12:12:36 ----D---- C:\Users\Pivo\AppData\Roaming\Atheros
2018-12-05 12:11:09 ----D---- C:\Windows\system32\drivers
2018-12-05 02:24:41 ----SHD---- C:\System Volume Information
2018-12-05 01:35:16 ----D---- C:\Users\Pivo\AppData\Roaming\vlc
2018-12-02 12:46:16 ----D---- C:\Windows\system32\Tasks
2018-12-02 12:46:15 ----D---- C:\Windows\Tasks
2018-11-29 18:09:49 ----SHD---- C:\Windows\Installer
2018-11-29 18:09:49 ----SHD---- C:\Config.Msi
2018-11-29 18:09:46 ----RD---- C:\Program Files (x86)
2018-11-27 21:55:34 ----RSD---- C:\Windows\assembly
2018-11-20 01:20:48 ----D---- C:\Program Files\Java
2018-11-20 01:20:46 ----D---- C:\Program Files (x86)\Common Files
2018-11-20 01:17:57 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2018-11-19 23:25:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-11-19 23:15:08 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-11-15 14:18:46 ----D---- C:\Windows\rescache
2018-11-15 13:46:32 ----D---- C:\Windows\Microsoft.NET
2018-11-15 13:29:04 ----D---- C:\Windows\winsxs
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\migration
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\en-US
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-11-15 13:19:54 ----D---- C:\Program Files\Internet Explorer
2018-11-15 13:19:54 ----D---- C:\Program Files (x86)\Internet Explorer
2018-11-15 13:19:53 ----D---- C:\Windows\SysWOW64
2018-11-15 13:19:52 ----D---- C:\Windows\system32\sk-SK
2018-11-15 13:19:52 ----D---- C:\Windows\system32\migration
2018-11-15 13:19:52 ----D---- C:\Windows\system32\en-US
2018-11-15 13:19:52 ----D---- C:\Windows\system32\cs-CZ
2018-11-15 13:19:50 ----D---- C:\Windows\system32\Boot
2018-11-15 13:19:50 ----D---- C:\Windows\AppPatch
2018-11-15 13:19:48 ----D---- C:\Windows\system32\DriverStore
2018-11-15 12:43:38 ----D---- C:\Windows\system32\MRT
2018-11-15 12:32:53 ----AC---- C:\Windows\system32\MRT.exe
2018-11-15 12:31:30 ----D---- C:\Windows\system32\catroot2
2018-11-15 12:20:52 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-11-21 201768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-11-21 346592]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-11-21 59496]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-11-21 87432]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-11-21 380464]
R0 hpdskflt;HP Filter; C:\Windows\system32\drivers\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2013-07-30 666984]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2013-07-30 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hcs.sys [2014-02-22 20464]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\Windows\system32\DRIVERS\PinFile.sys [2014-12-05 49856]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2006-10-18 52760]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 SDDisk2K;SDDisk2K; C:\Windows\system32\DRIVERS\SDDisk2K.sys [2014-12-05 228544]
R0 SDDToki;SDDToki; C:\Windows\system32\DRIVERS\SDDToki.sys [2014-12-05 131264]
R0 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-11-21 201240]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-11-21 230344]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-11-26 239840]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2018-11-21 42288]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-11-21 111800]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-11-21 1028680]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-11-21 469272]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-15 283064]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-11-21 163208]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-11-21 208472]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\drivers\Accelerometer.sys [2013-07-23 43320]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2013-06-28 89800]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2014-11-09 4108288]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2013-06-28 347336]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2013-06-28 116424]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\Windows\system32\drivers\btath_bus.sys [2013-06-28 34384]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\drivers\btath_hcrp.sys [2013-06-28 179432]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2013-06-28 77464]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\drivers\btath_rcp.sys [2013-06-28 137928]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-06-28 589000]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-09-12 80384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 IceKore;IceKore; C:\Windows\system32\DRIVERS\IceKore.sys [2014-03-04 411608]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2016-04-17 4924304]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-22 369648]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-22 790512]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-11-29 100312]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-06-18 872152]
R3 SPUVCbv;SPUVCb Driver Service; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2016-10-23 1513208]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-07-04 550912]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2018-07-18 631536]
S3 AsusVBus;AsusVBus; C:\Windows\system32\DRIVERS\AsusVBus.sys [2017-01-09 39704]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-11-21 46384]
S3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2013-06-28 55448]
S3 ATP;ASUS Touchpad; C:\Windows\system32\DRIVERS\AsusTP.sys [2017-01-09 75584]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-09-12 552960]
S3 cmnxusbser;Mobile Connector USB Device for Legacy Serial Communication LCT2053s 20140303; C:\Windows\system32\DRIVERS\cmnxusbser.sys [2015-11-24 146424]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2013-06-13 65752]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-05-24 455440]
S3 lehidmini;Bluetooth Low Energy Hid Device; C:\Windows\system32\drivers\leath_hid.sys [2013-06-28 39704]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-11-29 476888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SmbDrv;SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [2013-08-19 30448]
S3 SmbDrvI;SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [2013-08-19 34544]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2016-12-21 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-04-03 83768]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-06-28 312448]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-11-21 324000]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CreoService;Služba HP Trust Circles; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2014-03-07 1927128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2013-08-07 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-07-15 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-07-15 294664]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-08-05 500048]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2013-08-07 1758424]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2018-08-23 190784]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-07-30 14696]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2016-04-17 344184]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-11-29 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-11-29 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-11-29 390616]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-03-13 76888]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-07-04 337920]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2018-07-18 247536]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-11-21 8188768]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2013-08-16 1444664]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-14 1129760]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-29 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-29 164984]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2016-04-17 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2013-08-06 558392]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-10-12 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-11-19 216528]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [2007-02-05 112184]
S3 SPTISRV;Sony SPTI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [2007-02-05 75320]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2018-08-08 1683744]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#2 Příspěvek od Rudy »

Zdravím!
Vaše síť nemusíte být jen vy. Může to být kterýkoli počítač umístěný za routerem sítě vašeho providera. Zkusím se na to kouknout. Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

TwiggyRamirez
Návštěvník
Návštěvník
Příspěvky: 77
Registrován: 29 čer 2007 14:50

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#3 Příspěvek od TwiggyRamirez »

# -------------------------------
# Malwarebytes AdwCleaner 7.2.5.0
# -------------------------------
# Build: 11-26-2018
# Database: 2018-12-03.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-05-2018
# Duration: 00:00:11
# OS: Windows 7 Professional
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\AppDataLow\Software\Smartbar
Deleted HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1396 octets] - [05/12/2018 16:06:05]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#4 Příspěvek od Rudy »

OK. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

TwiggyRamirez
Návštěvník
Návštěvník
Příspěvky: 77
Registrován: 29 čer 2007 14:50

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#5 Příspěvek od TwiggyRamirez »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Pivo at 2018-12-05 17:41:02
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 50 GB (7%) free of 700 GB
Total RAM: 3977 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:41:16, on 5.12.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19178)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Pivo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Služba HP Trust Circles (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 14722 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\Windows\system32\WLANExt.exe 33153808
\??\C:\Windows\system32\conhost.exe "1106101722310142943-143437990-58051123011286255302094255655-335251985741999926
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
-Minimized
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6292.0.323790492\847821533" -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - "C:\Users\Pivo\AppData\LocalLow\Mozilla\Temp-{c41db28e-7b50-466c-b092-7e7d34d5ab02}" 6292 "\\.\pipe\gecko-crash-server-pipe.6292" 1272 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6292.3.539537762\1300794275" -childID 1 -isForBrowser -prefsHandle 2012 -prefMapHandle 2008 -prefsLen 1 -prefMapSize 209304 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 6292 "\\.\pipe\gecko-crash-server-pipe.6292" 2032 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6292.13.2070033257\569661630" -childID 2 -isForBrowser -prefsHandle 1780 -prefMapHandle 1788 -prefsLen 1 -prefMapSize 209304 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 6292 "\\.\pipe\gecko-crash-server-pipe.6292" 2452 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6292.20.1516079675\335505439" -childID 3 -isForBrowser -prefsHandle 3080 -prefMapHandle 3084 -prefsLen 4004 -prefMapSize 209304 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 6292 "\\.\pipe\gecko-crash-server-pipe.6292" 3096 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6292.27.48659198\2035543517" -childID 4 -isForBrowser -prefsHandle 3704 -prefMapHandle 1736 -prefsLen 5069 -prefMapSize 209304 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 6292 "\\.\pipe\gecko-crash-server-pipe.6292" 3680 tab
"taskhost.exe"
"C:\Všehochuť\k shlednuti\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\HPCeeScheduleForPivo.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPivo (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Pivo\AppData\Roaming\Mozilla\Firefox\Profiles\x3v0bf7l.default-1387148469260

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\digitalpersona.com/ChromeDPAgent]
"Description"=
"Path"=C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.191.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.191.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-20 582008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-06-28 66176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-20 245112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-08-07 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-07-30 36352]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-07-04 1703424]
""= []
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-11-21 242392]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-06-28 132736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2018-11-26 3131680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Pivo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^iRadio.lnk]
C:\Users\Pivo\AppData\Roaming\iRadioDesktop\iRadioDesktop.exe [2015-03-17 73728]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2013-08-16 185144]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-22 292848]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-06-24 136488]
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-06-24 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-12 110144]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-05-21 493528]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2013-08-07 2213592]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-05-08 959904]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-10-16 77088]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
""= []
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06 601424]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-06-28 132736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-12-05 16:07:18 ----HD---- C:\$AV_ASW
2018-11-29 18:09:46 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2018-11-29 18:09:46 ----D---- C:\Program Files (x86)\AGEIA Technologies
2018-11-21 00:07:47 ----A---- C:\Windows\system32\aswBoot.exe
2018-11-15 21:49:55 ----D---- C:\Program Files (x86)\JoWood
2018-11-14 10:56:43 ----A---- C:\Windows\system32\mshtml.dll
2018-11-14 10:56:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-11-14 10:56:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-11-14 10:56:40 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-11-14 10:56:40 ----A---- C:\Windows\system32\ieframe.dll
2018-11-14 10:56:39 ----A---- C:\Windows\system32\wininet.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\tquery.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\win32k.sys
2018-11-14 10:56:38 ----A---- C:\Windows\system32\tquery.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\ole32.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\mssrch.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\iertutil.dll
2018-11-14 10:56:37 ----A---- C:\Windows\system32\rpcss.dll
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-11-14 10:56:36 ----A---- C:\Windows\system32\vbscript.dll
2018-11-14 10:56:36 ----A---- C:\Windows\system32\SearchIndexer.exe
2018-11-14 10:56:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-11-14 10:56:35 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2018-11-14 10:56:35 ----A---- C:\Windows\SYSWOW64\mssph.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\scrobj.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\rpcrt4.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\mssvp.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\mssphtb.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\urlmon.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2018-11-14 10:56:34 ----A---- C:\Windows\system32\ntdll.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\mssph.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-11-14 10:56:34 ----A---- C:\Windows\system32\d3d10warp.dll
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-11-14 10:56:33 ----A---- C:\Windows\system32\SearchFilterHost.exe
2018-11-14 10:56:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-11-14 10:56:32 ----A---- C:\Windows\system32\scrrun.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\jscript9.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\iedkcs32.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\hal.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\wshcon.dll
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\wscript.exe
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\cscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\dispex.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\wshcon.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\wscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\schannel.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\rstrui.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\mssprxy.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\msfeeds.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\lsasrv.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\kerberos.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\dispex.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\cscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\conhost.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\certcli.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\advapi32.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\winsrv.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\wdigest.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\TSpkg.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\srcore.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\smss.exe
2018-11-14 10:56:29 ----A---- C:\Windows\system32\rpchttp.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\ncrypt.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\msv1_0.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\KernelBase.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\kernel32.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\wow64win.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\webcheck.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\ntvdm64.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\ieui.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\processr.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\csrsrv.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\auditpol.exe
2018-11-14 10:56:28 ----A---- C:\Windows\system32\appidsvc.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\appidapi.dll
2018-11-14 10:56:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\wow64.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\sspisrv.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\sspicli.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\lsass.exe
2018-11-14 10:56:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-11-14 10:56:27 ----A---- C:\Windows\system32\cryptbase.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\bcrypt.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\wow64cpu.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\srclient.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\secur32.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\jscript.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\ie4uinit.exe
2018-11-14 10:56:26 ----A---- C:\Windows\system32\drivers\appid.sys
2018-11-14 10:56:26 ----A---- C:\Windows\system32\credssp.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\comcat.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-11-14 10:56:26 ----A---- C:\Windows\system32\apisetschema.dll
2018-11-14 10:56:25 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-11-14 10:56:25 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\ieapfltr.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\dxtrans.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\dxtmsft.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-11-14 10:56:23 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2018-11-14 10:56:23 ----A---- C:\Windows\system32\mshtmled.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\occache.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\mssitlb.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\msscntrs.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\msrating.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\jsproxy.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\jscript9diag.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\inseng.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\ieUnatt.exe
2018-11-14 10:56:22 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\user.exe
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\msshooks.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\msobjs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\iesetup.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\iernonce.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-11-14 10:56:21 ----A---- C:\Windows\system32\adtschema.dll
2018-11-14 10:56:20 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-11-14 10:56:20 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-11-14 10:56:20 ----A---- C:\Windows\system32\oleres.dll
2018-11-14 10:56:20 ----A---- C:\Windows\system32\msaudite.dll
2018-11-14 10:56:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-11-13 19:20:38 ----A---- C:\Windows\system32\drivers\aswKbd.sys

======List of files/folders modified in the last 1 month======

2018-12-05 17:41:13 ----D---- C:\Program Files\trend micro
2018-12-05 17:35:12 ----D---- C:\Windows\system32\config
2018-12-05 17:33:54 ----D---- C:\Windows\Prefetch
2018-12-05 17:32:21 ----D---- C:\Windows\Temp
2018-12-05 16:16:24 ----D---- C:\Windows\System32
2018-12-05 16:16:24 ----D---- C:\Windows\inf
2018-12-05 16:16:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-12-05 16:10:58 ----D---- C:\ProgramData\PDFC
2018-12-05 16:10:47 ----D---- C:\Program Files (x86)\Steam
2018-12-05 16:10:36 ----AD---- C:\Windows
2018-12-05 16:07:23 ----D---- C:\Windows\system32\Tasks
2018-12-05 16:06:05 ----D---- C:\AdwCleaner
2018-12-05 15:33:01 ----D---- C:\Windows\system32\drivers\etc
2018-12-05 13:10:59 ----D---- C:\Users\Pivo\AppData\Roaming\DAEMON Tools Lite
2018-12-05 13:09:55 ----D---- C:\Windows\Minidump
2018-12-05 13:09:55 ----D---- C:\Windows\Logs
2018-12-05 13:09:55 ----D---- C:\Windows\debug
2018-12-05 12:20:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-12-05 12:20:24 ----D---- C:\Windows\system32\Macromed
2018-12-05 12:20:22 ----D---- C:\Windows\SYSWOW64\Macromed
2018-12-05 12:12:36 ----D---- C:\Users\Pivo\AppData\Roaming\Atheros
2018-12-05 12:11:09 ----D---- C:\Windows\system32\drivers
2018-12-05 02:24:41 ----SHD---- C:\System Volume Information
2018-12-05 01:35:16 ----D---- C:\Users\Pivo\AppData\Roaming\vlc
2018-12-02 12:46:15 ----D---- C:\Windows\Tasks
2018-11-29 18:09:49 ----SHD---- C:\Windows\Installer
2018-11-29 18:09:49 ----SHD---- C:\Config.Msi
2018-11-29 18:09:46 ----RD---- C:\Program Files (x86)
2018-11-27 21:55:34 ----RSD---- C:\Windows\assembly
2018-11-20 01:20:48 ----D---- C:\Program Files\Java
2018-11-20 01:20:46 ----D---- C:\Program Files (x86)\Common Files
2018-11-20 01:17:57 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2018-11-19 23:25:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-11-19 23:15:08 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-11-15 14:18:46 ----D---- C:\Windows\rescache
2018-11-15 13:46:32 ----D---- C:\Windows\Microsoft.NET
2018-11-15 13:29:04 ----D---- C:\Windows\winsxs
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\migration
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\en-US
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-11-15 13:19:54 ----D---- C:\Program Files\Internet Explorer
2018-11-15 13:19:54 ----D---- C:\Program Files (x86)\Internet Explorer
2018-11-15 13:19:53 ----D---- C:\Windows\SysWOW64
2018-11-15 13:19:52 ----D---- C:\Windows\system32\sk-SK
2018-11-15 13:19:52 ----D---- C:\Windows\system32\migration
2018-11-15 13:19:52 ----D---- C:\Windows\system32\en-US
2018-11-15 13:19:52 ----D---- C:\Windows\system32\cs-CZ
2018-11-15 13:19:50 ----D---- C:\Windows\system32\Boot
2018-11-15 13:19:50 ----D---- C:\Windows\AppPatch
2018-11-15 13:19:48 ----D---- C:\Windows\system32\DriverStore
2018-11-15 12:43:38 ----D---- C:\Windows\system32\MRT
2018-11-15 12:32:53 ----AC---- C:\Windows\system32\MRT.exe
2018-11-15 12:31:30 ----D---- C:\Windows\system32\catroot2
2018-11-15 12:20:52 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-11-21 201768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-11-21 346592]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-11-21 59496]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-11-21 87432]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-11-21 380464]
R0 hpdskflt;HP Filter; C:\Windows\system32\drivers\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2013-07-30 666984]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2013-07-30 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hcs.sys [2014-02-22 20464]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\Windows\system32\DRIVERS\PinFile.sys [2014-12-05 49856]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2006-10-18 52760]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 SDDisk2K;SDDisk2K; C:\Windows\system32\DRIVERS\SDDisk2K.sys [2014-12-05 228544]
R0 SDDToki;SDDToki; C:\Windows\system32\DRIVERS\SDDToki.sys [2014-12-05 131264]
R0 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-11-21 201240]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-11-21 230344]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-11-26 239840]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2018-11-21 42288]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-11-21 111800]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-11-21 1028680]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-11-21 469272]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-15 283064]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-11-21 163208]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-11-21 208472]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\drivers\Accelerometer.sys [2013-07-23 43320]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2013-06-28 89800]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2014-11-09 4108288]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2013-06-28 347336]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2013-06-28 116424]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\Windows\system32\drivers\btath_bus.sys [2013-06-28 34384]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\drivers\btath_hcrp.sys [2013-06-28 179432]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2013-06-28 77464]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\drivers\btath_rcp.sys [2013-06-28 137928]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-06-28 589000]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-09-12 80384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 IceKore;IceKore; C:\Windows\system32\DRIVERS\IceKore.sys [2014-03-04 411608]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2016-04-17 4924304]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-22 369648]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-22 790512]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-11-29 100312]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-06-18 872152]
R3 SPUVCbv;SPUVCb Driver Service; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2016-10-23 1513208]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-07-04 550912]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2018-07-18 631536]
S3 AsusVBus;AsusVBus; C:\Windows\system32\DRIVERS\AsusVBus.sys [2017-01-09 39704]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-11-21 46384]
S3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2013-06-28 55448]
S3 ATP;ASUS Touchpad; C:\Windows\system32\DRIVERS\AsusTP.sys [2017-01-09 75584]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-09-12 552960]
S3 cmnxusbser;Mobile Connector USB Device for Legacy Serial Communication LCT2053s 20140303; C:\Windows\system32\DRIVERS\cmnxusbser.sys [2015-11-24 146424]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2013-06-13 65752]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-05-24 455440]
S3 lehidmini;Bluetooth Low Energy Hid Device; C:\Windows\system32\drivers\leath_hid.sys [2013-06-28 39704]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-11-29 476888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SmbDrv;SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [2013-08-19 30448]
S3 SmbDrvI;SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [2013-08-19 34544]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2016-12-21 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-04-03 83768]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-06-28 312448]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-11-21 324000]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CreoService;Služba HP Trust Circles; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2014-03-07 1927128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2013-08-07 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-07-15 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-07-15 294664]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-08-05 500048]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2013-08-07 1758424]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2018-08-23 190784]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-07-30 14696]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2016-04-17 344184]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-11-29 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-11-29 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-11-29 390616]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-03-13 76888]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-07-04 337920]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2018-07-18 247536]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-11-21 8188768]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2013-08-16 1444664]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-14 1129760]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-29 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-29 164984]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2016-04-17 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2013-08-06 558392]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-10-12 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-11-19 216528]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [2007-02-05 112184]
S3 SPTISRV;Sony SPTI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [2007-02-05 75320]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2018-08-08 1683744]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files\Bonjour

:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:services
Bonjour Service

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

TwiggyRamirez
Návštěvník
Návštěvník
Příspěvky: 77
Registrován: 29 čer 2007 14:50

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#7 Příspěvek od TwiggyRamirez »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Pivo at 2018-12-05 19:08:51
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 50 GB (7%) free of 700 GB
Total RAM: 3977 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:09:00, on 5.12.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19178)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Pivo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Bonjour Service - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Služba HP Trust Circles (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 14821 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"

C:\Windows\system32\svchost.exe -k GPSvcGroup
winlogon.exe
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\Hpservice.exe
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 27073200
\??\C:\Windows\system32\conhost.exe "-1645705432-628390775-932450333-1944737796-15473706001718616568-18683512991448271881
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {C09E57AC-DB64-4375-AE5D-04A4097713E0}
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
AvastUI.exe /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Všehochuť\k shlednuti\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\HPCeeScheduleForPivo.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPivo (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Pivo\AppData\Roaming\Mozilla\Firefox\Profiles\x3v0bf7l.default-1387148469260

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\digitalpersona.com/ChromeDPAgent]
"Description"=
"Path"=C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.191.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.191.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-20 582008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-06-28 66176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-20 245112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-08-07 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-07-30 36352]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-07-04 1703424]
""= []
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-11-21 242392]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-06-28 132736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2018-11-26 3131680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Pivo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^iRadio.lnk]
C:\Users\Pivo\AppData\Roaming\iRadioDesktop\iRadioDesktop.exe [2015-03-17 73728]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2013-08-16 185144]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-22 292848]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-06-24 136488]
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-06-24 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-12 110144]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-05-21 493528]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2013-08-07 2213592]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-05-08 959904]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-10-16 77088]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
""= []
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06 601424]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-06-28 132736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-12-05 19:01:33 ----D---- C:\_OTMoveIt
2018-12-05 16:07:18 ----HD---- C:\$AV_ASW
2018-11-29 18:09:46 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2018-11-29 18:09:46 ----D---- C:\Program Files (x86)\AGEIA Technologies
2018-11-21 00:07:47 ----A---- C:\Windows\system32\aswBoot.exe
2018-11-15 21:49:55 ----D---- C:\Program Files (x86)\JoWood
2018-11-14 10:56:43 ----A---- C:\Windows\system32\mshtml.dll
2018-11-14 10:56:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-11-14 10:56:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-11-14 10:56:40 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-11-14 10:56:40 ----A---- C:\Windows\system32\ieframe.dll
2018-11-14 10:56:39 ----A---- C:\Windows\system32\wininet.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\tquery.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\win32k.sys
2018-11-14 10:56:38 ----A---- C:\Windows\system32\tquery.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\ole32.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\mssrch.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\iertutil.dll
2018-11-14 10:56:37 ----A---- C:\Windows\system32\rpcss.dll
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-11-14 10:56:36 ----A---- C:\Windows\system32\vbscript.dll
2018-11-14 10:56:36 ----A---- C:\Windows\system32\SearchIndexer.exe
2018-11-14 10:56:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-11-14 10:56:35 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2018-11-14 10:56:35 ----A---- C:\Windows\SYSWOW64\mssph.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\scrobj.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\rpcrt4.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\mssvp.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\mssphtb.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\urlmon.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2018-11-14 10:56:34 ----A---- C:\Windows\system32\ntdll.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\mssph.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-11-14 10:56:34 ----A---- C:\Windows\system32\d3d10warp.dll
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-11-14 10:56:33 ----A---- C:\Windows\system32\SearchFilterHost.exe
2018-11-14 10:56:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-11-14 10:56:32 ----A---- C:\Windows\system32\scrrun.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\jscript9.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\iedkcs32.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\hal.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\wshcon.dll
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\wscript.exe
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\cscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\dispex.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\wshcon.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\wscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\schannel.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\rstrui.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\mssprxy.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\msfeeds.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\lsasrv.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\kerberos.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\dispex.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\cscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\conhost.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\certcli.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\advapi32.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\winsrv.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\wdigest.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\TSpkg.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\srcore.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\smss.exe
2018-11-14 10:56:29 ----A---- C:\Windows\system32\rpchttp.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\ncrypt.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\msv1_0.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\KernelBase.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\kernel32.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\wow64win.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\webcheck.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\ntvdm64.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\ieui.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\processr.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\csrsrv.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\auditpol.exe
2018-11-14 10:56:28 ----A---- C:\Windows\system32\appidsvc.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\appidapi.dll
2018-11-14 10:56:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\wow64.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\sspisrv.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\sspicli.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\lsass.exe
2018-11-14 10:56:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-11-14 10:56:27 ----A---- C:\Windows\system32\cryptbase.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\bcrypt.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\wow64cpu.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\srclient.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\secur32.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\jscript.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\ie4uinit.exe
2018-11-14 10:56:26 ----A---- C:\Windows\system32\drivers\appid.sys
2018-11-14 10:56:26 ----A---- C:\Windows\system32\credssp.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\comcat.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-11-14 10:56:26 ----A---- C:\Windows\system32\apisetschema.dll
2018-11-14 10:56:25 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-11-14 10:56:25 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\ieapfltr.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\dxtrans.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\dxtmsft.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-11-14 10:56:23 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2018-11-14 10:56:23 ----A---- C:\Windows\system32\mshtmled.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\occache.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\mssitlb.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\msscntrs.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\msrating.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\jsproxy.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\jscript9diag.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\inseng.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\ieUnatt.exe
2018-11-14 10:56:22 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\user.exe
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\msshooks.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\msobjs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\iesetup.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\iernonce.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-11-14 10:56:21 ----A---- C:\Windows\system32\adtschema.dll
2018-11-14 10:56:20 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-11-14 10:56:20 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-11-14 10:56:20 ----A---- C:\Windows\system32\oleres.dll
2018-11-14 10:56:20 ----A---- C:\Windows\system32\msaudite.dll
2018-11-14 10:56:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-11-13 19:20:38 ----A---- C:\Windows\system32\drivers\aswKbd.sys

======List of files/folders modified in the last 1 month======

2018-12-05 19:08:59 ----D---- C:\Program Files\trend micro
2018-12-05 19:08:16 ----D---- C:\Windows\Prefetch
2018-12-05 19:07:48 ----D---- C:\Program Files (x86)\Steam
2018-12-05 19:06:59 ----D---- C:\Windows\Temp
2018-12-05 19:06:44 ----D---- C:\Windows\System32
2018-12-05 19:06:26 ----D---- C:\Windows\system32\config
2018-12-05 19:06:19 ----AD---- C:\Windows
2018-12-05 19:05:57 ----D---- C:\ProgramData\PDFC
2018-12-05 19:01:34 ----RD---- C:\Program Files
2018-12-05 16:16:24 ----D---- C:\Windows\inf
2018-12-05 16:16:24 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-12-05 16:07:23 ----D---- C:\Windows\system32\Tasks
2018-12-05 16:06:05 ----D---- C:\AdwCleaner
2018-12-05 15:33:01 ----D---- C:\Windows\system32\drivers\etc
2018-12-05 13:10:59 ----D---- C:\Users\Pivo\AppData\Roaming\DAEMON Tools Lite
2018-12-05 13:09:55 ----D---- C:\Windows\Minidump
2018-12-05 13:09:55 ----D---- C:\Windows\Logs
2018-12-05 13:09:55 ----D---- C:\Windows\debug
2018-12-05 12:20:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-12-05 12:20:24 ----D---- C:\Windows\system32\Macromed
2018-12-05 12:20:22 ----D---- C:\Windows\SYSWOW64\Macromed
2018-12-05 12:12:36 ----D---- C:\Users\Pivo\AppData\Roaming\Atheros
2018-12-05 12:11:09 ----D---- C:\Windows\system32\drivers
2018-12-05 02:24:41 ----SHD---- C:\System Volume Information
2018-12-05 01:35:16 ----D---- C:\Users\Pivo\AppData\Roaming\vlc
2018-12-02 12:46:15 ----D---- C:\Windows\Tasks
2018-11-29 18:09:49 ----SHD---- C:\Windows\Installer
2018-11-29 18:09:49 ----SHD---- C:\Config.Msi
2018-11-29 18:09:46 ----RD---- C:\Program Files (x86)
2018-11-27 21:55:34 ----RSD---- C:\Windows\assembly
2018-11-20 01:20:48 ----D---- C:\Program Files\Java
2018-11-20 01:20:46 ----D---- C:\Program Files (x86)\Common Files
2018-11-20 01:17:57 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2018-11-19 23:25:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-11-19 23:15:08 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-11-15 14:18:46 ----D---- C:\Windows\rescache
2018-11-15 13:46:32 ----D---- C:\Windows\Microsoft.NET
2018-11-15 13:29:04 ----D---- C:\Windows\winsxs
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\migration
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\en-US
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-11-15 13:19:54 ----D---- C:\Program Files\Internet Explorer
2018-11-15 13:19:54 ----D---- C:\Program Files (x86)\Internet Explorer
2018-11-15 13:19:53 ----D---- C:\Windows\SysWOW64
2018-11-15 13:19:52 ----D---- C:\Windows\system32\sk-SK
2018-11-15 13:19:52 ----D---- C:\Windows\system32\migration
2018-11-15 13:19:52 ----D---- C:\Windows\system32\en-US
2018-11-15 13:19:52 ----D---- C:\Windows\system32\cs-CZ
2018-11-15 13:19:50 ----D---- C:\Windows\system32\Boot
2018-11-15 13:19:50 ----D---- C:\Windows\AppPatch
2018-11-15 13:19:48 ----D---- C:\Windows\system32\DriverStore
2018-11-15 12:43:38 ----D---- C:\Windows\system32\MRT
2018-11-15 12:32:53 ----AC---- C:\Windows\system32\MRT.exe
2018-11-15 12:31:30 ----D---- C:\Windows\system32\catroot2
2018-11-15 12:20:52 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-11-21 201768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-11-21 346592]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-11-21 59496]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-11-21 87432]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-11-21 380464]
R0 hpdskflt;HP Filter; C:\Windows\system32\drivers\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2013-07-30 666984]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2013-07-30 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hcs.sys [2014-02-22 20464]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\Windows\system32\DRIVERS\PinFile.sys [2014-12-05 49856]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2006-10-18 52760]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 SDDisk2K;SDDisk2K; C:\Windows\system32\DRIVERS\SDDisk2K.sys [2014-12-05 228544]
R0 SDDToki;SDDToki; C:\Windows\system32\DRIVERS\SDDToki.sys [2014-12-05 131264]
R0 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-11-21 201240]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-11-21 230344]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-11-26 239840]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2018-11-21 42288]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-11-21 111800]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-11-21 1028680]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-11-21 469272]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-15 283064]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-11-21 163208]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-11-21 208472]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\drivers\Accelerometer.sys [2013-07-23 43320]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2014-11-09 4108288]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\Windows\system32\drivers\btath_bus.sys [2013-06-28 34384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 IceKore;IceKore; C:\Windows\system32\DRIVERS\IceKore.sys [2014-03-04 411608]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2016-04-17 4924304]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-22 369648]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-22 790512]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-11-29 100312]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-06-18 872152]
R3 SPUVCbv;SPUVCb Driver Service; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2016-10-23 1513208]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-07-04 550912]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2018-07-18 631536]
S3 AsusVBus;AsusVBus; C:\Windows\system32\DRIVERS\AsusVBus.sys [2017-01-09 39704]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-11-21 46384]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2013-06-28 89800]
S3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2013-06-28 55448]
S3 ATP;ASUS Touchpad; C:\Windows\system32\DRIVERS\AsusTP.sys [2017-01-09 75584]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2013-06-28 347336]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2013-06-28 116424]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\drivers\btath_hcrp.sys [2013-06-28 179432]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2013-06-28 77464]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\drivers\btath_rcp.sys [2013-06-28 137928]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-06-28 589000]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-09-12 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-09-12 80384]
S3 cmnxusbser;Mobile Connector USB Device for Legacy Serial Communication LCT2053s 20140303; C:\Windows\system32\DRIVERS\cmnxusbser.sys [2015-11-24 146424]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2013-06-13 65752]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-05-24 455440]
S3 lehidmini;Bluetooth Low Energy Hid Device; C:\Windows\system32\drivers\leath_hid.sys [2013-06-28 39704]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-11-29 476888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SmbDrv;SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [2013-08-19 30448]
S3 SmbDrvI;SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [2013-08-19 34544]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2016-12-21 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-04-03 83768]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-06-28 312448]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-11-21 324000]
R2 CreoService;Služba HP Trust Circles; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2014-03-07 1927128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2013-08-07 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-07-15 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-07-15 294664]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-08-05 500048]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2013-08-07 1758424]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2018-08-23 190784]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-07-30 14696]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2016-04-17 344184]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-11-29 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-11-29 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-11-29 390616]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-03-13 76888]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-07-04 337920]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2018-07-18 247536]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-11-21 8188768]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-14 1129760]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-29 164984]
S2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-29 164984]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2016-04-17 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2013-08-06 558392]
S3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2013-08-16 1444664]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-10-12 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-11-19 216528]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [2007-02-05 112184]
S3 SPTISRV;Sony SPTI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [2007-02-05 75320]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2018-08-08 1683744]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#8 Příspěvek od Rudy »

Bohužel, budete muset spustit ještě jednou, OTM nemazal. Před skenem ale vypněte antivir, zapoměl jsem na to upozornit. Omlouvám se.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

TwiggyRamirez
Návštěvník
Návštěvník
Příspěvky: 77
Registrován: 29 čer 2007 14:50

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#9 Příspěvek od TwiggyRamirez »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Pivo at 2018-12-05 20:19:25
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 49 GB (7%) free of 700 GB
Total RAM: 3977 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:19:28, on 5.12.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19178)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\trend micro\Pivo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: AtherosSvc - Windows (R) Win 7 DDK provider - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Bonjour Service - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Služba HP Trust Circles (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 14740 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\vcsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\Windows\system32\WLANExt.exe 29446816
\??\C:\Windows\system32\conhost.exe "1253123898-424580023-16440548191910670045-971350346-2047132186-1435280348-1548403815
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
taskeng.exe {E5B31CAB-4E0F-4A21-9143-6253F438477B}
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"taskhost.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\PDF Architect\HelperService.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\PDF Architect\ConversionService.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
AvastUI.exe /nogui
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe" /start
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
-Minimized
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
taskeng.exe {20F6C6E4-5BBF-45C8-A77A-A96463F78B05}
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5544.0.992189437\1455999910" -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - "C:\Users\Pivo\AppData\LocalLow\Mozilla\Temp-{c41db28e-7b50-466c-b092-7e7d34d5ab02}" 5544 "\\.\pipe\gecko-crash-server-pipe.5544" 1288 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5544.1.1537000707\1853480439" -childID 1 -isForBrowser -prefsHandle 1980 -prefMapHandle 1976 -prefsLen 1 -prefMapSize 209356 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5544 "\\.\pipe\gecko-crash-server-pipe.5544" 2000 tab
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5544.13.2040277619\1733337375" -childID 2 -isForBrowser -prefsHandle 2480 -prefMapHandle 2484 -prefsLen 1 -prefMapSize 209356 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5544 "\\.\pipe\gecko-crash-server-pipe.5544" 2292 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5544.20.831918351\1857852671" -childID 3 -isForBrowser -prefsHandle 2768 -prefMapHandle 2796 -prefsLen 1 -prefMapSize 209356 -schedulerPrefs 0001,2 -parentBuildID 20181114214635 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5544 "\\.\pipe\gecko-crash-server-pipe.5544" 2984 tab
taskhost.exe $(Arg0)
"C:\Všehochuť\k shlednuti\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\HPCeeScheduleForPivo.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPivo (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Pivo\AppData\Roaming\Mozilla\Firefox\Profiles\x3v0bf7l.default-1387148469260

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\digitalpersona.com/ChromeDPAgent]
"Description"=
"Path"=C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.101 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@cuminas.jp/DjVuPlugin]
"Description"=Document Express DjVu Plug-in
"Path"=C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.191.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.191.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-20 582008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-06-28 66176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-20 245112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2013-08-07 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08 92208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-07-30 36352]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-07-04 1703424]
""= []
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-11-21 242392]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-06-28 132736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2018-11-26 3131680]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Pivo^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^iRadio.lnk]
C:\Users\Pivo\AppData\Roaming\iRadioDesktop\iRadioDesktop.exe [2015-03-17 73728]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2013-08-16 185144]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2014-02-22 292848]
"YouCam Mirage"=c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2013-06-24 136488]
"YouCam Tray"=c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [2013-06-24 167488]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-12 110144]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-05-21 493528]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2013-08-07 2213592]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-05-08 959904]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2013-10-16 77088]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [2014-05-16 336672]
""= []
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06 601424]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-06-28 132736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-12-05 19:01:33 ----D---- C:\_OTMoveIt
2018-12-05 16:07:18 ----HD---- C:\$AV_ASW
2018-11-29 18:09:46 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2018-11-29 18:09:46 ----D---- C:\Program Files (x86)\AGEIA Technologies
2018-11-21 00:07:47 ----A---- C:\Windows\system32\aswBoot.exe
2018-11-15 21:49:55 ----D---- C:\Program Files (x86)\JoWood
2018-11-14 10:56:43 ----A---- C:\Windows\system32\mshtml.dll
2018-11-14 10:56:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-11-14 10:56:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-11-14 10:56:40 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-11-14 10:56:40 ----A---- C:\Windows\system32\ieframe.dll
2018-11-14 10:56:39 ----A---- C:\Windows\system32\wininet.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\tquery.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2018-11-14 10:56:38 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\win32k.sys
2018-11-14 10:56:38 ----A---- C:\Windows\system32\tquery.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\ole32.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\mssrch.dll
2018-11-14 10:56:38 ----A---- C:\Windows\system32\iertutil.dll
2018-11-14 10:56:37 ----A---- C:\Windows\system32\rpcss.dll
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2018-11-14 10:56:36 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-11-14 10:56:36 ----A---- C:\Windows\system32\vbscript.dll
2018-11-14 10:56:36 ----A---- C:\Windows\system32\SearchIndexer.exe
2018-11-14 10:56:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-11-14 10:56:35 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2018-11-14 10:56:35 ----A---- C:\Windows\SYSWOW64\mssph.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\scrobj.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\rpcrt4.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\mssvp.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\mssphtb.dll
2018-11-14 10:56:35 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\scrobj.dll
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-11-14 10:56:34 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\urlmon.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2018-11-14 10:56:34 ----A---- C:\Windows\system32\ntdll.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\mssph.dll
2018-11-14 10:56:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-11-14 10:56:34 ----A---- C:\Windows\system32\d3d10warp.dll
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-11-14 10:56:33 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-11-14 10:56:33 ----A---- C:\Windows\system32\SearchFilterHost.exe
2018-11-14 10:56:33 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-11-14 10:56:32 ----A---- C:\Windows\system32\scrrun.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\jscript9.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\iedkcs32.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\hal.dll
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-11-14 10:56:32 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\wshcon.dll
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\wscript.exe
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2018-11-14 10:56:31 ----A---- C:\Windows\SYSWOW64\cscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\dispex.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2018-11-14 10:56:30 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\wshcon.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\wscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\schannel.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\rstrui.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\mssprxy.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\msfeeds.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\lsasrv.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\kerberos.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\dispex.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\cscript.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\conhost.exe
2018-11-14 10:56:30 ----A---- C:\Windows\system32\certcli.dll
2018-11-14 10:56:30 ----A---- C:\Windows\system32\advapi32.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-11-14 10:56:29 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\winsrv.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\wdigest.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\TSpkg.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\srcore.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\smss.exe
2018-11-14 10:56:29 ----A---- C:\Windows\system32\rpchttp.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\ncrypt.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\msv1_0.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\KernelBase.dll
2018-11-14 10:56:29 ----A---- C:\Windows\system32\kernel32.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-11-14 10:56:28 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\wow64win.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\webcheck.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\ntvdm64.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\ieui.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\processr.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-11-14 10:56:28 ----A---- C:\Windows\system32\csrsrv.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\auditpol.exe
2018-11-14 10:56:28 ----A---- C:\Windows\system32\appidsvc.dll
2018-11-14 10:56:28 ----A---- C:\Windows\system32\appidapi.dll
2018-11-14 10:56:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\wow64.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\sspisrv.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\sspicli.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\lsass.exe
2018-11-14 10:56:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-11-14 10:56:27 ----A---- C:\Windows\system32\cryptbase.dll
2018-11-14 10:56:27 ----A---- C:\Windows\system32\bcrypt.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-11-14 10:56:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\wow64cpu.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\srclient.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\secur32.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\jscript.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\ie4uinit.exe
2018-11-14 10:56:26 ----A---- C:\Windows\system32\drivers\appid.sys
2018-11-14 10:56:26 ----A---- C:\Windows\system32\credssp.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\comcat.dll
2018-11-14 10:56:26 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-11-14 10:56:26 ----A---- C:\Windows\system32\apisetschema.dll
2018-11-14 10:56:25 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-11-14 10:56:25 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-11-14 10:56:24 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\ieapfltr.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\dxtrans.dll
2018-11-14 10:56:24 ----A---- C:\Windows\system32\dxtmsft.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-11-14 10:56:23 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-11-14 10:56:23 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2018-11-14 10:56:23 ----A---- C:\Windows\system32\mshtmled.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-11-14 10:56:22 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-11-14 10:56:22 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\occache.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\mssitlb.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\msscntrs.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\msrating.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\jsproxy.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\jscript9diag.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\inseng.dll
2018-11-14 10:56:22 ----A---- C:\Windows\system32\ieUnatt.exe
2018-11-14 10:56:22 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\user.exe
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-11-14 10:56:21 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\msshooks.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\msobjs.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\iesetup.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\iernonce.dll
2018-11-14 10:56:21 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-11-14 10:56:21 ----A---- C:\Windows\system32\adtschema.dll
2018-11-14 10:56:20 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-11-14 10:56:20 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-11-14 10:56:20 ----A---- C:\Windows\system32\oleres.dll
2018-11-14 10:56:20 ----A---- C:\Windows\system32\msaudite.dll
2018-11-14 10:56:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-11-13 19:20:38 ----A---- C:\Windows\system32\drivers\aswKbd.sys

======List of files/folders modified in the last 1 month======

2018-12-05 20:19:28 ----D---- C:\Program Files\trend micro
2018-12-05 20:17:20 ----D---- C:\Windows\Temp
2018-12-05 20:14:45 ----D---- C:\Windows\Prefetch
2018-12-05 20:14:40 ----D---- C:\Program Files (x86)\Steam
2018-12-05 20:14:19 ----D---- C:\Windows\System32
2018-12-05 20:14:01 ----D---- C:\Windows\system32\config
2018-12-05 20:13:31 ----D---- C:\ProgramData\PDFC
2018-12-05 20:13:25 ----AD---- C:\Windows
2018-12-05 19:11:03 ----D---- C:\Windows\inf
2018-12-05 19:11:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-12-05 19:01:34 ----RD---- C:\Program Files
2018-12-05 16:07:23 ----D---- C:\Windows\system32\Tasks
2018-12-05 16:06:05 ----D---- C:\AdwCleaner
2018-12-05 15:33:01 ----D---- C:\Windows\system32\drivers\etc
2018-12-05 13:10:59 ----D---- C:\Users\Pivo\AppData\Roaming\DAEMON Tools Lite
2018-12-05 13:09:55 ----D---- C:\Windows\Minidump
2018-12-05 13:09:55 ----D---- C:\Windows\Logs
2018-12-05 13:09:55 ----D---- C:\Windows\debug
2018-12-05 12:20:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-12-05 12:20:24 ----D---- C:\Windows\system32\Macromed
2018-12-05 12:20:22 ----D---- C:\Windows\SYSWOW64\Macromed
2018-12-05 12:12:36 ----D---- C:\Users\Pivo\AppData\Roaming\Atheros
2018-12-05 12:11:09 ----D---- C:\Windows\system32\drivers
2018-12-05 02:24:41 ----SHD---- C:\System Volume Information
2018-12-05 01:35:16 ----D---- C:\Users\Pivo\AppData\Roaming\vlc
2018-12-02 12:46:15 ----D---- C:\Windows\Tasks
2018-11-29 18:09:49 ----SHD---- C:\Windows\Installer
2018-11-29 18:09:49 ----SHD---- C:\Config.Msi
2018-11-29 18:09:46 ----RD---- C:\Program Files (x86)
2018-11-27 21:55:34 ----RSD---- C:\Windows\assembly
2018-11-20 01:20:48 ----D---- C:\Program Files\Java
2018-11-20 01:20:46 ----D---- C:\Program Files (x86)\Common Files
2018-11-20 01:17:57 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2018-11-19 23:25:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-11-19 23:15:08 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-11-15 14:18:46 ----D---- C:\Windows\rescache
2018-11-15 13:46:32 ----D---- C:\Windows\Microsoft.NET
2018-11-15 13:29:04 ----D---- C:\Windows\winsxs
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\migration
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\en-US
2018-11-15 13:19:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-11-15 13:19:54 ----D---- C:\Program Files\Internet Explorer
2018-11-15 13:19:54 ----D---- C:\Program Files (x86)\Internet Explorer
2018-11-15 13:19:53 ----D---- C:\Windows\SysWOW64
2018-11-15 13:19:52 ----D---- C:\Windows\system32\sk-SK
2018-11-15 13:19:52 ----D---- C:\Windows\system32\migration
2018-11-15 13:19:52 ----D---- C:\Windows\system32\en-US
2018-11-15 13:19:52 ----D---- C:\Windows\system32\cs-CZ
2018-11-15 13:19:50 ----D---- C:\Windows\system32\Boot
2018-11-15 13:19:50 ----D---- C:\Windows\AppPatch
2018-11-15 13:19:48 ----D---- C:\Windows\system32\DriverStore
2018-11-15 12:43:38 ----D---- C:\Windows\system32\MRT
2018-11-15 12:32:53 ----AC---- C:\Windows\system32\MRT.exe
2018-11-15 12:31:30 ----D---- C:\Windows\system32\catroot2
2018-11-15 12:20:52 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-11-21 201768]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-11-21 346592]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-11-21 59496]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-11-21 87432]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-11-21 380464]
R0 hpdskflt;HP Filter; C:\Windows\system32\drivers\hpdskflt.sys [2013-07-23 30520]
R0 iaStorA;iaStorA; C:\Windows\system32\drivers\iaStorA.sys [2013-07-30 666984]
R0 iaStorF;iaStorF; C:\Windows\system32\drivers\iaStorF.sys [2013-07-30 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hcs.sys [2014-02-22 20464]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\Windows\system32\DRIVERS\PinFile.sys [2014-12-05 49856]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2006-10-18 52760]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 SDDisk2K;SDDisk2K; C:\Windows\system32\DRIVERS\SDDisk2K.sys [2014-12-05 228544]
R0 SDDToki;SDDToki; C:\Windows\system32\DRIVERS\SDDToki.sys [2014-12-05 131264]
R0 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-11-21 201240]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-11-21 230344]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-11-26 239840]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2018-11-21 42288]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-11-21 111800]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-11-21 1028680]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-11-21 469272]
R1 CLVirtualDrive;CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-15 283064]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-11-21 163208]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-11-21 208472]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\drivers\Accelerometer.sys [2013-07-23 43320]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2014-11-09 4108288]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus; C:\Windows\system32\drivers\btath_bus.sys [2013-06-28 34384]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2013-11-19 26936]
R3 IceKore;IceKore; C:\Windows\system32\DRIVERS\IceKore.sys [2014-03-04 411608]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2016-04-17 4924304]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2014-02-22 369648]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2014-02-22 790512]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2014-11-29 100312]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-06-18 872152]
R3 SPUVCbv;SPUVCb Driver Service; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2016-10-23 1513208]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-07-04 550912]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2018-07-18 631536]
S3 AsusVBus;AsusVBus; C:\Windows\system32\DRIVERS\AsusVBus.sys [2017-01-09 39704]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-11-21 46384]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2013-06-28 89800]
S3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2013-06-28 55448]
S3 ATP;ASUS Touchpad; C:\Windows\system32\DRIVERS\AsusTP.sys [2017-01-09 75584]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2013-06-28 347336]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2013-06-28 116424]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\drivers\btath_hcrp.sys [2013-06-28 179432]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2013-06-28 77464]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\drivers\btath_rcp.sys [2013-06-28 137928]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2013-06-28 589000]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-09-12 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-09-12 80384]
S3 cmnxusbser;Mobile Connector USB Device for Legacy Serial Communication LCT2053s 20140303; C:\Windows\system32\DRIVERS\cmnxusbser.sys [2015-11-24 146424]
S3 DAMDrv;DAMDrv; C:\Windows\system32\DRIVERS\DAMDrv64.sys [2013-06-13 65752]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-05-24 455440]
S3 lehidmini;Bluetooth Low Energy Hid Device; C:\Windows\system32\drivers\leath_hid.sys [2013-06-28 39704]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2014-11-29 476888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 SmbDrv;SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [2013-08-19 30448]
S3 SmbDrvI;SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [2013-08-19 34544]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2016-12-21 54784]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-04-03 83768]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-06-28 312448]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-11-21 324000]
R2 CreoService;Služba HP Trust Circles; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2014-03-07 1927128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2013-08-07 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-07-15 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-07-15 294664]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2013-08-05 500048]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2015-05-19 99128]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2013-08-07 1758424]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [2014-05-16 683296]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2013-07-23 43320]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2018-08-23 190784]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-07-30 14696]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2016-04-17 344184]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-11-29 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-11-29 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-11-29 390616]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-04-08 1320496]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-04-08 799280]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2013-07-18 1143432]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2014-03-13 76888]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2013-07-04 337920]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2018-07-18 247536]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-11-21 8188768]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2013-08-16 1444664]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2013-05-14 1129760]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-29 164984]
S2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-29 164984]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2016-04-17 279160]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2013-08-06 558392]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-10-12 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-11-19 216528]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [2007-02-05 112184]
S3 SPTISRV;Sony SPTI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [2007-02-05 75320]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2018-08-08 1683744]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#10 Příspěvek od Rudy »

Teď je to OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

TwiggyRamirez
Návštěvník
Návštěvník
Příspěvky: 77
Registrován: 29 čer 2007 14:50

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#11 Příspěvek od TwiggyRamirez »

Ano, při vyhledávání už chybová hláška nevyskakuje.

Děkuji mnohokrát :idea:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu, google mě nenechá vyhledávat

#12 Příspěvek od Rudy »

OK. Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno