Dobrý den, prosím o kontrolu LOGu. Zpomaleny firefox a zaroven cely pocitac, velke vytizeni procesoru, podezdreni na nejaky proces na pozadi. Předem moc děkuji. Lukasenko.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2019-03-12 20:41:42
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 259 GB (85%) free of 305 GB
Total RAM: 4095 MB (26% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:41:43, on 12.3.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19267)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\trend micro\Uzivatel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7451 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
"C:\Program Files\ESET\ESET Security\ekrn.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
taskeng.exe {663692EB-8D46-4F5C-A51B-AD3A16A76672}
taskeng.exe {9A984FBD-DE2D-4B67-A9B2-63183B0E91DA}
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "17523121931112055135-1090918719-1041487083191670706-16787122131325201940241828807
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe" --IPCport 5939
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -scheduled -critical
"C:\Windows\system32\wuauclt.exe"
"taskhost.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1788.1.1921858904\1538433694" -childID 1 -isForBrowser -prefsHandle 1776 -prefMapHandle 1200 -prefsLen 1 -prefMapSize 185772 -schedulerPrefs 0001,2 -parentBuildID 20190225143501 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 1788 "\\.\pipe\gecko-crash-server-pipe.1788" 1088 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1788.7.1629329673\472799876" -childID 2 -isForBrowser -prefsHandle 2484 -prefMapHandle 2492 -prefsLen 177 -prefMapSize 185772 -schedulerPrefs 0001,2 -parentBuildID 20190225143501 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 1788 "\\.\pipe\gecko-crash-server-pipe.1788" 2504 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1788.25.2104638538\1122646713" -childID 5 -isForBrowser -prefsHandle 3448 -prefMapHandle 7548 -prefsLen 6696 -prefMapSize 185772 -schedulerPrefs 0001,2 -parentBuildID 20190225143501 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 1788 "\\.\pipe\gecko-crash-server-pipe.1788" 2308 tab
taskmgr.exe /3
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Uzivatel\Desktop\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\vtftcc7w.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.161.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.161.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-01-27 474688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-27 188992]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2018-12-13 177928]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-04-13 18368512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2019-02-21 53540200]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-08-19 170624]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-12-19 587288]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-03-12 20:37:06 ----D---- C:\rsit
2019-03-12 20:37:06 ----D---- C:\Program Files\trend micro
2019-02-13 09:09:05 ----A---- C:\Windows\system32\mshtml.dll
2019-02-13 09:09:04 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-02-13 09:09:03 ----A---- C:\Windows\system32\ieframe.dll
2019-02-13 09:08:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2019-02-13 09:08:57 ----A---- C:\Windows\system32\wininet.dll
2019-02-13 09:08:57 ----A---- C:\Windows\system32\jscript9.dll
2019-02-13 09:08:56 ----A---- C:\Windows\SYSWOW64\wininet.dll
2019-02-13 09:08:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2019-02-13 09:08:55 ----A---- C:\Windows\system32\win32k.sys
2019-02-13 09:08:55 ----A---- C:\Windows\system32\urlmon.dll
2019-02-13 09:08:55 ----A---- C:\Windows\system32\msi.dll
2019-02-13 09:08:54 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2019-02-13 09:08:54 ----A---- C:\Windows\SYSWOW64\msi.dll
2019-02-13 09:08:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2019-02-13 09:08:53 ----A---- C:\Windows\SYSWOW64\msjet40.dll
2019-02-13 09:08:53 ----A---- C:\Windows\system32\ucrtbase.dll
2019-02-13 09:08:53 ----A---- C:\Windows\system32\termsrv.dll
2019-02-13 09:08:53 ----A---- C:\Windows\system32\kernel32.dll
2019-02-13 09:08:53 ----A---- C:\Windows\system32\iertutil.dll
2019-02-13 09:08:52 ----A---- C:\Windows\SYSWOW64\msrd2x40.dll
2019-02-13 09:08:52 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2019-02-13 09:08:52 ----A---- C:\Windows\system32\KernelBase.dll
2019-02-13 09:08:51 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2019-02-13 09:08:51 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2019-02-13 09:08:51 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2019-02-13 09:08:51 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2019-02-13 09:08:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2019-02-13 09:08:51 ----A---- C:\Windows\SYSWOW64\itss.dll
2019-02-13 09:08:51 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2019-02-13 09:08:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-02-13 09:08:51 ----A---- C:\Windows\system32\mf3216.dll
2019-02-13 09:08:51 ----A---- C:\Windows\system32\itss.dll
2019-02-13 09:08:51 ----A---- C:\Windows\system32\drivers\srv2.sys
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\iedkcs32.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\consent.exe
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2019-02-13 09:08:50 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2019-02-13 09:08:49 ----A---- C:\Windows\SYSWOW64\sscore.dll
2019-02-13 09:08:49 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2019-02-13 09:08:49 ----A---- C:\Windows\SYSWOW64\msrd3x40.dll
2019-02-13 09:08:49 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2019-02-13 09:08:49 ----A---- C:\Windows\SYSWOW64\certcli.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\sscore.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\srvsvc.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\oleaut32.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\ntdll.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\jscript.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\itircl.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\hal.dll
2019-02-13 09:08:49 ----A---- C:\Windows\system32\drivers\srvnet.sys
2019-02-13 09:08:49 ----A---- C:\Windows\system32\drivers\srv.sys
2019-02-13 09:08:49 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2019-02-13 09:08:49 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2019-02-13 09:08:49 ----A---- C:\Windows\system32\drivers\hidparse.sys
2019-02-13 09:08:49 ----A---- C:\Windows\system32\certcli.dll
2019-02-13 09:08:48 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2019-02-13 09:08:48 ----A---- C:\Windows\system32\vbscript.dll
2019-02-13 09:08:48 ----A---- C:\Windows\system32\ole32.dll
2019-02-13 09:08:48 ----A---- C:\Windows\system32\msimg32.dll
2019-02-13 09:08:48 ----A---- C:\Windows\system32\msfeeds.dll
2019-02-13 09:08:48 ----A---- C:\Windows\system32\lsasrv.dll
2019-02-13 09:08:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-02-13 09:08:47 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2019-02-13 09:08:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2019-02-13 09:08:47 ----A---- C:\Windows\system32\rpcrt4.dll
2019-02-13 09:08:46 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2019-02-13 09:08:46 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2019-02-13 09:08:46 ----A---- C:\Windows\system32\ieui.dll
2019-02-13 09:08:46 ----A---- C:\Windows\system32\ieapfltr.dll
2019-02-13 09:08:46 ----A---- C:\Windows\system32\drivers\videoprt.sys
2019-02-13 09:08:46 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2019-02-13 09:08:46 ----A---- C:\Windows\system32\authui.dll
2019-02-13 09:08:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2019-02-13 09:08:45 ----A---- C:\Windows\system32\webcheck.dll
2019-02-13 09:08:45 ----A---- C:\Windows\system32\smss.exe
2019-02-13 09:08:45 ----A---- C:\Windows\system32\rpcss.dll
2019-02-13 09:08:45 ----A---- C:\Windows\system32\msrating.dll
2019-02-13 09:08:45 ----A---- C:\Windows\system32\msiexec.exe
2019-02-13 09:08:45 ----A---- C:\Windows\system32\mshtmled.dll
2019-02-13 09:08:45 ----A---- C:\Windows\system32\kerberos.dll
2019-02-13 09:08:45 ----A---- C:\Windows\system32\dxtrans.dll
2019-02-13 09:08:45 ----A---- C:\Windows\system32\dxtmsft.dll
2019-02-13 09:08:45 ----A---- C:\Windows\system32\advapi32.dll
2019-02-13 09:08:44 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2019-02-13 09:08:44 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2019-02-13 09:08:44 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2019-02-13 09:08:44 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2019-02-13 09:08:44 ----A---- C:\Windows\SYSWOW64\ieui.dll
2019-02-13 09:08:44 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2019-02-13 09:08:44 ----A---- C:\Windows\system32\schannel.dll
2019-02-13 09:08:44 ----A---- C:\Windows\system32\occache.dll
2019-02-13 09:08:44 ----A---- C:\Windows\system32\msv1_0.dll
2019-02-13 09:08:44 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-02-13 09:08:44 ----A---- C:\Windows\system32\jsproxy.dll
2019-02-13 09:08:44 ----A---- C:\Windows\system32\jscript9diag.dll
2019-02-13 09:08:44 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2019-02-13 09:08:44 ----A---- C:\Windows\system32\drivers\hidclass.sys
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\occache.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\msrating.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\authui.dll
2019-02-13 09:08:43 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\wow64win.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\winsrv.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\wdigest.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\TSpkg.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\sspicli.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\srcore.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\ncrypt.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\msihnd.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\inseng.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\ieUnatt.exe
2019-02-13 09:08:43 ----A---- C:\Windows\system32\iesetup.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\ie4uinit.exe
2019-02-13 09:08:43 ----A---- C:\Windows\system32\conhost.exe
2019-02-13 09:08:43 ----A---- C:\Windows\system32\bcrypt.dll
2019-02-13 09:08:43 ----A---- C:\Windows\system32\appidapi.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\schannel.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\itircl.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2019-02-13 09:08:42 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\wow64cpu.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\wow64.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\sspisrv.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\srclient.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\secur32.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\rpchttp.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\lsass.exe
2019-02-13 09:08:42 ----A---- C:\Windows\system32\iernonce.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-02-13 09:08:42 ----A---- C:\Windows\system32\drivers\processr.sys
2019-02-13 09:08:42 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2019-02-13 09:08:42 ----A---- C:\Windows\system32\drivers\intelppm.sys
2019-02-13 09:08:42 ----A---- C:\Windows\system32\drivers\appid.sys
2019-02-13 09:08:42 ----A---- C:\Windows\system32\drivers\amdppm.sys
2019-02-13 09:08:42 ----A---- C:\Windows\system32\drivers\amdk8.sys
2019-02-13 09:08:42 ----A---- C:\Windows\system32\csrsrv.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\cryptbase.dll
2019-02-13 09:08:42 ----A---- C:\Windows\system32\appinfo.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-02-13 09:08:41 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-02-13 09:08:41 ----A---- C:\Windows\SYSWOW64\wow32.dll
2019-02-13 09:08:41 ----A---- C:\Windows\SYSWOW64\srclient.dll
2019-02-13 09:08:41 ----A---- C:\Windows\SYSWOW64\secur32.dll
2019-02-13 09:08:41 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2019-02-13 09:08:41 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2019-02-13 09:08:41 ----A---- C:\Windows\SYSWOW64\credssp.dll
2019-02-13 09:08:41 ----A---- C:\Windows\SYSWOW64\comcat.dll
2019-02-13 09:08:41 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2019-02-13 09:08:41 ----A---- C:\Windows\system32\setbcdlocale.dll
2019-02-13 09:08:41 ----A---- C:\Windows\system32\rstrui.exe
2019-02-13 09:08:41 ----A---- C:\Windows\system32\ntvdm64.dll
2019-02-13 09:08:41 ----A---- C:\Windows\system32\drivers\hidusb.sys
2019-02-13 09:08:41 ----A---- C:\Windows\system32\credssp.dll
2019-02-13 09:08:41 ----A---- C:\Windows\system32\comcat.dll
2019-02-13 09:08:41 ----A---- C:\Windows\system32\auditpol.exe
2019-02-13 09:08:41 ----A---- C:\Windows\system32\appidsvc.dll
2019-02-13 09:08:41 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2019-02-13 09:08:41 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-02-13 09:08:40 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-02-13 09:08:40 ----A---- C:\Windows\SYSWOW64\user.exe
2019-02-13 09:08:40 ----A---- C:\Windows\SYSWOW64\setup16.exe
2019-02-13 09:08:40 ----A---- C:\Windows\SYSWOW64\instnm.exe
2019-02-13 09:08:40 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2019-02-13 09:08:40 ----A---- C:\Windows\system32\apisetschema.dll
2019-02-13 09:08:40 ----A---- C:\Windows\system32\adtschema.dll
2019-02-13 09:08:39 ----A---- C:\Windows\SYSWOW64\oleres.dll
2019-02-13 09:08:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2019-02-13 09:08:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2019-02-13 09:08:39 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2019-02-13 09:08:39 ----A---- C:\Windows\system32\oleres.dll
2019-02-13 09:08:39 ----A---- C:\Windows\system32\msobjs.dll
2019-02-13 09:08:39 ----A---- C:\Windows\system32\msaudite.dll
2019-02-13 09:08:38 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2019-02-13 09:08:37 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2019-02-13 09:08:37 ----A---- C:\Windows\system32\msimsg.dll
======List of files/folders modified in the last 1 month======
2019-03-12 20:41:42 ----D---- C:\Windows\Temp
2019-03-12 20:40:21 ----D---- C:\Windows\winsxs
2019-03-12 20:38:46 ----D---- C:\Windows\system32\catroot2
2019-03-12 20:37:06 ----RD---- C:\Program Files
2019-03-12 20:29:23 ----D---- C:\Windows\system32\config
2019-03-12 20:22:43 ----SHD---- C:\System Volume Information
2019-03-12 20:21:56 ----D---- C:\ProgramData\NVIDIA
2019-03-12 20:13:37 ----D---- C:\Program Files (x86)\TeamViewer
2019-03-12 20:11:25 ----D---- C:\Windows\system32\wbem
2019-03-12 20:11:25 ----D---- C:\Windows
2019-03-12 20:10:31 ----D---- C:\Windows\Tasks
2019-03-12 20:10:31 ----D---- C:\Windows\system32\wfp
2019-03-12 20:10:31 ----D---- C:\Windows\system32\DriverStore
2019-03-12 20:10:31 ----D---- C:\Windows\system32\drivers
2019-03-12 20:10:31 ----D---- C:\Windows\inf
2019-03-12 20:10:18 ----D---- C:\Windows\registration
2019-03-12 20:06:52 ----D---- C:\Windows\Prefetch
2019-03-05 09:00:20 ----D---- C:\Users\Uzivatel\AppData\Roaming\Kodi
2019-03-02 09:38:04 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-02 09:38:03 ----D---- C:\Program Files\Mozilla Firefox
2019-02-26 17:27:44 ----D---- C:\Windows\system32\Tasks
2019-02-15 12:58:28 ----D---- C:\Windows\rescache
2019-02-14 13:38:20 ----D---- C:\Windows\Microsoft.NET
2019-02-14 11:11:46 ----RSD---- C:\Windows\assembly
2019-02-14 09:23:12 ----D---- C:\Windows\System32
2019-02-14 09:23:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-02-14 09:11:11 ----D---- C:\Program Files\Internet Explorer
2019-02-14 09:11:10 ----D---- C:\Windows\SYSWOW64\sk-SK
2019-02-14 09:11:10 ----D---- C:\Windows\SYSWOW64\cs-CZ
2019-02-14 09:11:10 ----D---- C:\Program Files (x86)\Internet Explorer
2019-02-14 09:11:09 ----D---- C:\Windows\SYSWOW64\en-US
2019-02-14 09:11:09 ----D---- C:\Windows\SysWOW64
2019-02-14 09:11:03 ----D---- C:\Windows\system32\sk-SK
2019-02-14 09:11:03 ----D---- C:\Windows\system32\drivers\en-US
2019-02-14 09:11:02 ----D---- C:\Windows\system32\cs-CZ
2019-02-14 09:11:01 ----D---- C:\Windows\system32\en-US
2019-02-14 09:10:55 ----D---- C:\Windows\AppPatch
2019-02-14 09:10:53 ----D---- C:\Windows\system32\Boot
2019-02-13 19:12:58 ----SHD---- C:\Windows\Installer
2019-02-13 19:09:53 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2019-02-13 19:02:53 ----D---- C:\Windows\system32\MRT
2019-02-13 19:00:26 ----AC---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 IaNVMeF;IaNVMeF; C:\Windows\system32\drivers\IaNVMeF.sys [2017-05-23 35808]
R0 IaRNVMeF;IaRNVMeF; C:\Windows\system32\drivers\IaRNVMeF.sys [2016-01-22 36888]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hcs.sys [2017-05-12 23552]
R0 nvmeF;nvmeF; C:\Windows\system32\drivers\nvmeF.sys [2015-12-16 30776]
R0 ocztrimfilter;SSD Device Filter; C:\Windows\system32\drivers\ocztrimfilter.sys [2016-06-10 29064]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2017-07-06 12520]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2018-10-31 143448]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2018-10-31 188832]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2018-10-31 109864]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2017-07-06 60416]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-04-13 5721088]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2007-08-09 13680]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-09-05 196384]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-29 28704]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-12-15 59240]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2018-01-05 59752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-06 1806400]
S3 amdhub3;AMD USB 3.0 Hub; C:\Windows\system32\drivers\amdhub3.sys [2017-02-16 160936]
S3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\drivers\amdhub30.sys [2016-01-14 108768]
S3 amdhub31;AMD USB3.1 Hub Service; C:\Windows\system32\drivers\amdhub31.sys [2016-02-26 141528]
S3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\amdxhc.sys [2016-01-14 229088]
S3 amdxhc31;AMD XHCI Service; C:\Windows\system32\drivers\amdxhc31.sys [2016-02-26 440536]
S3 amdxhci;AMD USB3 Host Controller Driver; C:\Windows\system32\drivers\amdxhci.sys [2017-02-16 346792]
S3 asmthub3;ASMedia USB3.1 Hub Service; C:\Windows\system32\drivers\asmthub3.sys [2017-05-01 151416]
S3 asmtxhci;ASMedia XHCI Service; C:\Windows\system32\drivers\asmtxhci.sys [2017-05-01 456568]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2014-02-12 65408]
S3 EtronSTOR;Etron Enhance USB BOT/UASP Mass Storage Driver; C:\Windows\System32\Drivers\EtronSTOR.sys [2014-02-12 39296]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2014-02-12 94208]
S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver; C:\Windows\system32\drivers\FLxHCIc.sys [2017-06-13 274408]
S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver; C:\Windows\system32\drivers\FLxHCIh.sys [2017-06-13 87984]
S3 IaNVMe;IaNVMe; C:\Windows\system32\drivers\IaNVMe.sys [2017-05-23 125408]
S3 IaRNVMe;IaRNVMe; C:\Windows\system32\drivers\IaRNVMe.sys [2016-01-22 592408]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hub.sys [2017-05-12 401408]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3xhc.sys [2017-05-12 816640]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2012-08-27 107912]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2012-08-27 226696]
S3 nvme;nvme; C:\Windows\system32\drivers\nvme.sys [2015-12-16 83784]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-01-05 32104]
S3 ocznvme;ocznvme; C:\Windows\system32\drivers\ocznvme.sys [2016-06-10 99592]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2017-07-06 19456]
S3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\drivers\rusb3hub.sys [2012-08-27 114568]
S3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\drivers\rusb3xhc.sys [2012-08-27 230280]
S3 stornvme;stornvme; C:\Windows\system32\drivers\stornvme.sys [2017-07-06 50408]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2017-07-06 29696]
S3 tihub3;TI USB3 Hub Service; C:\Windows\system32\drivers\tihub3.sys [2016-05-12 145904]
S3 tilfilter;TI xHCI Lower Filter Driver Service; C:\Windows\system32\drivers\TIxHCIlfilter.sys [2015-02-11 17672]
S3 tiufilter;TI xHCI Upper Filter Driver Service; C:\Windows\system32\drivers\TIxHCIufilter.sys [2015-02-11 23304]
S3 tixhci;TI XHCI Service; C:\Windows\system32\drivers\tixhci.sys [2016-05-12 422392]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2017-07-06 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2017-07-06 29696]
S3 VUSB3HUB;VIA USB 3 Root Hub Service; C:\Windows\system32\drivers\ViaHub3.sys [2015-08-20 221696]
S3 xhcdrv;VIA USB eXtensible Host Controller Service; C:\Windows\system32\drivers\xhcdrv.sys [2015-08-20 294912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2017-07-06 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-12-13 2302160]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-05 521064]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-08-29 920864]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-01-05 462696]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2017-04-13 324608]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-08-29 414496]
R2 TeamViewer;TeamViewer 14; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2019-02-26 11665240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-01-26 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-03-01 239056]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-05 521064]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-07-06 1255736]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2017-07-06 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu - zpomalene PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - zpomalene PC
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu - zpomalene PC
# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-03-11.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-12-2019
# Duration: 00:00:03
# OS: Windows 7 Home Premium
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1257 octets] - [12/03/2019 21:17:46]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
NIC NENAŠEL.ŘEŠÍM VŠE PŘES VZDÁLENOU PLOCHU. NTB není už nějaký silák, ale děda ho používá na internet a to by měl zvládnout.
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-03-11.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-12-2019
# Duration: 00:00:03
# OS: Windows 7 Home Premium
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1257 octets] - [12/03/2019 21:17:46]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
NIC NENAŠEL.ŘEŠÍM VŠE PŘES VZDÁLENOU PLOCHU. NTB není už nějaký silák, ale děda ho používá na internet a to by měl zvládnout.
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - zpomalene PC
Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu - zpomalene PC
Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2019-03-13 19:38:49
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 262 GB (86%) free of 305 GB
Total RAM: 4095 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:38:57, on 13.3.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19301)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files\trend micro\Uzivatel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.75\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8002 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Security\ekrn.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
taskeng.exe {22E7A3FC-6292-4111-A665-96E4614CE8B6}
"taskhost.exe"
taskeng.exe {BB41D14F-D159-4712-A89D-1F6A63F95BDD}
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "-830488633114489281621455509-312172989922010671-16007688151087216193-135536420
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe" --IPCport 5939
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe"
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --reporter-url=https://rink.hockeyapp.net/api/2/apps/a ... hes/upload --application-name=skype-preview "--crashes-directory=C:\Users\Uzivatel\AppData\Local\Temp\skype-preview Crashes" --v=1
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=gpu-process --enable-features=FixAltGraph --no-sandbox --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=0CE8ABBC121E6999D778FC880252DA88 --mojo-platform-channel-handle=1516 /prefetch:2
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=renderer --autoplay-policy=no-user-gesture-required --ms-disable-indexeddb-transaction-timeout --no-sandbox --enable-features=FixAltGraph --service-pipe-token=99513798BFA04A498E72837E67BB3BFA --lang=cs --app-user-model-id=Microsoft.Skype.SkypeDesktop --app-path="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar" --node-integration=false --webview-tag=true --no-sandbox --preload="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar\Preload.js" --background-color=#fff --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=99513798BFA04A498E72837E67BB3BFA --renderer-client-id=4 --mojo-platform-channel-handle=1844 /prefetch:1 --skype-process-type=Main
"C:\Users\Uzivatel\Desktop\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\vtftcc7w.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.201.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.201.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-03-12 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-12 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2018-12-13 177928]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-04-13 18368512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2019-03-07 53540200]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-03-11 22488952]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-08-19 170624]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-03-13 19:29:46 ----D---- C:\_OTM
2019-03-12 21:44:16 ----D---- C:\Program Files\CCleaner
2019-03-12 21:41:31 ----D---- C:\Program Files (x86)\Google
2019-03-12 21:17:16 ----D---- C:\AdwCleaner
2019-03-12 20:58:23 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2019-03-12 20:58:23 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2019-03-12 20:58:23 ----A---- C:\Windows\SYSWOW64\inseng.dll
2019-03-12 20:58:23 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2019-03-12 20:58:23 ----A---- C:\Windows\system32\iernonce.dll
2019-03-12 20:58:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-03-12 20:58:23 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-03-12 20:58:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-03-12 20:58:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2019-03-12 20:58:22 ----A---- C:\Windows\SYSWOW64\occache.dll
2019-03-12 20:58:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2019-03-12 20:58:22 ----A---- C:\Windows\system32\inseng.dll
2019-03-12 20:58:22 ----A---- C:\Windows\system32\ie4uinit.exe
2019-03-12 20:58:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2019-03-12 20:58:21 ----A---- C:\Windows\system32\ieUnatt.exe
2019-03-12 20:58:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-03-12 20:58:20 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2019-03-12 20:58:20 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2019-03-12 20:58:20 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2019-03-12 20:58:19 ----A---- C:\Windows\system32\urlmon.dll
2019-03-12 20:58:19 ----A---- C:\Windows\system32\occache.dll
2019-03-12 20:58:19 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-03-12 20:58:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2019-03-12 20:58:19 ----A---- C:\Windows\system32\iedkcs32.dll
2019-03-12 20:58:18 ----A---- C:\Windows\SYSWOW64\ieui.dll
2019-03-12 20:58:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2019-03-12 20:58:18 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2019-03-12 20:58:18 ----A---- C:\Windows\system32\msfeeds.dll
2019-03-12 20:58:18 ----A---- C:\Windows\system32\dxtrans.dll
2019-03-12 20:58:17 ----A---- C:\Windows\system32\iesetup.dll
2019-03-12 20:58:17 ----A---- C:\Windows\system32\iertutil.dll
2019-03-12 20:58:17 ----A---- C:\Windows\system32\ieapfltr.dll
2019-03-12 20:58:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2019-03-12 20:58:16 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2019-03-12 20:58:16 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2019-03-12 20:58:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2019-03-12 20:58:16 ----A---- C:\Windows\system32\vbscript.dll
2019-03-12 20:58:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2019-03-12 20:58:15 ----A---- C:\Windows\system32\ieui.dll
2019-03-12 20:58:15 ----A---- C:\Windows\system32\ieframe.dll
2019-03-12 20:58:15 ----A---- C:\Windows\system32\dxtmsft.dll
2019-03-12 20:58:14 ----A---- C:\Windows\system32\webcheck.dll
2019-03-12 20:58:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-03-12 20:58:14 ----A---- C:\Windows\system32\mshtmled.dll
2019-03-12 20:58:14 ----A---- C:\Windows\system32\jscript.dll
2019-03-12 20:58:13 ----A---- C:\Windows\system32\wininet.dll
2019-03-12 20:58:13 ----A---- C:\Windows\system32\jsproxy.dll
2019-03-12 20:58:13 ----A---- C:\Windows\system32\jscript9diag.dll
2019-03-12 20:58:13 ----A---- C:\Windows\system32\jscript9.dll
2019-03-12 20:58:12 ----A---- C:\Windows\system32\msrating.dll
2019-03-12 20:58:12 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-03-12 20:58:11 ----A---- C:\Windows\system32\mshtml.dll
2019-03-12 20:58:08 ----A---- C:\Windows\system32\WerFaultSecure.exe
2019-03-12 20:58:08 ----A---- C:\Windows\system32\msxml6.dll
2019-03-12 20:58:08 ----A---- C:\Windows\system32\msxml3.dll
2019-03-12 20:58:08 ----A---- C:\Windows\system32\appraiser.dll
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\msrd2x40.dll
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2019-03-12 20:58:07 ----A---- C:\Windows\system32\WerFault.exe
2019-03-12 20:58:07 ----A---- C:\Windows\system32\Faultrep.dll
2019-03-12 20:58:07 ----A---- C:\Windows\system32\aeinv.dll
2019-03-12 20:58:06 ----A---- C:\Windows\system32\generaltel.dll
2019-03-12 20:58:06 ----A---- C:\Windows\system32\drivers\ntfs.sys
2019-03-12 20:58:05 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2019-03-12 20:58:05 ----A---- C:\Windows\system32\win32k.sys
2019-03-12 20:58:05 ----A---- C:\Windows\system32\devinv.dll
2019-03-12 20:58:04 ----A---- C:\Windows\SYSWOW64\wer.dll
2019-03-12 20:58:04 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\wer.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\rpcrt4.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\oleaut32.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\localspl.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\kerberos.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\invagent.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\drivers\cdfs.sys
2019-03-12 20:58:04 ----A---- C:\Windows\system32\centel.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\acmigration.dll
2019-03-12 20:58:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-03-12 20:58:03 ----A---- C:\Windows\system32\drivers\npfs.sys
2019-03-12 20:58:03 ----A---- C:\Windows\system32\drivers\msfs.sys
2019-03-12 20:58:02 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2019-03-12 20:58:02 ----A---- C:\Windows\system32\aepic.dll
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2019-03-12 20:58:01 ----A---- C:\Windows\system32\msv1_0.dll
2019-03-12 20:58:01 ----A---- C:\Windows\system32\drivers\srv2.sys
2019-03-12 20:58:01 ----A---- C:\Windows\system32\drivers\srv.sys
2019-03-12 20:58:01 ----A---- C:\Windows\system32\aitstatic.exe
2019-03-12 20:58:00 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2019-03-12 20:58:00 ----A---- C:\Windows\system32\drivers\fastfat.sys
2019-03-12 20:58:00 ----A---- C:\Windows\system32\drivers\exfat.sys
2019-03-12 20:58:00 ----A---- C:\Windows\system32\CompatTelRunner.exe
2019-03-12 20:57:59 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2019-03-12 20:57:59 ----A---- C:\Windows\system32\mf3216.dll
2019-03-12 20:57:59 ----A---- C:\Windows\system32\drivers\bridge.sys
2019-03-12 20:57:58 ----A---- C:\Windows\SYSWOW64\tzres.dll
2019-03-12 20:57:58 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2019-03-12 20:57:58 ----A---- C:\Windows\SYSWOW64\certcli.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\tzres.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\ole32.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\ntdll.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\kernel32.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\hal.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\drivers\udfs.sys
2019-03-12 20:57:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2019-03-12 20:57:58 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2019-03-12 20:57:58 ----A---- C:\Windows\system32\drivers\hidparse.sys
2019-03-12 20:57:58 ----A---- C:\Windows\system32\certcli.dll
2019-03-12 20:57:57 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2019-03-12 20:57:57 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2019-03-12 20:57:57 ----A---- C:\Windows\SYSWOW64\ole32.dll
2019-03-12 20:57:57 ----A---- C:\Windows\system32\rpcss.dll
2019-03-12 20:57:57 ----A---- C:\Windows\system32\lsasrv.dll
2019-03-12 20:57:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2019-03-12 20:57:57 ----A---- C:\Windows\system32\cdosys.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\werdiagcontroller.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\sscore.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\schannel.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\secur32.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\credssp.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\comcat.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wow64win.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wow64cpu.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wow64.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\winsrv.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wermgr.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\werdiagcontroller.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wdigest.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\TSpkg.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\sspisrv.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\sspicli.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\sscore.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\srvsvc.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\srcore.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\srclient.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\smss.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\schannel.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\setbcdlocale.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\secur32.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\rstrui.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\rpchttp.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\ntvdm64.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\ncrypt.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\msimg32.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\lsass.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\KernelBase.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\videoprt.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\srvnet.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\processr.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\intelppm.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\hidusb.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\hidclass.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\appid.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\amdppm.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\amdk8.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\csrsrv.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\cryptbase.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\credssp.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\conhost.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\comcat.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\bridgeunattend.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\brdgcfg.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\bcrypt.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\auditpol.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\appidsvc.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\appidapi.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\advapi32.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\wow32.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\user.exe
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\oleres.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\oleres.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\msxml6r.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\msobjs.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\msaudite.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\bridgeres.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2019-03-12 20:57:55 ----A---- C:\Windows\system32\apisetschema.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\adtschema.dll
2019-03-12 20:57:54 ----A---- C:\Windows\system32\msxml3r.dll
2019-03-12 20:45:00 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2019-03-12 20:45:00 ----A---- C:\Windows\system32\poqexec.exe
2019-03-12 20:44:45 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2019-03-12 20:44:45 ----A---- C:\Windows\system32\drmv2clt.dll
2019-03-12 20:44:45 ----A---- C:\Windows\system32\blackbox.dll
2019-03-12 20:44:44 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2019-03-12 20:44:43 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2019-03-12 20:44:43 ----A---- C:\Windows\SYSWOW64\quartz.dll
2019-03-12 20:44:43 ----A---- C:\Windows\system32\wmdrmsdk.dll
2019-03-12 20:44:43 ----A---- C:\Windows\system32\quartz.dll
2019-03-12 20:44:42 ----A---- C:\Windows\system32\msscp.dll
2019-03-12 20:44:42 ----A---- C:\Windows\system32\crypt32.dll
2019-03-12 20:44:42 ----A---- C:\Windows\system32\audiosrv.dll
2019-03-12 20:44:42 ----A---- C:\Windows\system32\AUDIOKSE.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\msscp.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\evr.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2019-03-12 20:44:41 ----A---- C:\Windows\system32\msnetobj.dll
2019-03-12 20:44:41 ----A---- C:\Windows\system32\drmmgrtn.dll
2019-03-12 20:44:40 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2019-03-12 20:44:40 ----A---- C:\Windows\system32\mssign32.dll
2019-03-12 20:44:40 ----A---- C:\Windows\system32\evr.dll
2019-03-12 20:44:40 ----A---- C:\Windows\system32\AudioSes.dll
2019-03-12 20:44:40 ----A---- C:\Windows\system32\AudioEng.dll
2019-03-12 20:44:39 ----A---- C:\Windows\SYSWOW64\mssign32.dll
2019-03-12 20:44:39 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2019-03-12 20:44:39 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2019-03-12 20:44:39 ----A---- C:\Windows\system32\cryptui.dll
2019-03-12 20:44:38 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2019-03-12 20:44:38 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2019-03-12 20:44:38 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2019-03-12 20:44:38 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2019-03-12 20:44:38 ----A---- C:\Windows\system32\wintrust.dll
2019-03-12 20:44:38 ----A---- C:\Windows\system32\qdvd.dll
2019-03-12 20:44:38 ----A---- C:\Windows\system32\mfplat.dll
2019-03-12 20:44:38 ----A---- C:\Windows\system32\cryptsvc.dll
2019-03-12 20:44:37 ----A---- C:\Windows\system32\mf.dll
2019-03-12 20:44:37 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2019-03-12 20:44:36 ----A---- C:\Windows\system32\EncDump.dll
2019-03-12 20:44:35 ----A---- C:\Windows\system32\wmp.dll
2019-03-12 20:44:35 ----A---- C:\Windows\system32\audiodg.exe
2019-03-12 20:44:34 ----A---- C:\Windows\SYSWOW64\wmp.dll
2019-03-12 20:44:33 ----A---- C:\Windows\SYSWOW64\mf.dll
2019-03-12 20:44:33 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\mfps.dll
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2019-03-12 20:44:32 ----A---- C:\Windows\system32\spwmp.dll
2019-03-12 20:44:32 ----A---- C:\Windows\system32\mfps.dll
2019-03-12 20:44:32 ----A---- C:\Windows\system32\mfpmp.exe
2019-03-12 20:44:32 ----A---- C:\Windows\system32\dxmasf.dll
2019-03-12 20:44:32 ----A---- C:\Windows\system32\cryptnet.dll
2019-03-12 20:44:31 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2019-03-12 20:44:31 ----A---- C:\Windows\system32\wmploc.DLL
2019-03-12 20:44:30 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2019-03-12 20:44:30 ----A---- C:\Windows\system32\rrinstaller.exe
2019-03-12 20:44:30 ----A---- C:\Windows\system32\pcawrk.exe
2019-03-12 20:44:30 ----A---- C:\Windows\system32\pcasvc.dll
2019-03-12 20:44:30 ----A---- C:\Windows\system32\pcalua.exe
2019-03-12 20:44:30 ----A---- C:\Windows\system32\pcadm.dll
2019-03-12 20:44:30 ----A---- C:\Windows\system32\cryptsp.dll
2019-03-12 20:44:29 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2019-03-12 20:44:29 ----A---- C:\Windows\SYSWOW64\mferror.dll
2019-03-12 20:44:29 ----A---- C:\Windows\system32\msmmsp.dll
2019-03-12 20:44:29 ----A---- C:\Windows\system32\mferror.dll
2019-03-12 20:44:27 ----A---- C:\Windows\system32\pcaevts.dll
2019-03-12 20:37:06 ----D---- C:\rsit
2019-03-12 20:37:06 ----D---- C:\Program Files\trend micro
======List of files/folders modified in the last 1 month======
2019-03-13 19:38:55 ----D---- C:\Windows\Temp
2019-03-13 19:33:05 ----D---- C:\Windows\system32\config
2019-03-13 19:33:01 ----D---- C:\ProgramData\NVIDIA
2019-03-13 19:32:37 ----D---- C:\Program Files (x86)\TeamViewer
2019-03-13 16:16:17 ----D---- C:\Users\Uzivatel\AppData\Roaming\Kodi
2019-03-13 09:01:14 ----D---- C:\Windows\System32
2019-03-13 09:01:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-03-13 09:01:13 ----D---- C:\Windows\inf
2019-03-13 08:58:59 ----SHD---- C:\System Volume Information
2019-03-13 08:55:21 ----D---- C:\Windows\SysWOW64
2019-03-13 08:55:10 ----SHD---- C:\Boot
2019-03-13 08:55:10 ----D---- C:\Windows\winsxs
2019-03-13 08:54:04 ----D---- C:\Windows
2019-03-12 23:37:54 ----D---- C:\Windows\SYSWOW64\Dism
2019-03-12 23:37:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2019-03-12 23:37:54 ----D---- C:\Windows\system32\drivers
2019-03-12 23:37:54 ----D---- C:\Windows\system32\Dism
2019-03-12 23:37:54 ----D---- C:\Windows\system32\cs-CZ
2019-03-12 23:37:54 ----D---- C:\Program Files\Windows Media Player
2019-03-12 23:37:54 ----D---- C:\Program Files (x86)\Windows Media Player
2019-03-12 23:37:46 ----D---- C:\Windows\SYSWOW64\sk-SK
2019-03-12 23:37:46 ----D---- C:\Windows\SYSWOW64\en-US
2019-03-12 23:37:46 ----D---- C:\Program Files\Internet Explorer
2019-03-12 23:37:44 ----SD---- C:\Windows\system32\CompatTel
2019-03-12 23:37:44 ----D---- C:\Windows\system32\sk-SK
2019-03-12 23:37:44 ----D---- C:\Windows\system32\drivers\en-US
2019-03-12 23:37:44 ----D---- C:\Windows\system32\appraiser
2019-03-12 23:37:43 ----D---- C:\Windows\system32\en-US
2019-03-12 23:37:40 ----D---- C:\Windows\AppPatch
2019-03-12 23:37:40 ----D---- C:\Program Files (x86)\Internet Explorer
2019-03-12 23:37:39 ----D---- C:\Windows\system32\migration
2019-03-12 23:37:39 ----D---- C:\Windows\system32\Boot
2019-03-12 23:37:37 ----D---- C:\Windows\system32\DriverStore
2019-03-12 22:53:59 ----SHD---- C:\Windows\Installer
2019-03-12 22:04:03 ----D---- C:\Windows\system32\MRT
2019-03-12 21:59:55 ----D---- C:\Windows\debug
2019-03-12 21:59:45 ----AC---- C:\Windows\system32\MRT.exe
2019-03-12 21:54:39 ----D---- C:\Program Files (x86)\Java
2019-03-12 21:53:46 ----D---- C:\Program Files (x86)\Common Files
2019-03-12 21:52:36 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2019-03-12 21:49:09 ----RD---- C:\Program Files (x86)
2019-03-12 21:48:13 ----D---- C:\Users\Uzivatel\AppData\Roaming\TeamViewer
2019-03-12 21:48:02 ----D---- C:\Windows\Panther
2019-03-12 21:48:02 ----D---- C:\Windows\Logs
2019-03-12 21:44:32 ----D---- C:\Windows\system32\Tasks
2019-03-12 21:44:16 ----RD---- C:\Program Files
2019-03-12 20:38:46 ----D---- C:\Windows\system32\catroot2
2019-03-12 20:11:25 ----D---- C:\Windows\system32\wbem
2019-03-12 20:10:31 ----D---- C:\Windows\Tasks
2019-03-12 20:10:31 ----D---- C:\Windows\system32\wfp
2019-03-12 20:10:18 ----D---- C:\Windows\registration
2019-03-12 20:06:52 ----D---- C:\Windows\Prefetch
2019-03-02 09:38:04 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-02 09:38:03 ----D---- C:\Program Files\Mozilla Firefox
2019-02-15 12:58:28 ----D---- C:\Windows\rescache
2019-02-14 13:38:20 ----D---- C:\Windows\Microsoft.NET
2019-02-14 11:11:46 ----RSD---- C:\Windows\assembly
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 IaNVMeF;IaNVMeF; C:\Windows\system32\drivers\IaNVMeF.sys [2017-05-23 35808]
R0 IaRNVMeF;IaRNVMeF; C:\Windows\system32\drivers\IaRNVMeF.sys [2016-01-22 36888]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hcs.sys [2017-05-12 23552]
R0 nvmeF;nvmeF; C:\Windows\system32\drivers\nvmeF.sys [2015-12-16 30776]
R0 ocztrimfilter;SSD Device Filter; C:\Windows\system32\drivers\ocztrimfilter.sys [2016-06-10 29064]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2017-07-06 12520]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2018-10-31 143448]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2018-10-31 188832]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2018-10-31 109864]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2017-07-06 60416]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-04-13 5721088]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2007-08-09 13680]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-09-05 196384]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-29 28704]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-12-15 59240]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2018-01-05 59752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-06 1806400]
S3 amdhub3;AMD USB 3.0 Hub; C:\Windows\system32\drivers\amdhub3.sys [2017-02-16 160936]
S3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\drivers\amdhub30.sys [2016-01-14 108768]
S3 amdhub31;AMD USB3.1 Hub Service; C:\Windows\system32\drivers\amdhub31.sys [2016-02-26 141528]
S3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\amdxhc.sys [2016-01-14 229088]
S3 amdxhc31;AMD XHCI Service; C:\Windows\system32\drivers\amdxhc31.sys [2016-02-26 440536]
S3 amdxhci;AMD USB3 Host Controller Driver; C:\Windows\system32\drivers\amdxhci.sys [2017-02-16 346792]
S3 asmthub3;ASMedia USB3.1 Hub Service; C:\Windows\system32\drivers\asmthub3.sys [2017-05-01 151416]
S3 asmtxhci;ASMedia XHCI Service; C:\Windows\system32\drivers\asmtxhci.sys [2017-05-01 456568]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2014-02-12 65408]
S3 EtronSTOR;Etron Enhance USB BOT/UASP Mass Storage Driver; C:\Windows\System32\Drivers\EtronSTOR.sys [2014-02-12 39296]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2014-02-12 94208]
S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver; C:\Windows\system32\drivers\FLxHCIc.sys [2017-06-13 274408]
S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver; C:\Windows\system32\drivers\FLxHCIh.sys [2017-06-13 87984]
S3 IaNVMe;IaNVMe; C:\Windows\system32\drivers\IaNVMe.sys [2017-05-23 125408]
S3 IaRNVMe;IaRNVMe; C:\Windows\system32\drivers\IaRNVMe.sys [2016-01-22 592408]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hub.sys [2017-05-12 401408]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3xhc.sys [2017-05-12 816640]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2012-08-27 107912]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2012-08-27 226696]
S3 nvme;nvme; C:\Windows\system32\drivers\nvme.sys [2015-12-16 83784]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-01-05 32104]
S3 ocznvme;ocznvme; C:\Windows\system32\drivers\ocznvme.sys [2016-06-10 99592]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2017-07-06 19456]
S3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\drivers\rusb3hub.sys [2012-08-27 114568]
S3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\drivers\rusb3xhc.sys [2012-08-27 230280]
S3 stornvme;stornvme; C:\Windows\system32\drivers\stornvme.sys [2017-07-06 50408]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2017-07-06 29696]
S3 tihub3;TI USB3 Hub Service; C:\Windows\system32\drivers\tihub3.sys [2016-05-12 145904]
S3 tilfilter;TI xHCI Lower Filter Driver Service; C:\Windows\system32\drivers\TIxHCIlfilter.sys [2015-02-11 17672]
S3 tiufilter;TI xHCI Upper Filter Driver Service; C:\Windows\system32\drivers\TIxHCIufilter.sys [2015-02-11 23304]
S3 tixhci;TI XHCI Service; C:\Windows\system32\drivers\tixhci.sys [2016-05-12 422392]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2017-07-06 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2017-07-06 29696]
S3 VUSB3HUB;VIA USB 3 Root Hub Service; C:\Windows\system32\drivers\ViaHub3.sys [2015-08-20 221696]
S3 xhcdrv;VIA USB eXtensible Host Controller Service; C:\Windows\system32\drivers\xhcdrv.sys [2015-08-20 294912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2017-07-06 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-12-13 2302160]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-05 521064]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-08-29 920864]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-01-05 462696]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2017-04-13 324608]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-08-29 414496]
R2 TeamViewer;TeamViewer 14; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2019-02-26 11665240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-03-12 153168]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.75\elevation_service.exe [2019-03-11 1268720]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-03-12 153168]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-02-26 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-03-01 239056]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-05 521064]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-07-06 1255736]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2017-07-06 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
-----------------EOF-----------------
Run by Uzivatel at 2019-03-13 19:38:49
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 262 GB (86%) free of 305 GB
Total RAM: 4095 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:38:57, on 13.3.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19301)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files\trend micro\Uzivatel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.75\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8002 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Security\ekrn.exe"
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
taskeng.exe {22E7A3FC-6292-4111-A665-96E4614CE8B6}
"taskhost.exe"
taskeng.exe {BB41D14F-D159-4712-A89D-1F6A63F95BDD}
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "-830488633114489281621455509-312172989922010671-16007688151087216193-135536420
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer14_Logfile.log
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe" --IPCport 5939
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
"C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe"
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --reporter-url=https://rink.hockeyapp.net/api/2/apps/a ... hes/upload --application-name=skype-preview "--crashes-directory=C:\Users\Uzivatel\AppData\Local\Temp\skype-preview Crashes" --v=1
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=gpu-process --enable-features=FixAltGraph --no-sandbox --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=0CE8ABBC121E6999D778FC880252DA88 --mojo-platform-channel-handle=1516 /prefetch:2
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=renderer --autoplay-policy=no-user-gesture-required --ms-disable-indexeddb-transaction-timeout --no-sandbox --enable-features=FixAltGraph --service-pipe-token=99513798BFA04A498E72837E67BB3BFA --lang=cs --app-user-model-id=Microsoft.Skype.SkypeDesktop --app-path="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar" --node-integration=false --webview-tag=true --no-sandbox --preload="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar\Preload.js" --background-color=#fff --device-scale-factor=1 --num-raster-threads=1 --enable-compositor-image-animations --service-request-channel-token=99513798BFA04A498E72837E67BB3BFA --renderer-client-id=4 --mojo-platform-channel-handle=1844 /prefetch:1 --skype-process-type=Main
"C:\Users\Uzivatel\Desktop\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\vtftcc7w.default
prefs.js - "browser.startup.homepage" - "www.seznam.cz"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.201.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.201.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-03-12 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-12 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2018-12-13 177928]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2017-04-13 18368512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2019-03-07 53540200]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-03-11 22488952]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-08-19 170624]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-03-13 19:29:46 ----D---- C:\_OTM
2019-03-12 21:44:16 ----D---- C:\Program Files\CCleaner
2019-03-12 21:41:31 ----D---- C:\Program Files (x86)\Google
2019-03-12 21:17:16 ----D---- C:\AdwCleaner
2019-03-12 20:58:23 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2019-03-12 20:58:23 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2019-03-12 20:58:23 ----A---- C:\Windows\SYSWOW64\inseng.dll
2019-03-12 20:58:23 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2019-03-12 20:58:23 ----A---- C:\Windows\system32\iernonce.dll
2019-03-12 20:58:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-03-12 20:58:23 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-03-12 20:58:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-03-12 20:58:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2019-03-12 20:58:22 ----A---- C:\Windows\SYSWOW64\occache.dll
2019-03-12 20:58:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2019-03-12 20:58:22 ----A---- C:\Windows\system32\inseng.dll
2019-03-12 20:58:22 ----A---- C:\Windows\system32\ie4uinit.exe
2019-03-12 20:58:21 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2019-03-12 20:58:21 ----A---- C:\Windows\system32\ieUnatt.exe
2019-03-12 20:58:20 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-03-12 20:58:20 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2019-03-12 20:58:20 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2019-03-12 20:58:20 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2019-03-12 20:58:19 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2019-03-12 20:58:19 ----A---- C:\Windows\system32\urlmon.dll
2019-03-12 20:58:19 ----A---- C:\Windows\system32\occache.dll
2019-03-12 20:58:19 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-03-12 20:58:19 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2019-03-12 20:58:19 ----A---- C:\Windows\system32\iedkcs32.dll
2019-03-12 20:58:18 ----A---- C:\Windows\SYSWOW64\ieui.dll
2019-03-12 20:58:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2019-03-12 20:58:18 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2019-03-12 20:58:18 ----A---- C:\Windows\system32\msfeeds.dll
2019-03-12 20:58:18 ----A---- C:\Windows\system32\dxtrans.dll
2019-03-12 20:58:17 ----A---- C:\Windows\system32\iesetup.dll
2019-03-12 20:58:17 ----A---- C:\Windows\system32\iertutil.dll
2019-03-12 20:58:17 ----A---- C:\Windows\system32\ieapfltr.dll
2019-03-12 20:58:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2019-03-12 20:58:16 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2019-03-12 20:58:16 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2019-03-12 20:58:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2019-03-12 20:58:16 ----A---- C:\Windows\system32\vbscript.dll
2019-03-12 20:58:15 ----A---- C:\Windows\SYSWOW64\msrating.dll
2019-03-12 20:58:15 ----A---- C:\Windows\system32\ieui.dll
2019-03-12 20:58:15 ----A---- C:\Windows\system32\ieframe.dll
2019-03-12 20:58:15 ----A---- C:\Windows\system32\dxtmsft.dll
2019-03-12 20:58:14 ----A---- C:\Windows\system32\webcheck.dll
2019-03-12 20:58:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-03-12 20:58:14 ----A---- C:\Windows\system32\mshtmled.dll
2019-03-12 20:58:14 ----A---- C:\Windows\system32\jscript.dll
2019-03-12 20:58:13 ----A---- C:\Windows\system32\wininet.dll
2019-03-12 20:58:13 ----A---- C:\Windows\system32\jsproxy.dll
2019-03-12 20:58:13 ----A---- C:\Windows\system32\jscript9diag.dll
2019-03-12 20:58:13 ----A---- C:\Windows\system32\jscript9.dll
2019-03-12 20:58:12 ----A---- C:\Windows\system32\msrating.dll
2019-03-12 20:58:12 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-03-12 20:58:11 ----A---- C:\Windows\system32\mshtml.dll
2019-03-12 20:58:08 ----A---- C:\Windows\system32\WerFaultSecure.exe
2019-03-12 20:58:08 ----A---- C:\Windows\system32\msxml6.dll
2019-03-12 20:58:08 ----A---- C:\Windows\system32\msxml3.dll
2019-03-12 20:58:08 ----A---- C:\Windows\system32\appraiser.dll
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\WerFaultSecure.exe
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\WerFault.exe
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\msrd2x40.dll
2019-03-12 20:58:07 ----A---- C:\Windows\SYSWOW64\Faultrep.dll
2019-03-12 20:58:07 ----A---- C:\Windows\system32\WerFault.exe
2019-03-12 20:58:07 ----A---- C:\Windows\system32\Faultrep.dll
2019-03-12 20:58:07 ----A---- C:\Windows\system32\aeinv.dll
2019-03-12 20:58:06 ----A---- C:\Windows\system32\generaltel.dll
2019-03-12 20:58:06 ----A---- C:\Windows\system32\drivers\ntfs.sys
2019-03-12 20:58:05 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2019-03-12 20:58:05 ----A---- C:\Windows\system32\win32k.sys
2019-03-12 20:58:05 ----A---- C:\Windows\system32\devinv.dll
2019-03-12 20:58:04 ----A---- C:\Windows\SYSWOW64\wer.dll
2019-03-12 20:58:04 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\wer.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\rpcrt4.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\oleaut32.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\localspl.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\kerberos.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\invagent.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\drivers\cdfs.sys
2019-03-12 20:58:04 ----A---- C:\Windows\system32\centel.dll
2019-03-12 20:58:04 ----A---- C:\Windows\system32\acmigration.dll
2019-03-12 20:58:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-03-12 20:58:03 ----A---- C:\Windows\system32\drivers\npfs.sys
2019-03-12 20:58:03 ----A---- C:\Windows\system32\drivers\msfs.sys
2019-03-12 20:58:02 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2019-03-12 20:58:02 ----A---- C:\Windows\system32\aepic.dll
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2019-03-12 20:58:01 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2019-03-12 20:58:01 ----A---- C:\Windows\system32\msv1_0.dll
2019-03-12 20:58:01 ----A---- C:\Windows\system32\drivers\srv2.sys
2019-03-12 20:58:01 ----A---- C:\Windows\system32\drivers\srv.sys
2019-03-12 20:58:01 ----A---- C:\Windows\system32\aitstatic.exe
2019-03-12 20:58:00 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2019-03-12 20:58:00 ----A---- C:\Windows\system32\drivers\fastfat.sys
2019-03-12 20:58:00 ----A---- C:\Windows\system32\drivers\exfat.sys
2019-03-12 20:58:00 ----A---- C:\Windows\system32\CompatTelRunner.exe
2019-03-12 20:57:59 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2019-03-12 20:57:59 ----A---- C:\Windows\system32\mf3216.dll
2019-03-12 20:57:59 ----A---- C:\Windows\system32\drivers\bridge.sys
2019-03-12 20:57:58 ----A---- C:\Windows\SYSWOW64\tzres.dll
2019-03-12 20:57:58 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2019-03-12 20:57:58 ----A---- C:\Windows\SYSWOW64\certcli.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\tzres.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\ole32.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\ntdll.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\kernel32.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\hal.dll
2019-03-12 20:57:58 ----A---- C:\Windows\system32\drivers\udfs.sys
2019-03-12 20:57:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2019-03-12 20:57:58 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2019-03-12 20:57:58 ----A---- C:\Windows\system32\drivers\hidparse.sys
2019-03-12 20:57:58 ----A---- C:\Windows\system32\certcli.dll
2019-03-12 20:57:57 ----A---- C:\Windows\SYSWOW64\wermgr.exe
2019-03-12 20:57:57 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2019-03-12 20:57:57 ----A---- C:\Windows\SYSWOW64\ole32.dll
2019-03-12 20:57:57 ----A---- C:\Windows\system32\rpcss.dll
2019-03-12 20:57:57 ----A---- C:\Windows\system32\lsasrv.dll
2019-03-12 20:57:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2019-03-12 20:57:57 ----A---- C:\Windows\system32\cdosys.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\werdiagcontroller.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\sscore.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\srclient.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\schannel.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\secur32.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\credssp.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\comcat.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2019-03-12 20:57:56 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wow64win.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wow64cpu.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wow64.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\winsrv.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wermgr.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\werdiagcontroller.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\wdigest.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\TSpkg.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\sspisrv.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\sspicli.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\sscore.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\srvsvc.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\srcore.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\srclient.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\smss.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\schannel.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\setbcdlocale.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\secur32.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\rstrui.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\rpchttp.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\ntvdm64.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\ncrypt.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\msimg32.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\lsass.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\KernelBase.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\videoprt.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\srvnet.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\processr.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\intelppm.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\hidusb.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\hidclass.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\appid.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\amdppm.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\drivers\amdk8.sys
2019-03-12 20:57:56 ----A---- C:\Windows\system32\csrsrv.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\cryptbase.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\credssp.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\conhost.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\comcat.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\bridgeunattend.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\brdgcfg.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\bcrypt.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\auditpol.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\appidsvc.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2019-03-12 20:57:56 ----A---- C:\Windows\system32\appidapi.dll
2019-03-12 20:57:56 ----A---- C:\Windows\system32\advapi32.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-03-12 20:57:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\wow32.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\user.exe
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\oleres.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2019-03-12 20:57:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\oleres.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\msxml6r.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\msobjs.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\msaudite.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\bridgeres.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2019-03-12 20:57:55 ----A---- C:\Windows\system32\apisetschema.dll
2019-03-12 20:57:55 ----A---- C:\Windows\system32\adtschema.dll
2019-03-12 20:57:54 ----A---- C:\Windows\system32\msxml3r.dll
2019-03-12 20:45:00 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2019-03-12 20:45:00 ----A---- C:\Windows\system32\poqexec.exe
2019-03-12 20:44:45 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2019-03-12 20:44:45 ----A---- C:\Windows\system32\drmv2clt.dll
2019-03-12 20:44:45 ----A---- C:\Windows\system32\blackbox.dll
2019-03-12 20:44:44 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2019-03-12 20:44:43 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2019-03-12 20:44:43 ----A---- C:\Windows\SYSWOW64\quartz.dll
2019-03-12 20:44:43 ----A---- C:\Windows\system32\wmdrmsdk.dll
2019-03-12 20:44:43 ----A---- C:\Windows\system32\quartz.dll
2019-03-12 20:44:42 ----A---- C:\Windows\system32\msscp.dll
2019-03-12 20:44:42 ----A---- C:\Windows\system32\crypt32.dll
2019-03-12 20:44:42 ----A---- C:\Windows\system32\audiosrv.dll
2019-03-12 20:44:42 ----A---- C:\Windows\system32\AUDIOKSE.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\msscp.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\evr.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2019-03-12 20:44:41 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2019-03-12 20:44:41 ----A---- C:\Windows\system32\msnetobj.dll
2019-03-12 20:44:41 ----A---- C:\Windows\system32\drmmgrtn.dll
2019-03-12 20:44:40 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2019-03-12 20:44:40 ----A---- C:\Windows\system32\mssign32.dll
2019-03-12 20:44:40 ----A---- C:\Windows\system32\evr.dll
2019-03-12 20:44:40 ----A---- C:\Windows\system32\AudioSes.dll
2019-03-12 20:44:40 ----A---- C:\Windows\system32\AudioEng.dll
2019-03-12 20:44:39 ----A---- C:\Windows\SYSWOW64\mssign32.dll
2019-03-12 20:44:39 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2019-03-12 20:44:39 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2019-03-12 20:44:39 ----A---- C:\Windows\system32\cryptui.dll
2019-03-12 20:44:38 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2019-03-12 20:44:38 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2019-03-12 20:44:38 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2019-03-12 20:44:38 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2019-03-12 20:44:38 ----A---- C:\Windows\system32\wintrust.dll
2019-03-12 20:44:38 ----A---- C:\Windows\system32\qdvd.dll
2019-03-12 20:44:38 ----A---- C:\Windows\system32\mfplat.dll
2019-03-12 20:44:38 ----A---- C:\Windows\system32\cryptsvc.dll
2019-03-12 20:44:37 ----A---- C:\Windows\system32\mf.dll
2019-03-12 20:44:37 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2019-03-12 20:44:36 ----A---- C:\Windows\system32\EncDump.dll
2019-03-12 20:44:35 ----A---- C:\Windows\system32\wmp.dll
2019-03-12 20:44:35 ----A---- C:\Windows\system32\audiodg.exe
2019-03-12 20:44:34 ----A---- C:\Windows\SYSWOW64\wmp.dll
2019-03-12 20:44:33 ----A---- C:\Windows\SYSWOW64\mf.dll
2019-03-12 20:44:33 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\mfps.dll
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2019-03-12 20:44:32 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2019-03-12 20:44:32 ----A---- C:\Windows\system32\spwmp.dll
2019-03-12 20:44:32 ----A---- C:\Windows\system32\mfps.dll
2019-03-12 20:44:32 ----A---- C:\Windows\system32\mfpmp.exe
2019-03-12 20:44:32 ----A---- C:\Windows\system32\dxmasf.dll
2019-03-12 20:44:32 ----A---- C:\Windows\system32\cryptnet.dll
2019-03-12 20:44:31 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2019-03-12 20:44:31 ----A---- C:\Windows\system32\wmploc.DLL
2019-03-12 20:44:30 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2019-03-12 20:44:30 ----A---- C:\Windows\system32\rrinstaller.exe
2019-03-12 20:44:30 ----A---- C:\Windows\system32\pcawrk.exe
2019-03-12 20:44:30 ----A---- C:\Windows\system32\pcasvc.dll
2019-03-12 20:44:30 ----A---- C:\Windows\system32\pcalua.exe
2019-03-12 20:44:30 ----A---- C:\Windows\system32\pcadm.dll
2019-03-12 20:44:30 ----A---- C:\Windows\system32\cryptsp.dll
2019-03-12 20:44:29 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2019-03-12 20:44:29 ----A---- C:\Windows\SYSWOW64\mferror.dll
2019-03-12 20:44:29 ----A---- C:\Windows\system32\msmmsp.dll
2019-03-12 20:44:29 ----A---- C:\Windows\system32\mferror.dll
2019-03-12 20:44:27 ----A---- C:\Windows\system32\pcaevts.dll
2019-03-12 20:37:06 ----D---- C:\rsit
2019-03-12 20:37:06 ----D---- C:\Program Files\trend micro
======List of files/folders modified in the last 1 month======
2019-03-13 19:38:55 ----D---- C:\Windows\Temp
2019-03-13 19:33:05 ----D---- C:\Windows\system32\config
2019-03-13 19:33:01 ----D---- C:\ProgramData\NVIDIA
2019-03-13 19:32:37 ----D---- C:\Program Files (x86)\TeamViewer
2019-03-13 16:16:17 ----D---- C:\Users\Uzivatel\AppData\Roaming\Kodi
2019-03-13 09:01:14 ----D---- C:\Windows\System32
2019-03-13 09:01:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-03-13 09:01:13 ----D---- C:\Windows\inf
2019-03-13 08:58:59 ----SHD---- C:\System Volume Information
2019-03-13 08:55:21 ----D---- C:\Windows\SysWOW64
2019-03-13 08:55:10 ----SHD---- C:\Boot
2019-03-13 08:55:10 ----D---- C:\Windows\winsxs
2019-03-13 08:54:04 ----D---- C:\Windows
2019-03-12 23:37:54 ----D---- C:\Windows\SYSWOW64\Dism
2019-03-12 23:37:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2019-03-12 23:37:54 ----D---- C:\Windows\system32\drivers
2019-03-12 23:37:54 ----D---- C:\Windows\system32\Dism
2019-03-12 23:37:54 ----D---- C:\Windows\system32\cs-CZ
2019-03-12 23:37:54 ----D---- C:\Program Files\Windows Media Player
2019-03-12 23:37:54 ----D---- C:\Program Files (x86)\Windows Media Player
2019-03-12 23:37:46 ----D---- C:\Windows\SYSWOW64\sk-SK
2019-03-12 23:37:46 ----D---- C:\Windows\SYSWOW64\en-US
2019-03-12 23:37:46 ----D---- C:\Program Files\Internet Explorer
2019-03-12 23:37:44 ----SD---- C:\Windows\system32\CompatTel
2019-03-12 23:37:44 ----D---- C:\Windows\system32\sk-SK
2019-03-12 23:37:44 ----D---- C:\Windows\system32\drivers\en-US
2019-03-12 23:37:44 ----D---- C:\Windows\system32\appraiser
2019-03-12 23:37:43 ----D---- C:\Windows\system32\en-US
2019-03-12 23:37:40 ----D---- C:\Windows\AppPatch
2019-03-12 23:37:40 ----D---- C:\Program Files (x86)\Internet Explorer
2019-03-12 23:37:39 ----D---- C:\Windows\system32\migration
2019-03-12 23:37:39 ----D---- C:\Windows\system32\Boot
2019-03-12 23:37:37 ----D---- C:\Windows\system32\DriverStore
2019-03-12 22:53:59 ----SHD---- C:\Windows\Installer
2019-03-12 22:04:03 ----D---- C:\Windows\system32\MRT
2019-03-12 21:59:55 ----D---- C:\Windows\debug
2019-03-12 21:59:45 ----AC---- C:\Windows\system32\MRT.exe
2019-03-12 21:54:39 ----D---- C:\Program Files (x86)\Java
2019-03-12 21:53:46 ----D---- C:\Program Files (x86)\Common Files
2019-03-12 21:52:36 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2019-03-12 21:49:09 ----RD---- C:\Program Files (x86)
2019-03-12 21:48:13 ----D---- C:\Users\Uzivatel\AppData\Roaming\TeamViewer
2019-03-12 21:48:02 ----D---- C:\Windows\Panther
2019-03-12 21:48:02 ----D---- C:\Windows\Logs
2019-03-12 21:44:32 ----D---- C:\Windows\system32\Tasks
2019-03-12 21:44:16 ----RD---- C:\Program Files
2019-03-12 20:38:46 ----D---- C:\Windows\system32\catroot2
2019-03-12 20:11:25 ----D---- C:\Windows\system32\wbem
2019-03-12 20:10:31 ----D---- C:\Windows\Tasks
2019-03-12 20:10:31 ----D---- C:\Windows\system32\wfp
2019-03-12 20:10:18 ----D---- C:\Windows\registration
2019-03-12 20:06:52 ----D---- C:\Windows\Prefetch
2019-03-02 09:38:04 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-02 09:38:03 ----D---- C:\Program Files\Mozilla Firefox
2019-02-15 12:58:28 ----D---- C:\Windows\rescache
2019-02-14 13:38:20 ----D---- C:\Windows\Microsoft.NET
2019-02-14 11:11:46 ----RSD---- C:\Windows\assembly
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 IaNVMeF;IaNVMeF; C:\Windows\system32\drivers\IaNVMeF.sys [2017-05-23 35808]
R0 IaRNVMeF;IaRNVMeF; C:\Windows\system32\drivers\IaRNVMeF.sys [2016-01-22 36888]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hcs.sys [2017-05-12 23552]
R0 nvmeF;nvmeF; C:\Windows\system32\drivers\nvmeF.sys [2015-12-16 30776]
R0 ocztrimfilter;SSD Device Filter; C:\Windows\system32\drivers\ocztrimfilter.sys [2016-06-10 29064]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2017-07-06 12520]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2018-10-31 143448]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2018-10-31 188832]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2018-10-31 109864]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2017-07-06 60416]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-06-27 2753536]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-04-13 5721088]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2007-08-09 13680]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-09-05 196384]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2009-06-29 28704]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-12-15 59240]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2018-01-05 59752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-06 1806400]
S3 amdhub3;AMD USB 3.0 Hub; C:\Windows\system32\drivers\amdhub3.sys [2017-02-16 160936]
S3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\drivers\amdhub30.sys [2016-01-14 108768]
S3 amdhub31;AMD USB3.1 Hub Service; C:\Windows\system32\drivers\amdhub31.sys [2016-02-26 141528]
S3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\amdxhc.sys [2016-01-14 229088]
S3 amdxhc31;AMD XHCI Service; C:\Windows\system32\drivers\amdxhc31.sys [2016-02-26 440536]
S3 amdxhci;AMD USB3 Host Controller Driver; C:\Windows\system32\drivers\amdxhci.sys [2017-02-16 346792]
S3 asmthub3;ASMedia USB3.1 Hub Service; C:\Windows\system32\drivers\asmthub3.sys [2017-05-01 151416]
S3 asmtxhci;ASMedia XHCI Service; C:\Windows\system32\drivers\asmtxhci.sys [2017-05-01 456568]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2014-02-12 65408]
S3 EtronSTOR;Etron Enhance USB BOT/UASP Mass Storage Driver; C:\Windows\System32\Drivers\EtronSTOR.sys [2014-02-12 39296]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2014-02-12 94208]
S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver; C:\Windows\system32\drivers\FLxHCIc.sys [2017-06-13 274408]
S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver; C:\Windows\system32\drivers\FLxHCIh.sys [2017-06-13 87984]
S3 IaNVMe;IaNVMe; C:\Windows\system32\drivers\IaNVMe.sys [2017-05-23 125408]
S3 IaRNVMe;IaRNVMe; C:\Windows\system32\drivers\IaRNVMe.sys [2016-01-22 592408]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hub.sys [2017-05-12 401408]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3xhc.sys [2017-05-12 816640]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\drivers\nusb3hub.sys [2012-08-27 107912]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\nusb3xhc.sys [2012-08-27 226696]
S3 nvme;nvme; C:\Windows\system32\drivers\nvme.sys [2015-12-16 83784]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-01-05 32104]
S3 ocznvme;ocznvme; C:\Windows\system32\drivers\ocznvme.sys [2016-06-10 99592]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2017-07-06 19456]
S3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0); C:\Windows\system32\drivers\rusb3hub.sys [2012-08-27 114568]
S3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0); C:\Windows\system32\drivers\rusb3xhc.sys [2012-08-27 230280]
S3 stornvme;stornvme; C:\Windows\system32\drivers\stornvme.sys [2017-07-06 50408]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2017-07-06 29696]
S3 tihub3;TI USB3 Hub Service; C:\Windows\system32\drivers\tihub3.sys [2016-05-12 145904]
S3 tilfilter;TI xHCI Lower Filter Driver Service; C:\Windows\system32\drivers\TIxHCIlfilter.sys [2015-02-11 17672]
S3 tiufilter;TI xHCI Upper Filter Driver Service; C:\Windows\system32\drivers\TIxHCIufilter.sys [2015-02-11 23304]
S3 tixhci;TI XHCI Service; C:\Windows\system32\drivers\tixhci.sys [2016-05-12 422392]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2017-07-06 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2017-07-06 29696]
S3 VUSB3HUB;VIA USB 3 Root Hub Service; C:\Windows\system32\drivers\ViaHub3.sys [2015-08-20 221696]
S3 xhcdrv;VIA USB eXtensible Host Controller Service; C:\Windows\system32\drivers\xhcdrv.sys [2015-08-20 294912]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2017-07-06 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-12-13 2302160]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-05 521064]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-08-29 920864]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-01-05 462696]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2017-04-13 324608]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-08-29 414496]
R2 TeamViewer;TeamViewer 14; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2019-02-26 11665240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-03-12 153168]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.75\elevation_service.exe [2019-03-11 1268720]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-03-12 153168]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-02-26 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-03-01 239056]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-05 521064]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-07-06 1255736]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2017-07-06 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
-----------------EOF-----------------
Re: Kontrola logu - zpomalene PC
Je možné že už NTB pracuje o poznání rychleji?
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - zpomalene PC
Jistě. Vyčistili jsme ho od zbytečností. 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu - zpomalene PC
Pokud je to vše tak moc děkuji za pomoc. Pošlu něco na kafe a gábl. Lukasenko. 
-
Rudy
- Site Admin
- Příspěvky: 118272
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - zpomalene PC
Z mé strany vše. Za příspěvek děkujeme a vy nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?