Kontrola logu, spomalené PC

Zpráva

Vajo147 · #1 Příspěvek od **Vajo147** » 31 pro 2015 13:34

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peto at 2015-12-31 13:29:18
Microsoft Windows 10 Home
System drive C: has 29 GB (26%) free of 111 GB
Total RAM: 4095 MB (47% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:31:44, on 31. 12. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Users\Peto\AppData\Roaming\Spotify\spotify.exe
C:\Users\Peto\AppData\Roaming\Spotify\spotify.exe
C:\Users\Peto\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Peto\AppData\Roaming\Spotify\spotify.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Peto.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: PCGizmosBHO - {A817C286-3D6B-4ECD-A99C-E44E50DBC523} - C:\Users\Peto\AppData\Roaming\PC-Gizmos\PCGizmosBHO.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O2 - BHO: (no name) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - (no file)
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Peto\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Peto\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [f.lux] "C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_28D0A134A4D5ACFF6A0FD09930DA4ED6] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{6867ef15-fa6c-47db-bb21-3a2150111798}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{a0511bc3-aec4-46f5-93b9-083911f66265}: NameServer = 10.0.2.1
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunnelBear Maintenance (TunnelBearMaintenance) - Unknown owner - D:\TunnelBear\TBear.Maintenance.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12489 bytes

======Listing Processes======

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
dashost.exe {ceb6b2a0-d04d-482d-9595599000b350de}
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
taskeng.exe {E4B4346B-2FFF-4262-ACCB-0969B7CCB3F9}
sihost.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\Windows\System32\RuntimeBroker.exe -Embedding
Atouch64.exe
C:\WINDOWS\System32\spoolsv.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
C:\WINDOWS\system32\mqsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"

ATKOSD.exe
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
KBFiltr.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
WDC.exe
"C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5212.0.1345668746\923086200" --disable-accelerated-video-decode --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,12,23,51,61 --gpu-vendor-id=0x10de --gpu-device-id=0x0649 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4192 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.1.637835928\618414879" --font-cache-shared-handle=2060 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.2.376446269\2113279484" --font-cache-shared-handle=2064 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.3.1661300289\1520369212" --font-cache-shared-handle=2232 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.4.464604666\614910919" --font-cache-shared-handle=2236 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.5.587819974\1543572912" --font-cache-shared-handle=2552 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.6.146754915\1803846031" --font-cache-shared-handle=2648 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.7.390050291\109841865" --font-cache-shared-handle=2712 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.9.958610825\1263613067" --font-cache-shared-handle=2404 /prefetch:673131151
"fontdrvhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss d6444324-442a-40b9-9877-6b64984a3933 1
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
"D:\TeamSpeak 3 Client\ts3client_win64.exe"
"C:\Users\Peto\AppData\Roaming\Spotify\spotify.exe"
"C:\Users\Peto\AppData\Roaming\Spotify\spotify.exe" --type=gpu-process --channel="7108.0.279031905\1977838123" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.15.133 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x0649 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4192 --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.15.133 /prefetch:822062411
"C:\Users\Peto\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Peto\AppData\Roaming\Spotify\spotify.exe" --type=renderer --no-sandbox --lang=en-US --enable-crash-reporter --lang=en-US --log-severity=disable --product-version=Spotify/1.0.15.133 --disable-spell-checking --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="7108.1.1567346728\1829686237" /prefetch:673131151
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.17.51808407\286969356" --font-cache-shared-handle=2388 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.18.733378292\413802513" --font-cache-shared-handle=6760 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.21.198921743\853522414" --font-cache-shared-handle=8004 /prefetch:673131151
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Users\Peto\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5212.28.1541991736\1826306523" --font-cache-shared-handle=8756 /prefetch:673131151

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3726495464-3063979133-736323737-1000Core.job - C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3726495464-3063979133-736323737-1000UA.job - C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Peto\AppData\Roaming\Mozilla\Firefox\Profiles\qsg0e31h.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1221171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Doplnok iTunes Detector
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nullsoft.com/winampDetector;version=1]
"Description"=Winamp Detector
"Path"=D:\Winamp Detect\npwachk.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=D:\RealPlayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprpplugin.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-31 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-25 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-31 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A817C286-3D6B-4ECD-A99C-E44E50DBC523}]
SoundCloud Downloader - C:\Users\Peto\AppData\Roaming\PC-Gizmos\PCGizmosBHO.dll [2014-11-29 113152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-25 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-08-03 16161536]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-11-01 3738336]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2015-11-01 3738336]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-07-25 1283136]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-06-29 170280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\Peto\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-12-31 2541160]
"OneDrive"=C:\Users\Peto\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-15 551112]
"Dropbox Update"=C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-09-08 136048]
"f.lux"=C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-23 1017224]
"GoogleChromeAutoLaunch_28D0A134A4D5ACFF6A0FD09930DA4ED6"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-12-11 741704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-11-07 6133520]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\TkBellExe]
[]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

Vajo147 · #2 Příspěvek od **Vajo147** » 31 pro 2015 13:35

======List of files/folders created in the last 1 month======

2015-12-31 13:29:18 ----D---- C:\rsit
2015-12-18 14:04:17 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-18 14:04:08 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-18 14:04:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-18 14:04:01 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-18 14:04:00 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-18 14:04:00 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-18 14:03:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-18 14:03:59 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-18 14:03:57 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-18 14:03:57 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-18 14:03:55 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-18 14:03:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-18 14:03:54 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-18 14:03:53 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-18 14:03:53 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-18 14:03:51 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-18 14:03:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-18 14:03:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-18 14:03:45 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-18 14:03:45 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-18 14:03:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-18 14:03:40 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-18 14:03:34 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-18 14:03:33 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-18 14:03:32 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-16 14:29:33 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-16 10:06:36 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-16 10:06:28 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-16 10:06:24 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-16 10:06:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-16 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-16 10:06:21 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-16 10:06:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-16 10:06:19 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-16 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-16 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-16 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-16 10:06:16 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-16 10:06:16 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-16 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-16 10:06:15 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-16 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-16 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-16 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-16 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-16 10:06:11 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-16 10:06:09 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-16 10:06:09 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-16 10:06:07 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-16 10:06:07 ----A---- C:\WINDOWS\system32\services.exe
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-16 10:06:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-16 10:06:03 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-16 10:06:01 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-16 10:05:59 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-16 10:05:58 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-16 10:05:58 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-16 10:05:57 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-16 10:05:57 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-16 10:05:56 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-16 10:05:55 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-16 10:05:54 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-16 10:05:51 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-16 10:05:51 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-16 10:05:50 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-16 10:05:47 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-16 10:05:45 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-16 10:05:44 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-16 10:05:44 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-16 10:05:42 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-16 10:05:42 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-16 10:05:35 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-16 10:05:35 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-15 10:42:09 ----ASH---- C:\hiberfil.sys
2015-12-14 16:22:49 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-12-14 16:17:53 ----SD---- C:\Users\Peto\AppData\Roaming\Microsoft
2015-12-14 16:16:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-14 16:16:35 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-12-14 16:13:13 ----D---- C:\ProgramData\NVIDIA
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-12-14 16:13:04 ----HD---- C:\Program Files (x86)\Uninstall Information
2015-12-14 16:12:46 ----D---- C:\ProgramData\NVIDIA Corporation
2015-12-14 16:12:18 ----D---- C:\Program Files\Elantech
2015-12-14 16:12:05 ----D---- C:\WINDOWS\system32\SRSLabs
2015-12-14 16:12:01 ----D---- C:\Program Files\Realtek
2015-12-14 16:12:00 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-12-14 16:11:56 ----D---- C:\Program Files\NVIDIA Corporation
2015-12-14 16:10:32 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-14 16:08:48 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-14 16:08:10 ----D---- C:\WINDOWS\Prefetch
2015-12-14 16:07:09 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-14 16:06:08 ----SHD---- C:\Recovery
2015-12-14 16:06:01 ----DC---- C:\WINDOWS\Panther
2015-12-14 16:00:06 ----D---- C:\Windows.old
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-14 15:56:41 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\msmq
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\BestPractices
2015-12-14 15:52:24 ----D---- C:\Program Files\Reference Assemblies
2015-12-14 15:52:24 ----D---- C:\Program Files\MSBuild
2015-12-14 15:52:24 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-14 15:52:24 ----D---- C:\Program Files (x86)\MSBuild
2015-12-14 15:52:24 ----D---- C:\inetpub
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

======List of files/folders modified in the last 1 month======

2015-12-31 13:31:37 ----D---- C:\Program Files\trend micro
2015-12-31 13:28:58 ----D---- C:\Users\Peto\AppData\Roaming\Spotify
2015-12-31 13:28:25 ----D---- C:\WINDOWS\System32
2015-12-31 13:28:25 ----D---- C:\WINDOWS\INF
2015-12-31 13:26:14 ----D---- C:\WINDOWS\system32\Tasks
2015-12-31 13:23:46 ----D---- C:\Users\Peto\AppData\Roaming\TS3Client
2015-12-31 13:23:37 ----D---- C:\WINDOWS\system32\sru
2015-12-31 13:22:43 ----D---- C:\WINDOWS\Temp
2015-12-31 13:19:59 ----SHD---- C:\Config.Msi
2015-12-31 13:15:09 ----D---- C:\Users\Peto\AppData\Roaming\uTorrent
2015-12-31 13:08:48 ----SHD---- C:\WINDOWS\Installer
2015-12-31 13:08:11 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 13:08:07 ----RD---- C:\WINDOWS\assembly
2015-12-31 13:07:06 ----SD---- C:\ProgramData\Microsoft
2015-12-31 13:07:06 ----AD---- C:\Program Files\Microsoft Office
2015-12-31 13:07:06 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-12-31 13:06:06 ----RSD---- C:\WINDOWS\Fonts
2015-12-31 13:06:01 ----RD---- C:\Program Files
2015-12-31 13:06:00 ----RD---- C:\Program Files (x86)
2015-12-31 13:05:42 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-12-31 13:05:35 ----D---- C:\Program Files\Common Files
2015-12-31 13:03:31 ----D---- C:\ProgramData\Microsoft Help
2015-12-31 13:02:04 ----D---- C:\WINDOWS\ShellNew
2015-12-31 13:01:49 ----D---- C:\Program Files\Common Files\System
2015-12-31 13:01:48 ----A---- C:\WINDOWS\win.ini
2015-12-31 11:15:26 ----D---- C:\WINDOWS\system32\config
2015-12-31 11:11:04 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-31 10:24:37 ----D---- C:\WINDOWS\AppReadiness
2015-12-31 10:24:35 ----HD---- C:\Program Files\WindowsApps
2015-12-30 22:08:41 ----AD---- C:\Program Files (x86)\Battle.net
2015-12-30 16:57:23 ----D---- C:\WINDOWS\WinSxS
2015-12-30 16:49:27 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 16:49:24 ----D---- C:\WINDOWS\SysWOW64
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-26 01:02:40 ----D---- C:\Users\Peto\AppData\Roaming\vlc
2015-12-21 21:24:12 ----D---- C:\Users\Peto\AppData\Roaming\Dropbox
2015-12-20 11:27:03 ----D---- C:\WINDOWS\system32\WDI
2015-12-19 18:46:45 ----D---- C:\WINDOWS\system32\appraiser
2015-12-19 18:46:44 ----D---- C:\WINDOWS\Provisioning
2015-12-19 18:46:44 ----D---- C:\WINDOWS\bcastdvr
2015-12-19 18:46:44 ----D---- C:\WINDOWS\AppPatch
2015-12-18 19:33:13 ----D---- C:\WINDOWS\system32\MRT
2015-12-18 19:17:36 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-18 13:55:55 ----D---- C:\WINDOWS\system32\catroot2
2015-12-18 13:03:52 ----D---- C:\WINDOWS\rescache
2015-12-18 13:01:51 ----D---- C:\WINDOWS\Logs
2015-12-18 11:49:07 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\sk-SK
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\oobe
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-18 11:49:02 ----D---- C:\Program Files\Internet Explorer
2015-12-18 11:49:02 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-18 11:49:01 ----D---- C:\WINDOWS\system32\drivers
2015-12-17 10:08:00 ----A---- C:\WINDOWS\system32\acovcnt.exe
2015-12-16 13:59:25 ----D---- C:\WINDOWS\debug
2015-12-16 09:29:36 ----D---- C:\WINDOWS\appcompat
2015-12-15 11:20:24 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-15 11:01:52 ----RD---- C:\WINDOWS\PrintDialog
2015-12-15 11:01:49 ----RD---- C:\WINDOWS\MiracastView
2015-12-15 11:01:04 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-15 10:59:14 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-15 10:59:04 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-15 10:57:04 ----D---- C:\WINDOWS\Registration
2015-12-15 10:54:21 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-15 10:54:00 ----D---- C:\WINDOWS\Tasks
2015-12-15 10:53:11 ----RSD---- C:\WINDOWS\Media
2015-12-15 10:53:01 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-15 10:47:25 ----D---- C:\WINDOWS\system32\wbem
2015-12-15 10:42:09 ----D---- C:\Windows
2015-12-14 16:36:19 ----D---- C:\WINDOWS\system32\FxsTmp
2015-12-14 16:36:03 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-14 16:36:03 ----D---- C:\WINDOWS\SYSWOW64\ASUS_Screensaver dir
2015-12-14 16:36:02 ----D---- C:\WINDOWS\system32\OEM
2015-12-14 16:36:00 ----HD---- C:\ProgramData
2015-12-14 16:26:44 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-14 16:26:41 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-12-14 16:26:41 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-14 16:26:40 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-12-14 16:26:38 ----SHD---- C:\WINDOWS\SYSWOW64\AI_RecycleBin
2015-12-14 16:26:37 ----AD---- C:\WINDOWS\SYSWOW64\Adobe
2015-12-14 16:26:27 ----D---- C:\WINDOWS\system32\SPReview
2015-12-14 16:26:26 ----D---- C:\WINDOWS\system32\spool
2015-12-14 16:26:23 ----D---- C:\WINDOWS\system32\slmgr
2015-12-14 16:26:18 ----D---- C:\WINDOWS\system32\NDF
2015-12-14 16:26:18 ----D---- C:\WINDOWS\system32\migration
2015-12-14 16:26:17 ----D---- C:\WINDOWS\system32\IME
2015-12-14 16:26:17 ----D---- C:\WINDOWS\system32\EventProviders
2015-12-14 16:26:14 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-12-14 16:23:56 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-14 16:23:50 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-14 16:23:50 ----D---- C:\WINDOWS\schemas
2015-12-14 16:23:47 ----D---- C:\WINDOWS\LiveKernelReports
2015-12-14 16:23:26 ----D---- C:\WINDOWS\ehome
2015-12-14 16:23:20 ----RD---- C:\Users
2015-12-14 16:23:20 ----D---- C:\ProgramData\USOPrivate
2015-12-14 16:23:19 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-14 16:23:02 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-12-14 16:23:02 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-14 16:23:00 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-14 16:22:58 ----D---- C:\Program Files (x86)\Common Files
2015-12-14 16:22:54 ----SHD---- C:\Program Files\Windows Sidebar
2015-12-14 16:22:53 ----D---- C:\Program Files\Windows Mail
2015-12-14 16:22:50 ----D---- C:\Program Files\Microsoft Games
2015-12-14 16:21:23 ----D---- C:\WINDOWS\system32\Recovery
2015-12-14 16:17:27 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-14 16:15:53 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-14 16:13:07 ----D---- C:\WINDOWS\Help
2015-12-14 16:07:26 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-14 15:59:45 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-14 15:59:45 ----D---- C:\WINDOWS\system32\Dism
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\inetsrv
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\en-US
2015-12-14 15:52:17 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-12-14 15:52:17 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-12-14 15:52:16 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-12-14 15:52:16 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-12-14 15:52:12 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-12-14 15:52:12 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-12-14 15:52:10 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-12-14 15:52:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-12-14 15:52:06 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-12-14 15:52:06 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-12-14 15:52:04 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-12-14 15:52:03 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-12-14 15:52:02 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-12-14 15:52:00 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-12-14 15:51:59 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-12-14 15:51:59 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-12-14 12:21:31 ----RASH---- C:\BOOTSECT.BAK
2015-12-14 12:21:25 ----SHD---- C:\Boot
2015-12-14 12:12:01 ----HD---- C:\$WINDOWS.~BT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsDsm;AsDsm; C:\WINDOWS\system32\drivers\AsDsm.sys [2010-01-23 35384]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-10-31 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-10-31 274808]
R0 nvstor64;nvstor64; C:\WINDOWS\System32\drivers\nvstor64.sys [2010-04-08 244328]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2012-03-07 28504]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-10-31 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-11-07 1059656]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-11-07 449992]
R1 dtsoftbus01;@oem39.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2012-11-09 283200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 ndiskhaz;@oem22.inf,%ndiskhaz_Desc%;Azzouzi HotSpot LightWeight Filter; C:\WINDOWS\system32\DRIVERS\ndiskhaz.sys [2012-12-07 30536]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-10-31 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-10-31 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-10-31 153744]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 ETD;@oem7.inf,%PS2DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-11-01 464472]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-08-03 4598528]
R3 kbfiltr;@oem27.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2009-07-20 15416]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-14 175616]
R3 MTsensor;@oem37.inf,%ATKACPI.DisplayName%;ATK0100 ACPI UTILITY; C:\WINDOWS\System32\drivers\ATK64AMD.sys [2009-05-13 15928]
R3 NVHDA;@oem5.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-11-25 206120]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-11-25 12907704]
R3 nvsmu;nvsmu; C:\WINDOWS\system32\DRIVERS\nvsmu.sys [2010-03-22 29800]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 20256]
R3 nvvad_WaveExtensible;@oem1.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 rt640x64;@oem13.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-21 888064]
R3 ScreamBAudioSvc;@oem45.inf,%sbee_audio.SvcDesc%;ScreamBee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio64.sys [2010-07-01 38992]
R3 tap-tb-0901;@oem14.inf,%DeviceDescription%;TunnelBear Adapter V9; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [2015-02-11 38656]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 cpudrv64;cpudrv64; \??\C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2009-12-18 17864]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 tap0901;TAP-Windows Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2014-03-24 40664]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-31 146600]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-11-01 144104]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-14 26624]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 18956064]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-10-13 933168]
R2 OneSyncSvc_24e4e;Sync Host_24e4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-08-03 306944]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-10-13 416432]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 TunnelBearMaintenance;TunnelBear Maintenance; D:\TunnelBear\TBear.Maintenance.exe [2015-04-29 34752]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 ADSMService;ADSM Service; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2008-03-31 225280]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Bezpečnosť rodiny v službe Windows Live; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-06-29 644904]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_24e4e;MessagingService_24e4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-24 115168]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_24e4e;Kontaktné údaje_24e4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

#3 Příspěvek od **Rudy** » 31 pro 2015 16:25

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Vajo147 · #4 Příspěvek od **Vajo147** » 31 pro 2015 18:26

Ahoj Rudy

, Tu je LOG:

# AdwCleaner v5.027 - Logfile created 31/12/2015 at 18:21:23
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Peto - PETOPCLGS
# Running from : C:\Users\Peto\Desktop\adwcleaner_5.027.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Users\Peto\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\Peto\AppData\Local\Google\Chrome\User Data\Default\Extensions\apbeiaejbifegcmfkflngimmegifddkn
[-] Folder Deleted : C:\Users\Peto\AppData\Roaming\ProgSense
[-] Folder Deleted : C:\Users\Peto\AppData\Roaming\PC-Gizmos

***** [ Files ] *****

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

[-] Task Deleted : {D99ACFED-6596-4E06-9920-E3E3A1D0263E}

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\PCGizmosBHO.PCGizmosObj
[-] Key Deleted : HKLM\SOFTWARE\Classes\PCGizmosBHO.PCGizmosObj.1
[-] Key Deleted : HKLM\SOFTWARE\c7df1c2f-c768-43f1-9ead-e68d9550edf0
[-] Key Deleted : HKLM\SOFTWARE\f14a0770-eef8-4e80-8186-6c4157558bbd
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A817C286-3D6B-4ECD-A99C-E44E50DBC523}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{052EB349-A9D2-470A-A1CC-8E0AD564D387}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB8CB19E-7E4D-41AE-8580-E8106CB5A7BC}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A817C286-3D6B-4ECD-A99C-E44E50DBC523}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A817C286-3D6B-4ECD-A99C-E44E50DBC523}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A817C286-3D6B-4ECD-A99C-E44E50DBC523}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{052EB349-A9D2-470A-A1CC-8E0AD564D387}
[-] Key Deleted : HKCU\Software\ProgSense
[-] Key Deleted : HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : HKCU\Software\Software Updater
[-] Key Deleted : HKCU\Software\PC-Gizmos
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\Software Updater
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

***** [ Web browsers ] *****

[-] [C:\Users\Peto\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : apbeiaejbifegcmfkflngimmegifddkn
[-] [C:\Users\Peto\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : cflheckfmhopnialghigdlggahiomebp
[-] [C:\Users\Peto\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oiokahphinmbmakkehgelkmpolmnbkdh

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5495 bytes] ##########

#5 Příspěvek od **Rudy** » 31 pro 2015 20:10

Dejte nový log RSIT.

Vajo147 · #6 Příspěvek od **Vajo147** » 01 led 2016 12:00

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peto at 2016-01-01 11:59:12
Microsoft Windows 10 Home
System drive C: has 29 GB (26%) free of 111 GB
Total RAM: 4095 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:59:18, on 1. 1. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\trend micro\Peto.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O2 - BHO: (no name) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - (no file)
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Peto\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Peto\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [f.lux] "C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_28D0A134A4D5ACFF6A0FD09930DA4ED6] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{6867ef15-fa6c-47db-bb21-3a2150111798}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{a0511bc3-aec4-46f5-93b9-083911f66265}: NameServer = 10.0.2.1
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunnelBear Maintenance (TunnelBearMaintenance) - Unknown owner - D:\TunnelBear\TBear.Maintenance.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12091 bytes

======Listing Processes======

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
dashost.exe {3d99be5d-4f39-4bb2-b54fbcd3ebf8b7a7}
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss d6444324-442a-40b9-9877-6b64984a3933 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\alg.exe

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
Atouch64.exe
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files\P4G\BatteryLife.exe"
C:\WINDOWS\Explorer.EXE
taskeng.exe {8BA20AC8-D574-4075-89B0-5A86C1130550}
C:\Windows\System32\RuntimeBroker.exe -Embedding
ATKOSD.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
KBFiltr.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
WDC.exe
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="756.0.2069638088\961601205" --disable-accelerated-video-decode --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,12,23,51,61 --gpu-vendor-id=0x10de --gpu-device-id=0x0649 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4192 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.1.1885104036\320528762" --font-cache-shared-handle=2264 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.2.865962230\1792754355" --font-cache-shared-handle=2400 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.3.273898652\640771215" --font-cache-shared-handle=2500 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.4.1609587271\2142940668" --font-cache-shared-handle=2600 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.5.1169079806\957803252" --font-cache-shared-handle=2292 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.6.623988519\92077466" --font-cache-shared-handle=2896 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.7.1103225995\1909042319" --font-cache-shared-handle=2920 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.8.901362691\980792809" --font-cache-shared-handle=2340 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.9.1650154843\1446564555" --font-cache-shared-handle=3140 /prefetch:673131151
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"D:\TeamSpeak 3 Client\ts3client_win64.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.12.128994678\1301252090" --font-cache-shared-handle=7972 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="756.13.77037369\1783980213" --font-cache-shared-handle=7728 /prefetch:673131151
"C:\Users\Peto\Desktop\RSITx64.exe"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Users\Peto\AppData\Roaming\Spotify\spotify.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3726495464-3063979133-736323737-1000Core.job - C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3726495464-3063979133-736323737-1000UA.job - C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Peto\AppData\Roaming\Mozilla\Firefox\Profiles\qsg0e31h.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1221171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Doplnok iTunes Detector
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nullsoft.com/winampDetector;version=1]
"Description"=Winamp Detector
"Path"=D:\Winamp Detect\npwachk.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=D:\RealPlayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprpplugin.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-31 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-25 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-31 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-25 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-08-03 16161536]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-11-01 3738336]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2015-11-01 3738336]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-07-25 1283136]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-06-29 170280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\Peto\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-12-31 2346096]
"OneDrive"=C:\Users\Peto\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-15 551112]
"Dropbox Update"=C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-09-08 136048]
"f.lux"=C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-23 1017224]
"GoogleChromeAutoLaunch_28D0A134A4D5ACFF6A0FD09930DA4ED6"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-12-11 741704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-11-07 6133520]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\TkBellExe]
[]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

Vajo147 · #7 Příspěvek od **Vajo147** » 01 led 2016 12:01

======List of files/folders created in the last 1 month======

2015-12-31 18:13:14 ----D---- C:\AdwCleaner
2015-12-31 13:29:18 ----D---- C:\rsit
2015-12-18 14:04:17 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-18 14:04:08 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-18 14:04:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-18 14:04:01 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-18 14:04:00 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-18 14:04:00 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-18 14:03:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-18 14:03:59 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-18 14:03:57 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-18 14:03:57 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-18 14:03:55 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-18 14:03:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-18 14:03:54 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-18 14:03:53 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-18 14:03:53 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-18 14:03:51 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-18 14:03:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-18 14:03:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-18 14:03:45 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-18 14:03:45 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-18 14:03:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-18 14:03:40 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-18 14:03:34 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-18 14:03:33 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-18 14:03:32 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-16 14:29:33 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-16 10:06:36 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-16 10:06:28 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-16 10:06:24 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-16 10:06:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-16 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-16 10:06:21 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-16 10:06:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-16 10:06:19 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-16 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-16 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-16 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-16 10:06:16 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-16 10:06:16 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-16 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-16 10:06:15 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-16 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-16 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-16 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-16 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-16 10:06:11 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-16 10:06:09 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-16 10:06:09 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-16 10:06:07 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-16 10:06:07 ----A---- C:\WINDOWS\system32\services.exe
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-16 10:06:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-16 10:06:03 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-16 10:06:01 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-16 10:05:59 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-16 10:05:58 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-16 10:05:58 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-16 10:05:57 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-16 10:05:57 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-16 10:05:56 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-16 10:05:55 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-16 10:05:54 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-16 10:05:51 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-16 10:05:51 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-16 10:05:50 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-16 10:05:47 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-16 10:05:45 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-16 10:05:44 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-16 10:05:44 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-16 10:05:42 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-16 10:05:42 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-16 10:05:35 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-16 10:05:35 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-15 10:42:09 ----ASH---- C:\hiberfil.sys
2015-12-14 16:22:49 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-12-14 16:17:53 ----SD---- C:\Users\Peto\AppData\Roaming\Microsoft
2015-12-14 16:16:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-14 16:16:35 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-12-14 16:13:13 ----D---- C:\ProgramData\NVIDIA
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-12-14 16:13:04 ----HD---- C:\Program Files (x86)\Uninstall Information
2015-12-14 16:12:46 ----D---- C:\ProgramData\NVIDIA Corporation
2015-12-14 16:12:18 ----D---- C:\Program Files\Elantech
2015-12-14 16:12:05 ----D---- C:\WINDOWS\system32\SRSLabs
2015-12-14 16:12:01 ----D---- C:\Program Files\Realtek
2015-12-14 16:12:00 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-12-14 16:11:56 ----D---- C:\Program Files\NVIDIA Corporation
2015-12-14 16:10:32 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-14 16:08:48 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-14 16:08:10 ----D---- C:\WINDOWS\Prefetch
2015-12-14 16:07:09 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-14 16:06:08 ----SHD---- C:\Recovery
2015-12-14 16:06:01 ----DC---- C:\WINDOWS\Panther
2015-12-14 16:00:06 ----D---- C:\Windows.old
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-14 15:56:41 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\msmq
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\BestPractices
2015-12-14 15:52:24 ----D---- C:\Program Files\Reference Assemblies
2015-12-14 15:52:24 ----D---- C:\Program Files\MSBuild
2015-12-14 15:52:24 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-14 15:52:24 ----D---- C:\Program Files (x86)\MSBuild
2015-12-14 15:52:24 ----D---- C:\inetpub
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

======List of files/folders modified in the last 1 month======

2016-01-01 11:59:15 ----D---- C:\Program Files\trend micro
2016-01-01 11:57:56 ----D---- C:\Users\Peto\AppData\Roaming\TS3Client
2016-01-01 11:57:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-01 11:57:00 ----D---- C:\WINDOWS\system32\sru
2016-01-01 11:56:33 ----D---- C:\WINDOWS\Temp
2015-12-31 19:33:02 ----D---- C:\Users\Peto\AppData\Roaming\Spotify
2015-12-31 18:30:54 ----D---- C:\WINDOWS\System32
2015-12-31 18:30:54 ----D---- C:\WINDOWS\INF
2015-12-31 14:44:14 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 13:54:14 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-31 13:19:59 ----SHD---- C:\Config.Msi
2015-12-31 13:15:09 ----D---- C:\Users\Peto\AppData\Roaming\uTorrent
2015-12-31 13:08:48 ----SHD---- C:\WINDOWS\Installer
2015-12-31 13:08:07 ----RD---- C:\WINDOWS\assembly
2015-12-31 13:07:06 ----SD---- C:\ProgramData\Microsoft
2015-12-31 13:07:06 ----AD---- C:\Program Files\Microsoft Office
2015-12-31 13:07:06 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-12-31 13:06:06 ----RSD---- C:\WINDOWS\Fonts
2015-12-31 13:06:01 ----RD---- C:\Program Files
2015-12-31 13:06:00 ----RD---- C:\Program Files (x86)
2015-12-31 13:05:42 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-12-31 13:05:40 ----D---- C:\WINDOWS\ShellNew
2015-12-31 13:05:35 ----D---- C:\Program Files\Common Files
2015-12-31 13:03:31 ----D---- C:\ProgramData\Microsoft Help
2015-12-31 13:01:49 ----D---- C:\Program Files\Common Files\System
2015-12-31 13:01:48 ----A---- C:\WINDOWS\win.ini
2015-12-31 12:20:28 ----D---- C:\WINDOWS\AppReadiness
2015-12-31 11:15:26 ----D---- C:\WINDOWS\system32\config
2015-12-31 11:11:04 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-31 10:24:35 ----HD---- C:\Program Files\WindowsApps
2015-12-30 22:08:41 ----AD---- C:\Program Files (x86)\Battle.net
2015-12-30 16:57:23 ----D---- C:\WINDOWS\WinSxS
2015-12-30 16:49:27 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 16:49:24 ----D---- C:\WINDOWS\SysWOW64
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-26 01:02:40 ----D---- C:\Users\Peto\AppData\Roaming\vlc
2015-12-21 21:24:12 ----D---- C:\Users\Peto\AppData\Roaming\Dropbox
2015-12-20 11:27:03 ----D---- C:\WINDOWS\system32\WDI
2015-12-19 18:46:45 ----D---- C:\WINDOWS\system32\appraiser
2015-12-19 18:46:44 ----D---- C:\WINDOWS\Provisioning
2015-12-19 18:46:44 ----D---- C:\WINDOWS\bcastdvr
2015-12-19 18:46:44 ----D---- C:\WINDOWS\AppPatch
2015-12-18 19:33:13 ----D---- C:\WINDOWS\system32\MRT
2015-12-18 19:17:36 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-18 13:55:55 ----D---- C:\WINDOWS\system32\catroot2
2015-12-18 13:03:52 ----D---- C:\WINDOWS\rescache
2015-12-18 13:01:51 ----D---- C:\WINDOWS\Logs
2015-12-18 11:49:07 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\sk-SK
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\oobe
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-18 11:49:02 ----D---- C:\Program Files\Internet Explorer
2015-12-18 11:49:02 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-18 11:49:01 ----D---- C:\WINDOWS\system32\drivers
2015-12-17 10:08:00 ----A---- C:\WINDOWS\system32\acovcnt.exe
2015-12-16 13:59:25 ----D---- C:\WINDOWS\debug
2015-12-16 09:29:36 ----D---- C:\WINDOWS\appcompat
2015-12-15 11:20:24 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-15 11:01:52 ----RD---- C:\WINDOWS\PrintDialog
2015-12-15 11:01:49 ----RD---- C:\WINDOWS\MiracastView
2015-12-15 11:01:04 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-15 10:59:14 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-15 10:59:04 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-15 10:57:04 ----D---- C:\WINDOWS\Registration
2015-12-15 10:54:21 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-15 10:54:00 ----D---- C:\WINDOWS\Tasks
2015-12-15 10:53:11 ----RSD---- C:\WINDOWS\Media
2015-12-15 10:47:25 ----D---- C:\WINDOWS\system32\wbem
2015-12-15 10:42:09 ----D---- C:\Windows
2015-12-14 16:36:19 ----D---- C:\WINDOWS\system32\FxsTmp
2015-12-14 16:36:03 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-14 16:36:03 ----D---- C:\WINDOWS\SYSWOW64\ASUS_Screensaver dir
2015-12-14 16:36:02 ----D---- C:\WINDOWS\system32\OEM
2015-12-14 16:36:00 ----HD---- C:\ProgramData
2015-12-14 16:26:44 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-14 16:26:41 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-12-14 16:26:41 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-14 16:26:40 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-12-14 16:26:38 ----SHD---- C:\WINDOWS\SYSWOW64\AI_RecycleBin
2015-12-14 16:26:37 ----AD---- C:\WINDOWS\SYSWOW64\Adobe
2015-12-14 16:26:27 ----D---- C:\WINDOWS\system32\SPReview
2015-12-14 16:26:26 ----D---- C:\WINDOWS\system32\spool
2015-12-14 16:26:23 ----D---- C:\WINDOWS\system32\slmgr
2015-12-14 16:26:18 ----D---- C:\WINDOWS\system32\NDF
2015-12-14 16:26:18 ----D---- C:\WINDOWS\system32\migration
2015-12-14 16:26:17 ----D---- C:\WINDOWS\system32\IME
2015-12-14 16:26:17 ----D---- C:\WINDOWS\system32\EventProviders
2015-12-14 16:26:14 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-12-14 16:23:56 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-14 16:23:50 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-14 16:23:50 ----D---- C:\WINDOWS\schemas
2015-12-14 16:23:47 ----D---- C:\WINDOWS\LiveKernelReports
2015-12-14 16:23:26 ----D---- C:\WINDOWS\ehome
2015-12-14 16:23:20 ----RD---- C:\Users
2015-12-14 16:23:20 ----D---- C:\ProgramData\USOPrivate
2015-12-14 16:23:19 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-14 16:23:02 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-12-14 16:23:02 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-14 16:23:00 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-14 16:22:58 ----D---- C:\Program Files (x86)\Common Files
2015-12-14 16:22:54 ----SHD---- C:\Program Files\Windows Sidebar
2015-12-14 16:22:53 ----D---- C:\Program Files\Windows Mail
2015-12-14 16:22:50 ----D---- C:\Program Files\Microsoft Games
2015-12-14 16:21:23 ----D---- C:\WINDOWS\system32\Recovery
2015-12-14 16:17:27 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-14 16:15:53 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-14 16:13:07 ----D---- C:\WINDOWS\Help
2015-12-14 16:07:26 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-14 15:59:45 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-14 15:59:45 ----D---- C:\WINDOWS\system32\Dism
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\inetsrv
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\en-US
2015-12-14 15:52:17 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-12-14 15:52:17 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-12-14 15:52:16 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-12-14 15:52:16 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-12-14 15:52:12 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-12-14 15:52:12 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-12-14 15:52:10 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-12-14 15:52:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-12-14 15:52:06 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-12-14 15:52:06 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-12-14 15:52:04 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-12-14 15:52:03 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-12-14 15:52:02 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-12-14 15:52:00 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-12-14 15:51:59 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-12-14 15:51:59 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-12-14 12:21:31 ----RASH---- C:\BOOTSECT.BAK
2015-12-14 12:21:25 ----SHD---- C:\Boot
2015-12-14 12:12:01 ----HD---- C:\$WINDOWS.~BT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsDsm;AsDsm; C:\WINDOWS\system32\drivers\AsDsm.sys [2010-01-23 35384]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-10-31 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-10-31 274808]
R0 nvstor64;nvstor64; C:\WINDOWS\System32\drivers\nvstor64.sys [2010-04-08 244328]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2012-03-07 28504]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-10-31 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-11-07 1059656]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-11-07 449992]
R1 dtsoftbus01;@oem39.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2012-11-09 283200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 ndiskhaz;@oem22.inf,%ndiskhaz_Desc%;Azzouzi HotSpot LightWeight Filter; C:\WINDOWS\system32\DRIVERS\ndiskhaz.sys [2012-12-07 30536]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-10-31 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-10-31 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-10-31 153744]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 ETD;@oem7.inf,%PS2DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-11-01 464472]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-08-03 4598528]
R3 kbfiltr;@oem27.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2009-07-20 15416]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-14 175616]
R3 MTsensor;@oem37.inf,%ATKACPI.DisplayName%;ATK0100 ACPI UTILITY; C:\WINDOWS\System32\drivers\ATK64AMD.sys [2009-05-13 15928]
R3 NVHDA;@oem5.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-11-25 206120]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-11-25 12907704]
R3 nvsmu;nvsmu; C:\WINDOWS\system32\DRIVERS\nvsmu.sys [2010-03-22 29800]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 20256]
R3 nvvad_WaveExtensible;@oem1.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 rt640x64;@oem13.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-21 888064]
R3 ScreamBAudioSvc;@oem45.inf,%sbee_audio.SvcDesc%;ScreamBee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio64.sys [2010-07-01 38992]
R3 tap-tb-0901;@oem14.inf,%DeviceDescription%;TunnelBear Adapter V9; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [2015-02-11 38656]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 cpudrv64;cpudrv64; \??\C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2009-12-18 17864]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 tap0901;TAP-Windows Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2014-03-24 40664]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-31 146600]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-11-01 144104]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-14 26624]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 18956064]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-10-13 933168]
R2 OneSyncSvc_29b153;Sync Host_29b153; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-08-03 306944]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-10-13 416432]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 TunnelBearMaintenance;TunnelBear Maintenance; D:\TunnelBear\TBear.Maintenance.exe [2015-04-29 34752]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 ADSMService;ADSM Service; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2008-03-31 225280]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Bezpečnosť rodiny v službe Windows Live; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-06-29 644904]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_29b153;MessagingService_29b153; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-24 115168]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_29b153;Kontaktné údaje_29b153; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

#8 Příspěvek od **Rudy** » 01 led 2016 13:06

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\ProgramData\RealNetworks
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:services
RealNetworks Downloader Resolver Service

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]/64

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

Vajo147 · #9 Příspěvek od **Vajo147** » 01 led 2016 13:18

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peto at 2016-01-01 13:17:27
Microsoft Windows 10 Home
System drive C: has 30 GB (27%) free of 111 GB
Total RAM: 4095 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:17:33, on 1. 1. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Peto.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O2 - BHO: (no name) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - (no file)
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Peto\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Peto\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [f.lux] "C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_28D0A134A4D5ACFF6A0FD09930DA4ED6] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{6867ef15-fa6c-47db-bb21-3a2150111798}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{a0511bc3-aec4-46f5-93b9-083911f66265}: NameServer = 10.0.2.1
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunnelBear Maintenance (TunnelBearMaintenance) - Unknown owner - D:\TunnelBear\TBear.Maintenance.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11956 bytes

======Listing Processes======

C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
dashost.exe {090b8384-3a59-4a87-a87e3361dc6f88b9}
taskeng.exe {E42C5B17-8B91-4DF6-85D1-EF2AF9342B98}
sihost.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
Atouch64.exe
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files\Elantech\ETDService.exe"
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
ATKOSD.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
KBFiltr.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\01012016_130832.log
WDC.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"

"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss d6444324-442a-40b9-9877-6b64984a3933 1
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe" /logoncheck
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\WINDOWS\System32\alg.exe
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4028.0.157624589\979525609" --disable-accelerated-video-decode --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,12,23,51,61 --gpu-vendor-id=0x10de --gpu-device-id=0x0649 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4192 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.1.809903210\235631654" --font-cache-shared-handle=2244 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.2.275115518\787979695" --font-cache-shared-handle=2540 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.3.673250077\1233985697" --font-cache-shared-handle=2572 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.4.1825633912\1177954621" --font-cache-shared-handle=2104 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.5.1500194709\1235249781" --font-cache-shared-handle=2668 /prefetch:673131151
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /AECBYLISTENTOSTATUS
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.6.211699297\263921019" --font-cache-shared-handle=3296 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.7.666901177\2038709077" --font-cache-shared-handle=3412 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.8.1797627980\1774967207" --font-cache-shared-handle=3572 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.9.534226029\1189017667" --font-cache-shared-handle=3708 /prefetch:673131151
"fontdrvhost.exe"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --disable-accelerated-video-decode --lang=sk --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/*AsyncSetAsDefault/Enabled/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/14DaySingleProfile/*DomRel-Enable/enable/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-experimental-extension-apis --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="4028.11.61604587\840444784" --font-cache-shared-handle=7392 /prefetch:673131151
C:\WINDOWS\system32\wermgr.exe -upload

C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\servicing\TrustedInstaller.exe
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Users\Peto\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3726495464-3063979133-736323737-1000Core.job - C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-3726495464-3063979133-736323737-1000UA.job - C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Peto\AppData\Roaming\Mozilla\Firefox\Profiles\qsg0e31h.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1221171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Doplnok iTunes Detector
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nullsoft.com/winampDetector;version=1]
"Description"=Winamp Detector
"Path"=D:\Winamp Detect\npwachk.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=D:\RealPlayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 20.0.0.267 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprpplugin.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-31 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-25 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-31 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-25 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-08-03 16161536]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-11-01 3738336]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2015-11-01 3738336]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-07-25 1283136]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-06-29 170280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\Peto\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-12-31 2346096]
"OneDrive"=C:\Users\Peto\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-15 551112]
"Dropbox Update"=C:\Users\Peto\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-09-08 136048]
"f.lux"=C:\Users\Peto\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-23 1017224]
"GoogleChromeAutoLaunch_28D0A134A4D5ACFF6A0FD09930DA4ED6"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-12-11 741704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-11-07 6133520]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\shared tools\msconfig\startupreg\TkBellExe]
[]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"PromptOnSecureDesktop"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

Vajo147 · #10 Příspěvek od **Vajo147** » 01 led 2016 13:18

======List of files/folders created in the last 1 month======

2016-01-01 13:08:32 ----D---- C:\_OTM
2015-12-31 18:13:14 ----D---- C:\AdwCleaner
2015-12-31 13:29:18 ----D---- C:\rsit
2015-12-18 14:04:17 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-18 14:04:08 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-18 14:04:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-18 14:04:01 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-18 14:04:00 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-18 14:04:00 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-18 14:03:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-18 14:03:59 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-18 14:03:57 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-18 14:03:57 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-18 14:03:56 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-18 14:03:55 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-18 14:03:55 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-18 14:03:54 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-18 14:03:53 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-18 14:03:53 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-18 14:03:52 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-18 14:03:51 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-18 14:03:50 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-18 14:03:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-18 14:03:47 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-18 14:03:46 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-18 14:03:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-18 14:03:45 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-18 14:03:45 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-18 14:03:44 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-18 14:03:43 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-18 14:03:42 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-18 14:03:41 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-18 14:03:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-18 14:03:40 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-18 14:03:39 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-18 14:03:38 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-18 14:03:37 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-18 14:03:36 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-18 14:03:35 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-18 14:03:34 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-18 14:03:33 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-18 14:03:32 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-18 14:03:31 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-16 14:29:33 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-16 10:06:36 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-16 10:06:28 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-16 10:06:24 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-16 10:06:22 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-16 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-16 10:06:21 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-16 10:06:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-16 10:06:19 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-16 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-16 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-16 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-16 10:06:16 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-16 10:06:16 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-16 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-16 10:06:15 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-16 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-16 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-16 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-16 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-16 10:06:11 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-16 10:06:10 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-16 10:06:09 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-16 10:06:09 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-16 10:06:08 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-16 10:06:07 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-16 10:06:07 ----A---- C:\WINDOWS\system32\services.exe
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-16 10:06:06 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-16 10:06:05 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-16 10:06:04 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-16 10:06:03 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-16 10:06:03 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-16 10:06:02 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-16 10:06:01 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-16 10:06:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-16 10:06:00 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-16 10:05:59 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-16 10:05:59 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-16 10:05:58 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-16 10:05:58 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-16 10:05:57 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-16 10:05:57 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-16 10:05:56 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-16 10:05:56 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-16 10:05:55 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-16 10:05:55 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-16 10:05:54 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-16 10:05:54 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-16 10:05:53 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-16 10:05:51 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-16 10:05:51 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-16 10:05:50 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-16 10:05:49 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-16 10:05:48 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-16 10:05:47 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-16 10:05:46 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-16 10:05:45 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-16 10:05:44 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-16 10:05:44 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-16 10:05:43 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-16 10:05:42 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-16 10:05:42 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-16 10:05:41 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-16 10:05:40 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-16 10:05:39 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-16 10:05:38 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-16 10:05:37 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-16 10:05:36 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-16 10:05:35 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-16 10:05:35 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-16 10:05:34 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-16 10:05:31 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-16 10:05:30 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-15 10:42:09 ----ASH---- C:\hiberfil.sys
2015-12-14 16:22:49 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-12-14 16:17:53 ----SD---- C:\Users\Peto\AppData\Roaming\Microsoft
2015-12-14 16:16:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-14 16:16:35 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-12-14 16:13:13 ----D---- C:\ProgramData\NVIDIA
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-12-14 16:13:08 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-12-14 16:13:04 ----HD---- C:\Program Files (x86)\Uninstall Information
2015-12-14 16:12:46 ----D---- C:\ProgramData\NVIDIA Corporation
2015-12-14 16:12:18 ----D---- C:\Program Files\Elantech
2015-12-14 16:12:05 ----D---- C:\WINDOWS\system32\SRSLabs
2015-12-14 16:12:01 ----D---- C:\Program Files\Realtek
2015-12-14 16:12:00 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-12-14 16:11:56 ----D---- C:\Program Files\NVIDIA Corporation
2015-12-14 16:10:32 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-14 16:08:48 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-14 16:08:10 ----D---- C:\WINDOWS\Prefetch
2015-12-14 16:07:09 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-14 16:06:08 ----SHD---- C:\Recovery
2015-12-14 16:06:01 ----DC---- C:\WINDOWS\Panther
2015-12-14 16:00:06 ----D---- C:\Windows.old
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-14 15:59:12 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-14 15:59:11 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-14 15:59:10 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-14 15:56:41 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\msmq
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\BestPractices
2015-12-14 15:52:24 ----D---- C:\Program Files\Reference Assemblies
2015-12-14 15:52:24 ----D---- C:\Program Files\MSBuild
2015-12-14 15:52:24 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-14 15:52:24 ----D---- C:\Program Files (x86)\MSBuild
2015-12-14 15:52:24 ----D---- C:\inetpub
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-14 15:51:27 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-14 15:51:23 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

======List of files/folders modified in the last 1 month======

2016-01-01 13:17:31 ----D---- C:\Program Files\trend micro
2016-01-01 13:15:55 ----D---- C:\WINDOWS\Temp
2016-01-01 13:12:40 ----D---- C:\WINDOWS\system32\sru
2016-01-01 13:08:38 ----HD---- C:\ProgramData
2016-01-01 13:08:38 ----D---- C:\WINDOWS\Tasks
2016-01-01 12:17:31 ----AD---- C:\Program Files (x86)\Battle.net
2016-01-01 12:05:23 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 12:04:30 ----D---- C:\Users\Peto\AppData\Roaming\Spotify
2016-01-01 11:58:35 ----D---- C:\Users\Peto\AppData\Roaming\TS3Client
2016-01-01 11:57:37 ----D---- C:\WINDOWS\system32\Tasks
2015-12-31 18:30:54 ----D---- C:\WINDOWS\System32
2015-12-31 18:30:54 ----D---- C:\WINDOWS\INF
2015-12-31 14:44:14 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 13:54:14 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-31 13:19:59 ----SHD---- C:\Config.Msi
2015-12-31 13:15:09 ----D---- C:\Users\Peto\AppData\Roaming\uTorrent
2015-12-31 13:08:48 ----SHD---- C:\WINDOWS\Installer
2015-12-31 13:08:07 ----RD---- C:\WINDOWS\assembly
2015-12-31 13:07:06 ----SD---- C:\ProgramData\Microsoft
2015-12-31 13:07:06 ----AD---- C:\Program Files\Microsoft Office
2015-12-31 13:07:06 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-12-31 13:06:06 ----RSD---- C:\WINDOWS\Fonts
2015-12-31 13:06:01 ----RD---- C:\Program Files
2015-12-31 13:06:00 ----RD---- C:\Program Files (x86)
2015-12-31 13:05:42 ----AD---- C:\Program Files (x86)\Microsoft Office
2015-12-31 13:05:40 ----D---- C:\WINDOWS\ShellNew
2015-12-31 13:05:35 ----D---- C:\Program Files\Common Files
2015-12-31 13:03:31 ----D---- C:\ProgramData\Microsoft Help
2015-12-31 13:01:49 ----D---- C:\Program Files\Common Files\System
2015-12-31 13:01:48 ----A---- C:\WINDOWS\win.ini
2015-12-31 11:15:26 ----D---- C:\WINDOWS\system32\config
2015-12-31 11:11:04 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-31 10:24:35 ----HD---- C:\Program Files\WindowsApps
2015-12-30 16:57:23 ----D---- C:\WINDOWS\WinSxS
2015-12-30 16:49:27 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 16:49:24 ----D---- C:\WINDOWS\SysWOW64
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-26 01:02:40 ----D---- C:\Users\Peto\AppData\Roaming\vlc
2015-12-21 21:24:12 ----D---- C:\Users\Peto\AppData\Roaming\Dropbox
2015-12-20 11:27:03 ----D---- C:\WINDOWS\system32\WDI
2015-12-19 18:46:45 ----D---- C:\WINDOWS\system32\appraiser
2015-12-19 18:46:44 ----D---- C:\WINDOWS\Provisioning
2015-12-19 18:46:44 ----D---- C:\WINDOWS\bcastdvr
2015-12-19 18:46:44 ----D---- C:\WINDOWS\AppPatch
2015-12-18 19:33:13 ----D---- C:\WINDOWS\system32\MRT
2015-12-18 19:17:36 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-18 13:55:55 ----D---- C:\WINDOWS\system32\catroot2
2015-12-18 13:03:52 ----D---- C:\WINDOWS\rescache
2015-12-18 13:01:51 ----D---- C:\WINDOWS\Logs
2015-12-18 11:49:07 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\sk-SK
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\oobe
2015-12-18 11:49:04 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-18 11:49:02 ----D---- C:\Program Files\Internet Explorer
2015-12-18 11:49:02 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-18 11:49:01 ----D---- C:\WINDOWS\system32\drivers
2015-12-17 10:08:00 ----A---- C:\WINDOWS\system32\acovcnt.exe
2015-12-16 13:59:25 ----D---- C:\WINDOWS\debug
2015-12-16 09:29:36 ----D---- C:\WINDOWS\appcompat
2015-12-15 11:20:24 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-15 11:01:52 ----RD---- C:\WINDOWS\PrintDialog
2015-12-15 11:01:49 ----RD---- C:\WINDOWS\MiracastView
2015-12-15 11:01:04 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-15 10:59:14 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-15 10:59:04 ----D---- C:\WINDOWS\SoftwareDistribution
2015-12-15 10:57:04 ----D---- C:\WINDOWS\Registration
2015-12-15 10:54:21 ----D---- C:\WINDOWS\system32\LogFiles
2015-12-15 10:53:11 ----RSD---- C:\WINDOWS\Media
2015-12-15 10:47:25 ----D---- C:\WINDOWS\system32\wbem
2015-12-15 10:42:09 ----D---- C:\Windows
2015-12-14 16:36:19 ----D---- C:\WINDOWS\system32\FxsTmp
2015-12-14 16:36:03 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-14 16:36:03 ----D---- C:\WINDOWS\SYSWOW64\ASUS_Screensaver dir
2015-12-14 16:36:02 ----D---- C:\WINDOWS\system32\OEM
2015-12-14 16:26:44 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-12-14 16:26:41 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-12-14 16:26:41 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-14 16:26:40 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-12-14 16:26:38 ----SHD---- C:\WINDOWS\SYSWOW64\AI_RecycleBin
2015-12-14 16:26:37 ----AD---- C:\WINDOWS\SYSWOW64\Adobe
2015-12-14 16:26:27 ----D---- C:\WINDOWS\system32\SPReview
2015-12-14 16:26:26 ----D---- C:\WINDOWS\system32\spool
2015-12-14 16:26:23 ----D---- C:\WINDOWS\system32\slmgr
2015-12-14 16:26:18 ----D---- C:\WINDOWS\system32\NDF
2015-12-14 16:26:18 ----D---- C:\WINDOWS\system32\migration
2015-12-14 16:26:17 ----D---- C:\WINDOWS\system32\IME
2015-12-14 16:26:17 ----D---- C:\WINDOWS\system32\EventProviders
2015-12-14 16:26:14 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-12-14 16:23:56 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-14 16:23:50 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-14 16:23:50 ----D---- C:\WINDOWS\schemas
2015-12-14 16:23:47 ----D---- C:\WINDOWS\LiveKernelReports
2015-12-14 16:23:26 ----D---- C:\WINDOWS\ehome
2015-12-14 16:23:20 ----RD---- C:\Users
2015-12-14 16:23:20 ----D---- C:\ProgramData\USOPrivate
2015-12-14 16:23:19 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-14 16:23:02 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-12-14 16:23:02 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-14 16:23:00 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-14 16:22:58 ----D---- C:\Program Files (x86)\Common Files
2015-12-14 16:22:54 ----SHD---- C:\Program Files\Windows Sidebar
2015-12-14 16:22:53 ----D---- C:\Program Files\Windows Mail
2015-12-14 16:22:50 ----D---- C:\Program Files\Microsoft Games
2015-12-14 16:21:23 ----D---- C:\WINDOWS\system32\Recovery
2015-12-14 16:17:27 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-14 16:15:53 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-14 16:13:07 ----D---- C:\WINDOWS\Help
2015-12-14 16:07:26 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-14 15:59:45 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-14 15:59:45 ----D---- C:\WINDOWS\system32\Dism
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-12-14 15:52:25 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\inetsrv
2015-12-14 15:52:25 ----D---- C:\WINDOWS\system32\en-US
2015-12-14 15:52:17 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-12-14 15:52:17 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-12-14 15:52:16 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-12-14 15:52:16 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-12-14 15:52:15 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-12-14 15:52:13 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-12-14 15:52:12 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-12-14 15:52:12 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-12-14 15:52:10 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-12-14 15:52:09 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-12-14 15:52:06 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-12-14 15:52:06 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-12-14 15:52:04 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-12-14 15:52:03 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-12-14 15:52:02 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-12-14 15:52:00 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-12-14 15:51:59 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-12-14 15:51:59 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-12-14 12:21:31 ----RASH---- C:\BOOTSECT.BAK
2015-12-14 12:21:25 ----SHD---- C:\Boot
2015-12-14 12:12:01 ----HD---- C:\$WINDOWS.~BT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsDsm;AsDsm; C:\WINDOWS\system32\drivers\AsDsm.sys [2010-01-23 35384]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-10-31 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-10-31 274808]
R0 nvstor64;nvstor64; C:\WINDOWS\System32\drivers\nvstor64.sys [2010-04-08 244328]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2012-03-07 28504]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-10-31 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-11-07 1059656]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-11-07 449992]
R1 dtsoftbus01;@oem39.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2012-11-09 283200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 ndiskhaz;@oem22.inf,%ndiskhaz_Desc%;Azzouzi HotSpot LightWeight Filter; C:\WINDOWS\system32\DRIVERS\ndiskhaz.sys [2012-12-07 30536]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-10-31 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-10-31 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-10-31 153744]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 ETD;@oem7.inf,%PS2DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-11-01 464472]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-08-03 4598528]
R3 kbfiltr;@oem27.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2009-07-20 15416]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-14 175616]
R3 MTsensor;@oem37.inf,%ATKACPI.DisplayName%;ATK0100 ACPI UTILITY; C:\WINDOWS\System32\drivers\ATK64AMD.sys [2009-05-13 15928]
R3 NVHDA;@oem5.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-11-25 206120]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-11-25 12907704]
R3 nvsmu;nvsmu; C:\WINDOWS\system32\DRIVERS\nvsmu.sys [2010-03-22 29800]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-07-25 20256]
R3 nvvad_WaveExtensible;@oem1.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 rt640x64;@oem13.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-21 888064]
R3 ScreamBAudioSvc;@oem45.inf,%sbee_audio.SvcDesc%;ScreamBee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio64.sys [2010-07-01 38992]
R3 tap-tb-0901;@oem14.inf,%DeviceDescription%;TunnelBear Adapter V9; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [2015-02-11 38656]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 cpudrv64;cpudrv64; \??\C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2009-12-18 17864]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2008-12-08 61792]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 tap0901;TAP-Windows Adapter V9; C:\WINDOWS\system32\DRIVERS\tap0901.sys [2014-03-24 40664]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-10-30 61952]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-10-30 46592]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-10-30 45056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-05-29 77128]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-10-31 146600]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-11-01 144104]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-14 26624]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-07-25 1720608]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-07-25 18956064]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-10-13 933168]
R2 OneSyncSvc_24195;Sync Host_24195; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-08-03 306944]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-10-13 416432]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S2 TunnelBearMaintenance;TunnelBear Maintenance; D:\TunnelBear\TBear.Maintenance.exe [2015-04-29 34752]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-29 269504]
S3 ADSMService;ADSM Service; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2008-03-31 225280]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Bezpečnosť rodiny v službe Windows Live; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2008-12-08 533344]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-06-29 644904]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_24195;MessagingService_24195; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-24 115168]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_24195;Kontaktné údaje_24195; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]

-----------------EOF-----------------

#11 Příspěvek od **Rudy** » 01 led 2016 16:39

OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

Vajo147 · #12 Příspěvek od **Vajo147** » 01 led 2016 19:50

Vyzerá, že sa to zrýchlilo

#13 Příspěvek od **Rudy** » 01 led 2016 20:28

Tak to jsem rád.

Vajo147 · #14 Příspěvek od **Vajo147** » 01 led 2016 20:42

Ak je to všetko tak ďakujem veľmi pekne za pomoc a čas

#15 Příspěvek od **Rudy** » 01 led 2016 22:06

Z mé strany je to vše. Nemáte zač!

VIRY.CZ

Kontrola logu, spomalené PC

Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC

Re: Kontrola logu, spomalené PC