Logfile of random's system information tool 1.16 (written by random/random)
Run by Roman at 2017-04-26 15:31:36
Microsoft Windows 10 Pro
System drive C: has 49 GB (43%) free of 114 GB
Total RAM: 8092 MB (78% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:31:38, on 26.4.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
C:\Program Files (x86)\Clarus\Drive Manager\Drive Manager.exe
C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\Clarus\Drive Manager\SZDrvMonM.exe
C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe
C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe
C:\Program Files\trend micro\Roman_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
O4 - HKLM\..\Run: [ASUS WiFi GO! FileTransfer Execute] C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: Drive Manager Real-Time.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD RAIDXpert (AMD_RAIDXpert) - AMD - C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service: AsusFanControlService - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Drive Manager Service (SZDrvSvc_General) - Clarus, Inc. - C:\Program Files (x86)\Clarus\Drive Manager\SZDrvSvcM.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10504 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\atieclxx.exe
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe" -s
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Clarus\Drive Manager\SZDrvSvcM.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe"
"C:\Program Files (x86)\Clarus\Drive Manager\Drive Manager.exe" -Hide
"C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe" -onlytray
C:\WINDOWS\system32\taskhostw.exe
"C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
"C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.8.0.0_x64__8wekyb3d8bbwe\Microsoft.StickyNotes.exe" -ServerName:App.AppXqx982emnayc5vbja1mrpk9zh4r774nd8.mca
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe" -Init
"C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe" -Init
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
C:\Program Files\AVAST Software\Avast\AvastUI.exe
"C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
"C:\Program Files (x86)\Clarus\Drive Manager\SZDrvMonM.exe"
"C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AsDLNAServerReal.exe"
C:\WINDOWS\system32\fontdrvhost.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\SysWOW64\WinMsgBalloonServer.exe
C:\WINDOWS\SysWOW64\WinMsgBalloonClient.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 648 652 660 8192 656
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x4ac
"C:\Users\Roman\Desktop\RSITx64.exe"
====== Scheduled tasks folder ======
C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe -check pepperplugin
C:\WINDOWS\system32\tasks\Avast Emergency Update - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\Roman\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Opera scheduled Autoupdate 1448822833 - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1450820694 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1458682006 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\StartCN - "C:\Program Files\AMD\CNext\CNext\cncmd.exe" startwithdelay
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{F78BEF61-434D-4658-A24D-BF4228556BFB} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-2909417164-2515284680-3754564002-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows Defender\MP Scheduled Scan - c:\program files\windows defender\MpCmdRun.exe Scan -ScheduleJob -WinTask -RestrictPrivilegesScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\DRIVE_MANAGER\Drive_Manager - C:\Program Files (x86)\Clarus\Drive Manager\Drive Manager.exe -Hide
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
C:\WINDOWS\system32\tasks\ASUS\ASUS AI Suite II Execute - C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe -open
C:\WINDOWS\system32\tasks\ASUS\ASUS Network iControl Help Execute - C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe -delay
C:\WINDOWS\system32\tasks\ASUS\ASUS Product Register Service - C:\Program Files (x86)\ASUS\APRP\aprp.exe
C:\WINDOWS\system32\tasks\ASUS\ASUS WiFi GO! Server Execute - C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFi GO! Server.exe
C:\WINDOWS\system32\tasks\ASUS\Easy Update - C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe -onlytray
C:\WINDOWS\system32\tasks\ASUS\USB 3.0 Boost Service - C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\lcdli4pn.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF48
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF48
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\lcdli4pn.default\addons.json
C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\lcdli4pn.default\extensions.json
Avast Online Security - webextension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF48
Avast SafePrice - webextension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\Roman\AppData\Roaming\Mozilla\Firefox\Profiles\lcdli4pn.default\pluginreg.dat
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-02 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-02 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-05-28 8483032]
"CmPCIaudio"=C:\Windows\syswow64\RunDll32.exe [2016-07-16 61952]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-04-06 213824]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-04-11 9532120]
"OneDrive"=C:\Users\Roman\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-04-17 1518808]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [2014-12-19 458456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr]
C:\Program Files (x86)\Raptr\raptrstub.exe [2015-12-12 56080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-05-20 13876952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\AsusWSPanel.exe [2013-06-26 5099840]
"ASUS AiChargerPlus Execute"=C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [2013-01-28 550272]
"ASUS WiFi GO! FileTransfer Execute"=C:\Program Files (x86)\ASUS\AI Suite II\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe [2013-06-21 1391416]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"hpqSRMon"=C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-08-20 150016]
"VirtualCloneDrive"=C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Drive Manager Real-Time.lnk - C:\Program Files (x86)\Clarus\Drive Manager\ABRTMonM.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-04-26 15:31:37 ----D---- C:\Program Files\trend micro
2017-04-25 18:27:40 ----D---- C:\Program Files (x86)\HappyFoto-FOTO-CZ
2017-04-12 22:04:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-12 22:04:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-04-12 22:04:18 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-04-12 22:04:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-04-12 22:04:18 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-04-12 22:04:17 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-04-12 22:04:17 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-04-12 22:04:17 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-04-12 22:04:17 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-04-12 22:04:17 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-04-12 22:04:17 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-04-12 22:04:17 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-04-12 22:04:16 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-04-12 22:04:15 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-04-12 22:04:14 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-04-12 22:04:13 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-04-12 22:04:12 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-04-12 22:04:11 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2017-04-12 22:04:10 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-04-12 22:04:10 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-04-12 22:04:09 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\sbe.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\ipsmsnap.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\ipsecsnp.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\apds.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-04-12 22:04:08 ----A---- C:\WINDOWS\system32\drivers\BasicDisplay.sys
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2017-04-12 22:04:07 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-04-12 22:04:06 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-04-12 22:04:06 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-04-12 22:04:05 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-04-12 22:04:05 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-04-12 22:04:05 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-04-12 22:04:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-04-12 22:04:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-04-12 22:04:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-04-12 22:04:05 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-04-12 22:04:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-04-12 22:04:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-04-12 22:04:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-04-12 22:04:04 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-04-12 22:04:03 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-12 22:04:03 ----A---- C:\WINDOWS\system32\shell32.dll
2017-04-12 22:04:02 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-04-12 22:04:01 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-04-12 22:04:01 ----A---- C:\WINDOWS\system32\mos.dll
2017-04-12 22:04:00 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-04-12 22:04:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-04-12 22:04:00 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-04-12 22:03:59 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-04-12 22:03:59 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-04-12 22:03:59 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-04-12 22:03:59 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-04-12 22:03:59 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-04-12 22:03:59 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-04-12 22:03:58 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\usocore.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\LsaIso.exe
2017-04-12 22:03:58 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\rdpshell.exe
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\rdpinit.exe
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-04-12 22:03:57 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-04-12 22:03:56 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-04-12 22:03:55 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-04-12 22:03:55 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-04-12 22:03:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-04-12 22:03:55 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-04-12 22:03:55 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-04-12 22:03:55 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2017-04-12 22:03:49 ----RA---- C:\WINDOWS\system32\SecureAssessmentHandlers.dll
2017-04-12 22:03:49 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-04-12 22:03:49 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-04-12 22:03:49 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-12 22:03:49 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-04-12 22:03:49 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-04-12 22:03:49 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-04-12 22:03:49 ----A---- C:\WINDOWS\system32\cscui.dll
2017-04-12 22:03:49 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-04-12 22:03:48 ----A---- C:\WINDOWS\system32\wpninprc.dll
2017-04-12 22:03:48 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2017-04-12 22:03:48 ----A---- C:\WINDOWS\system32\localspl.dll
2017-04-12 22:03:48 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-04-12 22:03:48 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-04-12 22:03:48 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-04-12 22:03:47 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-04-12 22:03:46 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-04-12 22:03:45 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-04-12 22:03:45 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-04-12 22:03:44 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-04-12 22:03:44 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-04-12 22:03:43 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-04-12 22:03:42 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-04-12 22:03:42 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-12 22:03:42 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-04-12 22:03:41 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-04-12 22:03:41 ----A---- C:\WINDOWS\system32\quartz.dll
2017-04-12 22:03:41 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-04-12 22:03:40 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-04-12 22:03:40 ----A---- C:\WINDOWS\system32\wininet.dll
2017-04-12 22:03:40 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-04-12 22:03:40 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-04-12 22:03:40 ----A---- C:\WINDOWS\system32\ole32.dll
2017-04-12 22:03:40 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-04-12 22:03:40 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-04-12 22:03:40 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-04-12 22:03:40 ----A---- C:\WINDOWS\HelpPane.exe
2017-04-12 22:03:39 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-04-12 22:03:39 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-04-12 22:03:39 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-04-12 22:03:39 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-04-12 22:03:39 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-04-12 22:03:39 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-04-12 22:03:38 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-04-12 22:03:38 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-04-12 22:03:37 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-04-12 22:03:36 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-04-12 22:03:35 ----A---- C:\WINDOWS\system32\dafpos.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\FontProvider.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-04-12 22:03:34 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\DdcWnsListener.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-04-12 22:03:33 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-04-12 22:03:32 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-04-12 22:03:32 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-04-12 22:03:32 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-04-12 22:03:32 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2017-04-12 22:03:29 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-04-12 22:03:29 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-04-12 22:03:29 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-04-12 22:03:29 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-04-12 22:03:28 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-04-12 22:03:28 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-04-12 22:03:28 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-04-12 22:03:28 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-04-12 22:03:28 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-04-12 22:03:28 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-04-12 22:03:28 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-04-12 22:03:27 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-04-12 22:03:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-04-12 22:03:27 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-04-12 22:03:27 ----A---- C:\WINDOWS\system32\twinui.dll
2017-04-12 22:03:27 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-04-12 22:03:27 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-04-12 22:03:26 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\wer.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\sbe.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\qedit.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-04-12 22:03:25 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\psmsrv.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\invagent.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\devinv.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-04-12 22:03:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-04-12 22:03:23 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-04-12 22:03:22 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-04-12 22:03:21 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-04-12 22:03:21 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-04-12 22:03:21 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-04-12 22:03:21 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-04-12 22:03:21 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-04-12 22:03:21 ----A---- C:\WINDOWS\system32\cdp.dll
2017-04-12 22:03:21 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-04-06 15:23:43 ----A---- C:\WINDOWS\system32\aswBoot.exe
====== List of files/folders modified in the last 1 month ======
2017-04-26 15:31:37 ----RD---- C:\Program Files
2017-04-26 15:24:37 ----D---- C:\WINDOWS\Temp
2017-04-26 15:11:17 ----D---- C:\WINDOWS\System32
2017-04-26 15:11:17 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-26 15:06:36 ----D---- C:\WINDOWS\system32\sru
2017-04-26 15:05:18 ----D---- C:\WINDOWS\Prefetch
2017-04-26 15:05:00 ----A---- C:\WINDOWS\PE_Rom.dll
2017-04-26 13:59:11 ----D---- C:\Petra - Avon
2017-04-26 13:51:41 ----RD---- C:\WINDOWS\Microsoft.NET
2017-04-26 13:51:28 ----D---- C:\WINDOWS\system32\config
2017-04-25 22:28:11 ----D---- C:\WINDOWS\system32\SleepStudy
2017-04-25 20:09:36 ----HD---- C:\Program Files\WindowsApps
2017-04-25 20:09:36 ----D---- C:\WINDOWS\AppReadiness
2017-04-25 20:08:47 ----D---- C:\Windows
2017-04-25 19:49:33 ----D---- C:\WINDOWS\INF
2017-04-25 18:27:49 ----SHDC---- C:\WINDOWS\Installer
2017-04-25 18:27:49 ----SHD---- C:\Config.Msi
2017-04-25 18:27:48 ----SD---- C:\Users\Roman\AppData\Roaming\Microsoft
2017-04-25 18:27:40 ----RD---- C:\Program Files (x86)
2017-04-22 13:14:44 ----D---- C:\WINDOWS\system32\catroot2
2017-04-22 12:46:12 ----D---- C:\WINDOWS\CbsTemp
2017-04-22 12:46:11 ----D---- C:\WINDOWS\system32\appraiser
2017-04-22 12:45:43 ----D---- C:\WINDOWS\WinSxS
2017-04-21 22:44:36 ----HD---- C:\ProgramData
2017-04-19 21:38:23 ----D---- C:\WINDOWS\system32\Tasks
2017-04-19 21:38:23 ----AD---- C:\Program Files (x86)\Opera
2017-04-19 21:37:49 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-04-17 22:13:59 ----D---- C:\WINDOWS\debug
2017-04-17 18:43:12 ----D---- C:\Users\Roman\AppData\Roaming\vlc
2017-04-16 22:23:01 ----D---- C:\WINDOWS\rescache
2017-04-14 21:53:26 ----D---- C:\WINDOWS\system32\DriverStore
2017-04-14 21:43:15 ----RSD---- C:\WINDOWS\assembly
2017-04-14 20:43:46 ----D---- C:\WINDOWS\system32\drivers
2017-04-12 22:47:08 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-04-12 22:47:08 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-04-12 22:47:08 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-04-12 22:47:08 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-04-12 22:47:08 ----D---- C:\WINDOWS\SysWOW64
2017-04-12 22:47:07 ----D---- C:\WINDOWS\system32\wbem
2017-04-12 22:47:06 ----SD---- C:\WINDOWS\system32\F12
2017-04-12 22:47:06 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-04-12 22:47:06 ----D---- C:\WINDOWS\system32\setup
2017-04-12 22:47:06 ----D---- C:\WINDOWS\system32\migration
2017-04-12 22:47:06 ----D---- C:\WINDOWS\system32\Dism
2017-04-12 22:47:06 ----D---- C:\WINDOWS\system32\cs-CZ
2017-04-12 22:47:05 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-04-12 22:47:05 ----RD---- C:\Program Files\Windows Defender
2017-04-12 22:47:05 ----D---- C:\WINDOWS\ShellExperiences
2017-04-12 22:47:05 ----D---- C:\WINDOWS\Provisioning
2017-04-12 22:47:05 ----D---- C:\WINDOWS\PolicyDefinitions
2017-04-12 22:47:05 ----D---- C:\Program Files\Windows Photo Viewer
2017-04-12 22:47:05 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-04-12 22:47:05 ----D---- C:\Program Files (x86)\Windows Defender
2017-04-12 22:26:41 ----D---- C:\WINDOWS\system32\MRT
2017-04-12 22:25:07 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-04-01 20:52:38 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-03-29 21:57:28 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-28 08:20:43 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2014-09-23 83656]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2014-09-23 43720]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-04-06 189768]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-04-06 334088]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-04-06 48528]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-04-06 75704]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-04-06 339696]
R0 AtiPcie;@oem18.inf,%ATIPCIE_svcdesc%;AMD PCI Express (3GIO) Filter; C:\WINDOWS\System32\drivers\AtiPcie.sys [2009-05-04 16440]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 pwdrvio;pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [2013-09-30 19152]
R1 AsIO;AsIO; C:\WINDOWS\SysWow64\drivers\AsIO.sys [2014-01-28 15232]
R1 AsUpIO;AsUpIO; C:\WINDOWS\SysWow64\drivers\AsUpIO.sys [2013-01-15 14464]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-04-06 307736]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-04-06 32600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-04-06 101152]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-04-06 1005048]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-04-06 556784]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2014-12-21 40344]
R1 ndisrd;@oem13.inf,%ndisrd_Desc%;WinpkFilter LightWeight Filter; C:\WINDOWS\system32\DRIVERS\ndisrd.sys [2013-02-21 32840]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-04-06 127112]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-04-06 164064]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 AiChargerPlus;AiChargerPlus; C:\WINDOWS\SysWow64\drivers\AiChargerPlus.sys [2013-01-28 14848]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0310791.inf_amd64_1a41492ddaa53f63\atikmdag.sys [2017-01-27 28762648]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0310791.inf_amd64_1a41492ddaa53f63\atikmpag.sys [2017-01-27 530968]
R3 AtiHDAudioService;@oem61.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-12-08 101376]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-10-02 175616]
R3 mvdM23;mvdM23; \??\C:\Program Files (x86)\Clarus\Drive Manager\mvdM23.sys [2015-12-02 100912]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-07-16 589824]
S0 amdkmafd;@oem62.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2016-08-18 49448]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 AndnetBus;@oem21.inf,%LGSI.Service.Desc%;LGE Mobile USB Composite Device; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [2014-05-08 19456]
S3 AndNetDiag;@oem2.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [2014-03-28 29184]
S3 ANDNetModem;@oem12.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [2014-03-28 36352]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-10-02 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-17 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-17 141152]
S3 aswHdsKe;aswHdsKe; \??\C:\WINDOWS\system32\drivers\aswHdsKe.sys [2016-08-09 83312]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-04-06 38296]
S3 dg_ssudbus;@oem15.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-10-02 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-17 179040]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\WINDOWS\system32\drivers\nusb3hub.sys [2010-09-30 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\WINDOWS\system32\drivers\nusb3xhc.sys [2010-09-30 180736]
S3 pwdspio;pwdspio; \??\C:\WINDOWS\system32\pwdspio.sys [2013-09-30 12504]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;@oem45.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-01-27 299544]
R2 AMD_RAIDXpert;AMD RAIDXpert; C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe [2013-03-19 81920]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll" = %windir%\system32\inetsrv\apphostsvc.dll
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2013-09-17 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2013-09-17 951936]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [2014-04-24 1360016]
R2 AsusFanControlService;AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [2012-11-09 1632256]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-04-06 261712]
R2 CDPUserSvc_2c7b0;CDPUserSvc_2c7b0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-10-02 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 OneSyncSvc_2c7b0;Hostitel synchronizace_2c7b0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 SZDrvSvc_General;Drive Manager Service; C:\Program Files (x86)\Clarus\Drive Manager\SZDrvSvcM.exe [2016-05-12 24792]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-04-06 7398336]
R3 PimIndexMaintenanceSvc_2c7b0;Data kontaktů_2c7b0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_2c7b0;Služba zasílání zpráv_2c7b0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-03-29 172488]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-10-02 2889896]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-12-14 822624]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu. Děkuji.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu. Děkuji.
Zdravím, stáhni a spusť AdwCleaner,
ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po dokončení skenu klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zkopíruj Report.
ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,
objeví se okno kde vlevo nahoře klikni na Scan.
Po dokončení skenu klikni na Clean,
proběhne restart PC kdy dojde ke smazání nepořádku.
Po té mi sem zkopíruj Report.
Re: Prosím o kontrolu logu. Děkuji.
Taky Vás zdravím.
# AdwCleaner v6.046 - Log vytvořen 26/04/2017 v 23:14:14
# Aktualizováno dne 24/04/2017 z Malwarebytes
# Databáze : 2017-04-25.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Roman - ROMAN-PC
# Spuštěno z : C:\Users\Roman\Desktop\adwcleaner_6.046.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
# AdwCleaner v6.046 - Log vytvořen 26/04/2017 v 23:14:14
# Aktualizováno dne 24/04/2017 z Malwarebytes
# Databáze : 2017-04-25.1 [Server]
# Operační systém : Windows 10 Pro (X64)
# Uživatelské jméno : Roman - ROMAN-PC
# Spuštěno z : C:\Users\Roman\Desktop\adwcleaner_6.046.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
Přispějete na provoz fóra?