Dobrý den, mohla bych poprosit o kontrolu?
Log je z nějakého důvodu (očekávám špatné zprávy) moc dlouhý a nevejde se do jednoho příspěvku, proto ho musím rozdělit na dvakrát. Snad to není problém.
Díky
Logfile of random's system information tool 1.16 (written by random/random)
Run by ver.lips at 2018-03-06 12:36:38
Microsoft Windows 10 Home
System drive C: has 88 GB (19%) free of 458 GB
Total RAM: 3987 MB (45% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:36:46, on 06.03.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0015)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\syswow64\backgroundTaskHost.exe
C:\Users\ver.lips\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\ver.lips\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe
C:\Users\ver.lips\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files (x86)\CyberLink\YouCam\Youcam_webcam_camera_video.exe
C:\Program Files\trend micro\ver.lips_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://search.avira.net/#/?show_is=1&source=art
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://search.avira.net/#/?show_is=1&source=art
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://search.avira.net/#/?show_is=1&source=art
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com?pc=HPNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll
F2 - REG:system.ini: UserInit=
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: BS Player ControlBar B - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll
O3 - Toolbar: (no name) - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - (no file)
O3 - Toolbar: Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
O4 - HKLM\..\Run: [PSUAMain] "C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\ver.lips\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [MiPhoneManager] "C:\Users\ver.lips\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Spotify] C:\Users\ver.lips\AppData\Roaming\Spotify\Spotify.exe --autostart
O4 - HKCU\..\Run: [Spotify Web Helper] C:\Users\ver.lips\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2580292674-1686849953-1872125729-1004\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'postgres')
O4 - HKUS\S-1-5-21-2580292674-1686849953-1872125729-1004\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'postgres')
O4 - Startup: Poslat do aplikace OneNote.lnk = C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.690\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: HP SimplePass Cachedrv Service (Cachedrv server) - Unknown owner - C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem25.inf,%hpservice_desc%;HP 3DDG Service (hp3ddgsrv) - Unknown owner - C:\WINDOWS\system32\HP3DDGService.exe (file missing)
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.690\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Panda Protection Service (NanoServiceMain) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
O23 - Service: Panda Devices Agent (PandaAgent) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
O23 - Service: panda_url_filtering Service (panda_url_filtering) - Visicom Media Inc. - C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe
O23 - Service: postgresql-x64-9.5 - PostgreSQL Server 9.5 (postgresql-x64-9.5) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe
O23 - Service: Panda Product Service (PSUAService) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: Toolbar Service (TBSrv) - ClientConnect Ltd. - C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: Intel Security True Key Helper Service (TrueKeyServiceHelper) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 18279 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f022daea-a180-4230-ab4b-bbaeda204301 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-c06750f5-647f-4e66-96de-0bd30c91e62b -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-b5ed40b0-6ced-4c40-a199-aa5f28ceca36 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a6a3d54c-692f-4566-bac4-b667c7e938ce -LifetimeId:49828282-31af-4d29-b9d6-156c1f417bef -DeviceGroupId:WudfDefaultDevicePool
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\dwm.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s gpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SensorService
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SensrSvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localservice -p -s SEMgrSvc
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
"C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\HP3DDGService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\AUDIODG.EXE 0x36c
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
"C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\system32\dashost.exe
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
"C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe"
"C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe" --
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
"C:\Program Files\TrueKey\McTkSchedulerService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe"
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.5" -D "C:\Program Files\PostgreSQL\9.5\data" -w
c:\windows\system32\svchost.exe -k netsvcs -p -s wlidsvc
"C:\Program Files\PostgreSQL\9.5\bin\postgres.exe" -D "C:\Program Files\PostgreSQL\9.5\data"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\PostgreSQL\9.5\bin\postgres.exe
C:\Program Files\PostgreSQL\9.5\bin\postgres.exe
C:\Program Files\PostgreSQL\9.5\bin\postgres.exe
C:\Program Files\PostgreSQL\9.5\bin\postgres.exe
C:\Program Files\PostgreSQL\9.5\bin\postgres.exe
C:\Program Files\PostgreSQL\9.5\bin\postgres.exe
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\taskhostw.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k wbiosvcgroup -s WbioSrvc
c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
C:\WINDOWS\system32\igfxTray.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.0.5.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe" -ServerName:App.AppX495fygk72hjw82j58ny5h3nr8hpsd8vs.mca
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:Box.AppXcgnjqf89mss3ge7mq2mhqa303mzrmp23.mca
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x.AppX368sbpk1kx658x0p332evjk2v0y02kxp.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\WINDOWS\system32\wwahost.exe" -ServerName:App.wwa
"C:\WINDOWS\syswow64\backgroundTaskHost.exe" -ServerName:x554f661dyd360y462cy8743yf8a99b7d41dbx.AppX4dk7vkdnkgcgr5gkh4y65jw2he6g822b.mca
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe" /hideui
"C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Hewlett-Packard\SimplePass\opbhobrokerdsktop.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000f78
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\ver.lips\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Users\ver.lips\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\ver.lips\AppData\Roaming\Spotify\SpotifyWebHelper.exe" --autostart
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Program Files\CCleaner\CCleaner64.exe
"C:\Program Files\McAfee Security Scan\3.11.690\SSScheduler.exe"
"C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE" /tsr
"C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe"
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe" /LaunchSysTray
"C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -p -s XblAuthManager
"c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s NetSetupSvc
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\CyberLink\YouCam\Youcam_webcam_camera_video.exe" /d speedup
"C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
c:\windows\system32\taskhostw.exe
"C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 740 744 752 8192 748
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s upnphost
C:\WINDOWS\system32\DllHost.exe /Processid:{133EAC4F-5891-4D04-BADA-D84870380A80}
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\ver.lips\Downloads\RSITx64.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
====== Scheduled tasks folder ======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\HPCeeScheduleForver.lips.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForver.lips (null)
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Avira_Antivirus_Systray - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\CLMLSvc_P2G8 - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\WINDOWS\system32\tasks\CLVDLauncher - C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore1d0c00165d58af9 - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\HPCeeScheduleForver.lips - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForver.lips (null)
C:\WINDOWS\system32\tasks\klcp_update - "C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe" /verysilent /update /freq=30
C:\WINDOWS\system32\tasks\McAfee Remediation (Prepare) - C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe /prepare
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-2580292674-1686849953-1872125729-1001 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Synaptics TouchPad Enhancements - "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{805BAD43-E96B-4651-8232-A8AB5D38B171} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\YCMServiceAgent - C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Recovery-Check - %SystemRoot%\System32\dsregcmd.exe /checkrecovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\Windows\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WaaSMedic\PerformRemediation - %systemroot%\System32\WaaSMedic.exe None
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - %windir%\System32\UNP\UpdateNotificationMgr.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ClientTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Client"
C:\WINDOWS\system32\tasks\Microsoft\Windows\SMB\UninstallSMB1ServerTask - %windir%\system32\WindowsPowerShell\v1.0\powershell.exe -ExecutionPolicy Unrestricted -NonInteractive -NoProfile -WindowStyle Hidden "& %windir%\system32\WindowsPowerShell\v1.0\Modules\SmbShare\DisableUnusedSmb1.ps1 -Scenario Server"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Setup\UpgradeTriggers\UpgradeNowTask - %SystemRoot%\System32\GWX\GWXUXWorker.exe /UpgradeNow
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\LoginCheck - %windir%\system32\sc.exe start pushtoinstall login
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\Registration - %windir%\system32\sc.exe start pushtoinstall registration
C:\WINDOWS\system32\tasks\Microsoft\Windows\Printing\EduPrintProv - %windir%\system32\eduprintprov.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Chkdsk\SyspartRepair - %windir%\system32\bcdboot.exe %windir% /sysrepair
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Subscription Maintenance - C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon - C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe scan upload mininterval:2880
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe scan upload
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r /m
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\Product Configurator - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe /byrunkey
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA
=========Mozilla firefox=========
ProfilePath - C:\Users\ver.lips\AppData\Roaming\Mozilla\Firefox\Profiles\99q3vhcu.default-1465641669209-1513327417020
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 28.0.0.161 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 28.0.0.161 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=C:\Program Files\mcafee\msc\npMcSnFFPl64.dll
C:\Users\ver.lips\AppData\Roaming\Mozilla\Firefox\Profiles\99q3vhcu.default-1465641669209-1513327417020\addons.json
AdBlock for Firefox - extension - jid1-NIfFY2CA8fy1tg@jetpack
C:\Users\ver.lips\AppData\Roaming\Mozilla\Firefox\Profiles\99q3vhcu.default-1465641669209-1513327417020\extensions.json
Activity Stream - extension - activity-stream@mozilla.org -
Application Update Service Helper - extension - aushelper@mozilla.org -
Pocket - extension - firefox@getpocket.com -
Follow-on Search Telemetry - extension - followonsearch@mozilla.com -
Form Autofill - extension - formautofill@mozilla.org -
Photon onboarding - extension - onboarding@mozilla.org -
Firefox Screenshots - extension - screenshots@mozilla.org -
Shield Recipe Client - extension - shield-recipe-client@mozilla.org -
Web Compat - extension - webcompat@mozilla.org -
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} -
AdBlock - webextension - jid1-NIfFY2CA8fy1tg@jetpack -
C:\Users\ver.lips\AppData\Roaming\Mozilla\Firefox\Profiles\99q3vhcu.default-1465641669209-1513327417020\pluginreg.dat
Plugin - Shockwave Flash - 28.0.0.161 - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll
=========Google Chrome=========
C:\Users\ver.lips\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace 0.10
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty 0.10
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension bopakagnckmlgajfccecajhnimjiiedh
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky 1.2
Extension flliilndjeohchalpbbcdekjklbdgfkk 0 Avira Browser Safety 1.12.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.6
Extension nlmmgnhgdeffjkdckmikfpnddkbbfkkk 1 Autofill 7.8.0
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.3
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh 1 Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 6417.1211.0.0
Homepage:
default_search_provider.search_url:
C:\Users\ver.lips\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk]
"Path"=
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7569F2ED-27BC-4F80-BD21-EFE94AFEC867}]
"URL"=http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={4961737D-861D-4372-89FA-66C84BD325E2}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{7569F2ED-27BC-4F80-BD21-EFE94AFEC867}]
"URL"=http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-09-25 1429728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-02-19 210112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}]
Panda Security Toolbar - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll [2015-11-23 131064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2018-01-20 3229864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-09-25 1056992]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}]
BS Player ControlBar B Toolbar - C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll [2014-09-30 423744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-01-20 149696]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-04 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}]
Panda Security Toolbar - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll [2015-11-23 115192]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2018-01-20 2179240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-04 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{31264A33-A653-46C4-AF49-1232C59A7DA5} - BS Player ControlBar B Toolbar - C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll [2014-09-30 423744]
{ccb24e92-62c4-4c53-95d2-65f9eed476bc}
{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - Panda Security Toolbar - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll [2015-11-23 131064]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-09-25 1429728]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{31264a33-a653-46c4-af49-1232c59a7da5} - BS Player ControlBar B Toolbar - C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll [2014-09-30 423744]
{ccb24e92-62c4-4c53-95d2-65f9eed476bc}
{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - Panda Security Toolbar - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll [2015-11-23 115192]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-09-25 1056992]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-01-14 7510896]
"SimplePass"=C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe [2013-10-14 2758200]
"OPBHOBroker"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2013-10-14 155704]
"OPBHOBrokerDesktop"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2013-10-14 155704]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\ver.lips\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-03-06 1559200]
"MiPhoneManager"=C:\Users\ver.lips\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [2016-09-04 157624]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]
"Spotify"=C:\Users\ver.lips\AppData\Roaming\Spotify\Spotify.exe [2018-02-15 21325200]
"Spotify Web Helper"=C:\Users\ver.lips\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018-02-15 780688]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HPMessageService"=C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [2015-06-29 653576]
"PSUAMain"=C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [2016-02-14 107616]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2018-02-05 98024]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.690\SSScheduler.exe
C:\Users\ver.lips\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Poslat do aplikace OneNote.lnk - C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages" = scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
"C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableFullTrustStartupTasks"=2
"EnableUIADesktopToggle"=0
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"MaxGPOScriptWait"=600
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2018-03-06 12:13:22 ----D---- C:\Program Files\trend micro
2018-03-06 12:13:21 ----D---- C:\rsit
2018-03-06 08:02:08 ----HD---- C:\OneDriveTemp
2018-03-02 14:58:43 ----D---- C:\WINDOWS\LastGood.Tmp
2018-02-21 09:16:36 ----D---- C:\ProgramData\McAfee Security Scan
2018-02-14 12:08:43 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-02-14 12:08:42 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2018-02-14 12:08:42 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-02-14 12:08:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-02-14 12:08:40 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-02-14 12:08:40 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-02-14 12:08:39 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-02-14 12:08:39 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-02-14 12:08:38 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-02-14 12:08:38 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-02-14 12:08:38 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-02-14 12:08:38 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2018-02-14 12:08:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-02-14 12:08:35 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-02-14 12:08:35 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2018-02-14 12:08:35 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-02-14 12:08:35 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-02-14 12:08:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-02-14 12:08:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-02-14 12:08:33 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2018-02-14 12:08:32 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2018-02-14 12:08:32 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2018-02-14 12:08:32 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-02-14 12:08:32 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-02-14 12:08:32 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-02-14 12:08:32 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2018-02-14 12:08:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-02-14 12:08:31 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-02-14 12:08:30 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-02-14 12:08:30 ----A---- C:\WINDOWS\system32\hal.dll
2018-02-14 12:08:30 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2018-02-14 12:08:30 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2018-02-14 12:08:29 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-02-14 12:08:29 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-02-14 12:08:29 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2018-02-14 12:08:28 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-02-14 12:08:28 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-02-14 12:08:28 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-02-14 12:08:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-02-14 12:08:27 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-02-14 12:08:26 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-02-14 12:08:26 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2018-02-14 12:08:26 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-02-14 12:08:25 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-02-14 12:08:25 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-02-14 12:08:24 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2018-02-14 12:08:24 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-02-14 12:08:24 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2018-02-14 12:08:24 ----A---- C:\WINDOWS\system32\evr.dll
2018-02-14 12:08:23 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2018-02-14 12:08:23 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-02-14 12:08:23 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-02-14 12:08:23 ----A---- C:\WINDOWS\system32\nshhttp.dll
2018-02-14 12:08:23 ----A---- C:\WINDOWS\system32\DbgModel.dll
2018-02-14 12:08:22 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-02-14 12:08:22 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-02-14 12:08:22 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-02-14 12:08:22 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-02-14 12:08:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-02-14 12:08:21 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-02-14 12:08:21 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-02-14 12:08:20 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-02-14 12:08:20 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-02-14 12:08:20 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-02-14 12:08:20 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-02-14 12:08:20 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2018-02-14 12:08:19 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-02-14 12:08:19 ----A---- C:\WINDOWS\system32\InputService.dll
2018-02-14 12:08:19 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-02-14 12:08:18 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-02-14 12:08:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-02-14 12:08:17 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-02-14 12:08:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-02-14 12:08:17 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-02-14 12:08:17 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-02-14 12:08:16 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-02-14 12:08:15 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-02-14 12:08:15 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-02-14 12:08:15 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2018-02-14 12:08:14 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-02-14 12:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2018-02-14 12:08:12 ----A---- C:\WINDOWS\system32\mfsvr.dll
2018-02-14 12:08:12 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-02-14 12:08:12 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2018-02-14 12:08:11 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-02-14 12:08:11 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-02-14 12:08:11 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-02-14 12:08:11 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-02-14 12:08:10 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-02-14 12:08:10 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-02-14 12:08:09 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-02-14 12:08:09 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-02-14 12:08:09 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-02-14 12:08:08 ----A---- C:\WINDOWS\system32\ncsi.dll
2018-02-14 12:08:08 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-02-14 12:08:08 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-02-14 12:08:07 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-02-14 12:08:07 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-02-14 12:08:07 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-02-14 12:08:06 ----A---- C:\WINDOWS\system32\wininet.dll
2018-02-14 12:08:06 ----A---- C:\WINDOWS\system32\msIso.dll
2018-02-14 12:08:05 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-02-14 12:08:04 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-02-14 12:08:03 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-02-14 12:08:01 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-02-14 12:08:01 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-02-14 12:08:00 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2018-02-14 12:08:00 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-02-14 12:08:00 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-02-14 12:07:59 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-02-14 12:07:59 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-02-14 12:07:57 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-02-14 12:07:57 ----A---- C:\WINDOWS\system32\ISM.dll
2018-02-14 12:07:57 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2018-02-14 12:07:56 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2018-02-14 12:07:56 ----A---- C:\WINDOWS\system32\wuauclt.exe
2018-02-14 12:07:56 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2018-02-14 12:07:55 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2018-02-14 12:07:55 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2018-02-14 12:07:55 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-02-14 12:07:55 ----A---- C:\WINDOWS\system32\nlaapi.dll
2018-02-14 12:07:55 ----A---- C:\WINDOWS\system32\convertvhd.exe
2018-02-14 12:07:54 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-02-14 12:07:54 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-02-14 12:07:54 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2018-02-14 12:07:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2018-02-14 12:07:53 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2018-02-14 12:07:53 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-02-14 12:07:52 ----A---- C:\WINDOWS\system32\nlasvc.dll
2018-02-14 12:07:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-02-14 12:07:52 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2018-02-14 12:07:51 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-02-14 12:07:51 ----A---- C:\WINDOWS\system32\comdlg32.dll
2018-02-14 12:07:50 ----A---- C:\WINDOWS\system32\wow64.dll
2018-02-14 12:07:50 ----A---- C:\WINDOWS\system32\twinui.dll
2018-02-14 12:07:50 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-02-14 12:07:49 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-02-14 12:07:49 ----A---- C:\WINDOWS\explorer.exe
2018-02-14 12:07:48 ----A---- C:\WINDOWS\system32\shell32.dll
2018-02-14 12:07:47 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-02-14 12:07:47 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-02-14 12:07:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-02-14 12:07:43 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-02-14 12:07:43 ----A---- C:\WINDOWS\system32\mfps.dll
2018-02-14 12:07:36 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2018-02-14 12:07:36 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-02-14 12:07:35 ----A---- C:\WINDOWS\system32\usocore.dll
2018-02-14 12:07:31 ----A---- C:\WINDOWS\system32\vac.exe
2018-02-14 12:07:26 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2018-02-14 12:07:26 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2018-02-14 12:07:26 ----A---- C:\WINDOWS\system32\SRH.dll
2018-02-14 12:07:26 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-02-14 12:07:25 ----A---- C:\WINDOWS\system32\cldapi.dll
2018-02-14 12:07:25 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-02-14 12:07:25 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-02-14 12:07:23 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-02-14 12:07:23 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-02-14 12:07:18 ----A---- C:\WINDOWS\system32\winresume.exe
2018-02-14 12:07:18 ----A---- C:\WINDOWS\system32\winload.exe
2018-02-14 12:07:18 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-02-14 12:07:18 ----A---- C:\WINDOWS\system32\ci.dll
2018-02-14 12:07:17 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-02-14 12:07:17 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-02-14 12:07:16 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-02-14 12:07:16 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-02-14 12:07:15 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2018-02-14 12:07:15 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-02-14 12:07:15 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2018-02-14 12:07:15 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2018-02-14 12:07:14 ----A---- C:\WINDOWS\system32\devinv.dll
2018-02-14 12:07:14 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-02-14 12:07:14 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-02-14 12:07:13 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-02-14 12:07:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-02-14 12:07:07 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-02-14 12:07:07 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2018-02-14 12:07:07 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-02-14 12:07:06 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-02-14 12:07:06 ----A---- C:\WINDOWS\system32\sppobjs.dll
2018-02-14 12:07:06 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-02-14 12:07:06 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-02-14 12:07:05 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-02-14 12:07:05 ----A---- C:\WINDOWS\system32\efscore.dll
2018-02-14 12:07:03 ----A---- C:\WINDOWS\system32\wimserv.exe
2018-02-14 12:07:03 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-02-14 12:07:02 ----A---- C:\WINDOWS\system32\wimgapi.dll
2018-02-14 12:07:00 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2018-02-14 12:07:00 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-02-14 12:07:00 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-02-14 12:06:58 ----A---- C:\WINDOWS\system32\usercpl.dll
2018-02-14 12:06:58 ----A---- C:\WINDOWS\system32\rtmpltfm.dll
2018-02-14 12:06:57 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2018-02-14 12:06:53 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2018-02-14 12:06:53 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2018-02-14 12:06:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-02-14 12:06:52 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-02-14 12:06:51 ----A---- C:\WINDOWS\system32\tquery.dll
2018-02-14 12:06:51 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-02-14 12:06:51 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-02-14 12:06:51 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-02-14 12:06:50 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2018-02-14 12:06:50 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-02-14 12:06:49 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-02-14 12:06:47 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-02-14 12:06:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2018-02-14 12:06:46 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-02-14 12:06:46 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-02-14 12:06:46 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2018-02-14 12:06:45 ----A---- C:\WINDOWS\SYSWOW64\rtmpltfm.dll
2018-02-14 12:06:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2018-02-14 12:06:44 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2018-02-14 12:06:44 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2018-02-14 12:06:44 ----A---- C:\WINDOWS\system32\sppwinob.dll
2018-02-14 12:06:43 ----A---- C:\WINDOWS\system32\Wpc.dll
2018-02-14 12:06:42 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2018-02-14 12:06:42 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2018-02-14 12:06:41 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2018-02-14 12:06:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2018-02-14 12:06:40 ----A---- C:\WINDOWS\system32\FSClient.dll
2018-02-14 12:06:39 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-02-14 12:06:39 ----A---- C:\WINDOWS\system32\mf.dll
2018-02-14 12:06:38 ----A---- C:\WINDOWS\system32\wpncore.dll
2018-02-14 12:06:38 ----A---- C:\WINDOWS\system32\mmc.exe
2018-02-14 12:06:38 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-02-14 12:06:38 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2018-02-14 12:06:38 ----A---- C:\WINDOWS\system32\aepic.dll
2018-02-14 12:06:37 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-02-14 12:06:37 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-02-14 12:06:36 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-02-14 12:06:36 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-02-14 12:06:36 ----A---- C:\WINDOWS\system32\VSSVC.exe
2018-02-14 12:06:36 ----A---- C:\WINDOWS\system32\rasapi32.dll
2018-02-14 12:06:36 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-02-14 12:06:36 ----A---- C:\WINDOWS\system32\invagent.dll
2018-02-14 12:06:35 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2018-02-14 12:06:35 ----A---- C:\WINDOWS\SYSWOW64\nshhttp.dll
2018-02-14 12:06:35 ----A---- C:\WINDOWS\system32\WpcMon.exe
2018-02-14 12:06:35 ----A---- C:\WINDOWS\system32\rtmpal.dll
2018-02-14 12:06:34 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-02-14 12:06:34 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2018-02-14 12:06:34 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-02-14 12:06:34 ----A---- C:\WINDOWS\system32\FntCache.dll
2018-02-14 12:06:33 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-02-14 12:06:33 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2018-02-14 12:06:33 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2018-02-14 12:06:33 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-02-14 12:06:32 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2018-02-14 12:06:32 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-02-14 12:06:32 ----A---- C:\WINDOWS\system32\SEMgrSvc.dll
2018-02-14 12:06:31 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-02-14 12:06:31 ----A---- C:\WINDOWS\system32\authui.dll
2018-02-14 12:06:31 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-02-14 12:06:30 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2018-02-14 12:06:30 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2018-02-14 12:06:30 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-02-14 12:06:30 ----A---- C:\WINDOWS\system32\rtmcodecs.dll
2018-02-14 12:06:30 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2018-02-14 12:06:29 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2018-02-14 12:06:29 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-02-14 12:06:29 ----A---- C:\WINDOWS\system32\shutdownux.dll
2018-02-14 12:06:29 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-02-14 12:06:29 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-02-14 12:06:28 ----A---- C:\WINDOWS\SYSWOW64\rtmpal.dll
2018-02-14 12:06:27 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2018-02-14 12:06:27 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2018-02-14 12:06:27 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-02-14 12:06:27 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-02-14 12:06:27 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-02-14 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2018-02-14 12:06:26 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2018-02-14 12:06:26 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2018-02-14 12:06:26 ----A---- C:\WINDOWS\system32\efswrt.dll
2018-02-14 12:06:26 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-02-14 12:06:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2018-02-14 12:06:25 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2018-02-14 12:06:25 ----A---- C:\WINDOWS\system32\setupapi.dll
2018-02-14 12:06:24 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2018-02-14 12:06:24 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-02-14 12:06:24 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-02-14 12:06:24 ----A---- C:\WINDOWS\system32\uDWM.dll
2018-02-14 12:06:24 ----A---- C:\WINDOWS\system32\policymanager.dll
2018-02-14 12:06:24 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-02-14 12:06:24 ----A---- C:\WINDOWS\system32\lsm.dll
2018-02-14 12:06:24 ----A---- C:\WINDOWS\system32\localspl.dll
2018-02-14 12:06:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2018-02-14 12:06:23 ----A---- C:\WINDOWS\SYSWOW64\rtmcodecs.dll
2018-02-14 12:06:23 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2018-02-14 12:06:23 ----A---- C:\WINDOWS\system32\rasdlg.dll
2018-02-14 12:06:23 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2018-02-14 12:06:23 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-02-14 12:06:23 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2018-02-14 12:06:22 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-02-14 12:06:22 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2018-02-14 12:06:22 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2018-02-14 12:06:22 ----A---- C:\WINDOWS\system32\mspaint.exe
2018-02-14 12:06:21 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-02-14 12:06:21 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2018-02-14 12:06:21 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2018-02-14 12:06:21 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-02-14 12:06:21 ----A---- C:\WINDOWS\system32\Magnify.exe
2018-02-14 12:06:21 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2018-02-14 12:06:20 ----A---- C:\WINDOWS\system32\winbrand.dll
2018-02-14 12:06:20 ----A---- C:\WINDOWS\system32\SettingSync.dll
2018-02-14 12:06:20 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-02-14 12:06:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2018-02-14 12:06:19 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-02-14 12:06:19 ----A---- C:\WINDOWS\system32\webio.dll
2018-02-14 12:06:19 ----A---- C:\WINDOWS\system32\vssapi.dll
2018-02-14 12:06:19 ----A---- C:\WINDOWS\system32\FrameServer.dll
2018-02-14 12:06:19 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2018-02-14 12:06:18 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2018-02-14 12:06:18 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2018-02-14 12:06:18 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2018-02-14 12:06:18 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-02-14 12:06:18 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-02-14 12:06:18 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-02-14 12:06:18 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-02-14 12:06:17 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\srcore.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\rastls.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-02-14 12:06:17 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-02-14 12:06:16 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-02-14 12:06:16 ----A---- C:\WINDOWS\system32\gameux.dll
2018-02-14 12:06:16 ----A---- C:\WINDOWS\system32\FsIso.exe
2018-02-14 12:06:15 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2018-02-14 12:06:15 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-02-14 12:06:15 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2018-02-14 12:06:15 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-02-14 12:06:15 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2018-02-14 12:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2018-02-14 12:06:14 ----A---- C:\WINDOWS\SYSWOW64\sppcomapi.dll
2018-02-14 12:06:14 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2018-02-14 12:06:14 ----A---- C:\WINDOWS\system32\wldp.dll
2018-02-14 12:06:14 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2018-02-14 12:06:14 ----A---- C:\WINDOWS\system32\rasgcw.dll
2018-02-14 12:06:14 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-02-14 12:06:13 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2018-02-14 12:06:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2018-02-14 12:06:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-02-14 12:06:13 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2018-02-14 12:06:13 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2018-02-14 12:06:13 ----A---- C:\WINDOWS\system32\aclui.dll
2018-02-14 12:06:12 ----A---- C:\WINDOWS\SYSWOW64\rtmmvrortc.dll
2018-02-14 12:06:12 ----A---- C:\WINDOWS\SYSWOW64\ortcengine.dll
2018-02-14 12:06:12 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2018-02-14 12:06:12 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-02-14 12:06:12 ----A---- C:\WINDOWS\system32\ortcengine.dll
2018-02-14 12:06:12 ----A---- C:\WINDOWS\system32\edputil.dll
2018-02-14 12:06:11 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2018-02-14 12:06:11 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2018-02-14 12:06:11 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2018-02-14 12:06:11 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2018-02-14 12:06:11 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2018-02-14 12:06:11 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2018-02-14 12:06:11 ----A---- C:\WINDOWS\system32\rtmmvrortc.dll
2018-02-14 12:06:11 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-02-14 12:06:10 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2018-02-14 12:06:10 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2018-02-14 12:06:10 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2018-02-14 12:06:10 ----A---- C:\WINDOWS\SYSWOW64\edputil.dll
2018-02-14 12:06:10 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2018-02-14 12:06:10 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-02-14 12:06:10 ----A---- C:\WINDOWS\system32\twinapi.dll
2018-02-14 12:06:10 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2018-02-14 12:06:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-02-14 12:06:09 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2018-02-14 12:06:09 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2018-02-14 12:06:09 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2018-02-14 12:06:09 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-14 12:06:09 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-02-14 12:06:09 ----A---- C:\WINDOWS\system32\sud.dll
2018-02-14 12:06:09 ----A---- C:\WINDOWS\system32\netlogon.dll
2018-02-14 12:06:08 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2018-02-14 12:06:08 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2018-02-14 12:06:08 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2018-02-14 12:06:08 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2018-02-14 12:06:08 ----A---- C:\WINDOWS\system32\WebClnt.dll
2018-02-14 12:06:08 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-02-14 12:06:08 ----A---- C:\WINDOWS\system32\mmcbase.dll
2018-02-14 12:06:08 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2018-02-14 12:06:07 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2018-02-14 12:06:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-14 12:06:07 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2018-02-14 12:06:07 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-02-14 12:06:07 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2018-02-14 12:06:07 ----A---- C:\WINDOWS\system32\srchadmin.dll
2018-02-14 12:06:07 ----A---- C:\WINDOWS\system32\shsetup.dll
2018-02-14 12:06:07 ----A---- C:\WINDOWS\system32\SharedPCCSP.dll
2018-02-14 12:06:07 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-02-14 12:06:07 ----A---- C:\WINDOWS\system32\hgcpl.dll
2018-02-14 12:06:07 ----A---- C:\WINDOWS\system32\davclnt.dll
2018-02-14 12:06:06 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2018-02-14 12:06:06 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-02-14 12:06:06 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-02-14 12:06:06 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2018-02-14 12:06:06 ----A---- C:\WINDOWS\system32\themecpl.dll
2018-02-14 12:06:06 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\system32\stobject.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\system32\netplwiz.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\system32\ListSvc.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\system32\FontProvider.dll
2018-02-14 12:06:05 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-02-14 12:06:05 ----A---- C:\WINDOWS\system32\authz.dll
2018-02-14 12:06:04 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-02-14 12:06:04 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2018-02-14 12:06:04 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2018-02-14 12:06:04 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-02-14 12:06:04 ----A---- C:\WINDOWS\system32\themeui.dll
2018-02-14 12:06:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2018-02-14 12:06:03 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2018-02-14 12:06:03 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2018-02-14 12:06:03 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-02-14 12:06:03 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2018-02-14 12:06:03 ----A---- C:\WINDOWS\system32\bootux.dll
2018-02-14 12:06:02 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2018-02-14 12:06:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2018-02-14 12:06:02 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2018-02-14 12:06:02 ----A---- C:\WINDOWS\system32\regsvr32.exe
2018-02-14 12:06:02 ----A---- C:\WINDOWS\system32\ntshrui.dll
2018-02-14 12:06:02 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2018-02-14 12:06:02 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2018-02-14 12:06:01 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2018-02-14 12:06:01 ----A---- C:\WINDOWS\SYSWOW64\regsvr32.exe
2018-02-14 12:06:01 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-02-14 12:06:01 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2018-02-14 12:06:01 ----A---- C:\WINDOWS\system32\fontext.dll
2018-02-14 12:06:00 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2018-02-14 12:06:00 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2018-02-14 12:06:00 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2018-02-14 12:06:00 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2018-02-14 12:06:00 ----A---- C:\WINDOWS\system32\rshx32.dll
2018-02-14 12:06:00 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2018-02-14 12:06:00 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-02-14 12:05:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.ProxyStub.dll
2018-02-14 12:05:59 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2018-02-14 12:05:59 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2018-02-14 12:05:59 ----A---- C:\WINDOWS\SYSWOW64\EnterpriseAppMgmtClient.dll
2018-02-14 12:05:59 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-02-14 12:05:59 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2018-02-14 12:05:58 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2018-02-14 12:05:58 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2018-02-14 12:05:58 ----A---- C:\WINDOWS\SYSWOW64\mmcbase.dll
2018-02-14 12:05:58 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2018-02-14 12:05:58 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2018-02-14 12:05:58 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-02-14 12:05:58 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.ProxyStub.dll
2018-02-14 12:05:58 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-02-14 12:05:58 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-02-14 12:05:57 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2018-02-14 12:05:57 ----A---- C:\WINDOWS\system32\twext.dll
2018-02-14 12:05:57 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2018-02-14 12:05:57 ----A---- C:\WINDOWS\system32\dsreg.dll
2018-02-14 12:05:56 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-02-14 12:05:56 ----A---- C:\WINDOWS\system32\rstrui.exe
2018-02-14 12:05:56 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2018-02-14 12:05:55 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2018-02-14 12:05:55 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2018-02-14 12:05:55 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2018-02-14 12:05:55 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2018-02-14 12:05:55 ----A---- C:\WINDOWS\system32\virtdisk.dll
2018-02-14 12:05:55 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2018-02-14 12:05:54 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-02-14 12:05:54 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeHelper.dll
2018-02-14 12:05:54 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2018-02-14 12:05:54 ----A---- C:\WINDOWS\system32\wups2.dll
2018-02-14 12:05:54 ----A---- C:\WINDOWS\system32\winsrv.dll
2018-02-14 12:05:54 ----A---- C:\WINDOWS\system32\winsku.dll
2018-02-14 12:05:54 ----A---- C:\WINDOWS\system32\tzres.dll
2018-02-14 12:05:53 ----A---- C:\WINDOWS\SYSWOW64\user.exe
2018-02-12 12:01:31 ----D---- C:\ProgramData\Blackmagic Design
2018-02-12 12:01:31 ----D---- C:\Program Files\Blackmagic Design
2018-02-12 11:56:22 ----D---- C:\Program Files (x86)\Blackmagic Design
2018-02-12 11:51:02 ----D---- C:\Program Files\PostgreSQL
2018-02-11 23:11:26 ----D---- C:\Program Files\Shotcut
2018-02-09 20:50:54 ----D---- C:\KAMERA
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: preventivka
====== List of files/folders modified in the last 1 month ======
2018-03-06 12:36:26 ----D---- C:\WINDOWS\Prefetch
2018-03-06 12:36:17 ----D---- C:\WINDOWS\Temp
2018-03-06 12:32:42 ----D---- C:\WINDOWS\system32\drivers
2018-03-06 12:31:27 ----D---- C:\ProgramData\panda_url_filtering
2018-03-06 12:31:21 ----D---- C:\WINDOWS\system32\sru
2018-03-06 12:30:57 ----HD---- C:\Program Files\WindowsApps
2018-03-06 12:30:47 ----D---- C:\WINDOWS\AppReadiness
2018-03-06 12:14:33 ----D---- C:\WINDOWS\SoftwareDistribution
2018-03-06 12:14:31 ----D---- C:\Windows
2018-03-06 12:13:22 ----RD---- C:\Program Files
2018-03-06 12:09:16 ----D---- C:\WINDOWS\INF
2018-03-06 12:09:12 ----D---- C:\WINDOWS\debug
2018-03-06 11:05:27 ----D---- C:\WINDOWS\DeliveryOptimization
2018-03-06 08:01:46 ----D---- C:\WINDOWS\system32\Tasks
2018-03-06 06:51:30 ----D---- C:\WINDOWS\system32\LogFiles
2018-03-06 06:48:39 ----D---- C:\WINDOWS\system32\SleepStudy
2018-03-05 14:00:03 ----D---- C:\WINDOWS\SysWOW64
2018-03-05 13:52:02 ----RD---- C:\WINDOWS\Microsoft.NET
2018-03-02 19:38:29 ----D---- C:\WINDOWS\Logs
2018-03-02 18:41:29 ----D---- C:\WINDOWS\system32\config
2018-03-02 16:53:34 ----D---- C:\WINDOWS\system32\catroot2
2018-03-02 14:59:23 ----D---- C:\WINDOWS\System32
2018-03-02 14:59:21 ----D---- C:\WINDOWS\system32\DriverStore
2018-03-02 14:58:24 ----SHD---- C:\System Volume Information
2018-03-02 12:21:46 ----SHD---- C:\WINDOWS\Installer
2018-03-02 12:21:46 ----SHD---- C:\Config.Msi
2018-02-28 21:37:09 ----D---- C:\WINDOWS\Tasks
2018-02-28 14:14:38 ----D---- C:\music 1
2018-02-28 14:14:38 ----D---- C:\Music
2018-02-28 12:03:00 ----D---- C:\pracovní
2018-02-26 21:00:38 ----D---- C:\FOTKY
2018-02-26 20:09:08 ----D---- C:\les filmes
2018-02-24 05:39:41 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-02-24 05:36:38 ----D---- C:\Program Files (x86)\Common Files
2018-02-24 05:32:17 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-02-23 22:08:45 ----D---- C:\Users\ver.lips\AppData\Roaming\Spotify
2018-02-22 22:52:14 ----D---- C:\ProgramData\Package Cache
2018-02-21 10:18:09 ----D---- C:\WINDOWS\system32\NDF
2018-02-21 09:16:53 ----D---- C:\Program Files\McAfee Security Scan
2018-02-21 09:16:38 ----HD---- C:\ProgramData
2018-02-19 11:30:52 ----D---- C:\WINDOWS\WinSxS
2018-02-16 20:03:12 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-15 13:01:55 ----D---- C:\WINDOWS\rescache
2018-02-14 20:08:21 ----D---- C:\Program Files (x86)\McAfee
2018-02-14 20:07:28 ----D---- C:\Program Files\TrueKey
2018-02-14 20:03:53 ----D---- C:\WINDOWS\TextInput
2018-02-14 20:03:53 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-02-14 20:03:53 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-02-14 20:03:43 ----D---- C:\WINDOWS\system32\wbem
2018-02-14 20:03:43 ----D---- C:\WINDOWS\system32\oobe
2018-02-14 20:03:42 ----D---- C:\WINDOWS\system32\migration
2018-02-14 20:03:42 ----D---- C:\WINDOWS\system32\Boot
2018-02-14 20:03:42 ----D---- C:\WINDOWS\system32\appraiser
2018-02-14 20:03:33 ----D---- C:\WINDOWS\ShellExperiences
2018-02-14 20:03:25 ----D---- C:\WINDOWS\bcastdvr
2018-02-14 20:03:25 ----D---- C:\WINDOWS\apppatch
2018-02-14 20:03:06 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-02-14 12:41:50 ----D---- C:\WINDOWS\system32\MRT
2018-02-14 12:34:35 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-02-14 12:34:09 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-02-14 12:27:50 ----D---- C:\WINDOWS\CbsTemp
2018-02-12 19:11:40 ----D---- C:\WINDOWS\system32\CatRoot
2018-02-12 12:23:56 ----AD---- C:\Program Files (x86)\Windows Live
2018-02-12 12:03:36 ----SD---- C:\Users\ver.lips\AppData\Roaming\Microsoft
2018-02-12 11:56:22 ----RD---- C:\Program Files (x86)
2018-02-12 11:55:39 ----RD---- C:\Users
2018-02-12 09:24:04 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-02-12 09:24:04 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-02-07 08:13:43 ----D---- C:\WINDOWS\system32\Macromed
2018-02-07 08:13:36 ----D---- C:\WINDOWS\SYSWOW64\Macromed
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 avdevprot;avdevprot; C:\WINDOWS\system32\DRIVERS\avdevprot.sys [2017-10-03 60920]
R0 hpdskflt;@oem48.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2017-12-18 39936]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 MBI;@oem39.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2013-10-11 29464]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2018-02-04 169864]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2017-03-02 44488]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-01-01 59800]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 NNSALPC;NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [2015-12-10 103856]
R1 NNSHTTP;NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [2015-12-10 210864]
R1 NNSHTTPS;NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [2015-12-10 120240]
R1 NNSIDS;NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [2015-12-10 120240]
R1 NNSNAHSL;@oem42.inf,%NNSNAHSL_Desc%;Network Activity Hook Server LightWeight Filter Driver; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [2015-06-19 58616]
R1 NNSPICC;NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [2015-12-10 112560]
R1 NNSPIHSW;NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [2015-12-10 87984]
R1 NNSPOP3;NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [2015-12-10 133552]
R1 NNSPROT;NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [2015-12-10 309680]
R1 NNSPRV;NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [2016-02-18 179632]
R1 NNSSMTP;NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [2015-12-10 122800]
R1 NNSSTRM;NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [2016-02-18 267184]
R1 NNSTLSC;NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [2015-12-10 115632]
R1 PSINKNC;PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [2016-02-18 207280]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2017-12-12 178840]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2017-03-02 88488]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 PSINAflt;PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [2016-02-18 174000]
R2 PSINFile;PSINFile; C:\WINDOWS\system32\DRIVERS\PSINFile.sys [2016-02-18 129456]
R2 PSINProc;PSINProc; C:\WINDOWS\system32\DRIVERS\PSINProc.sys [2016-02-18 133552]
R2 PSINProt;PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [2016-02-24 146864]
R2 PSINReg;PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [2016-02-18 117168]
R3 Accelerometer;@oem48.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2017-12-18 53760]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 clwvd;@oem28.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys [2013-10-15 41704]
R3 GPIO;@oem41.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpioe.sys [2013-11-11 31232]
R3 iaioi2c;@oem20.inf,%Driver_Service.Desc%;I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2ce.sys [2013-11-11 67584]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2013-08-13 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2013-08-13 21920]
R3 ISCT;@oem10.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD64.sys [2013-08-13 46568]
R3 iwdbus;@oem26.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 netr28x;@netr28x.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\System32\drivers\netr28x.sys [2017-09-29 2537984]
R3 panda_url_filteringd;panda_url_filteringd driver; \??\C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys [2014-03-19 51288]
R3 PSKMAD;PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [2015-05-22 61712]
R3 rtbth;@oem15.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2015-06-03 1219200]
R3 RTL8168;@oem40.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2013-08-15 830680]
R3 RTSPER;@oem13.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-05-14 751632]
R3 SensorsHIDClassDriver;@SensorsHidClassDriver.inf,%WudfSensorsHIDClassDriverDisplayName%;UMDF Reflector service for Sensors HID Class Driver; C:\WINDOWS\System32\drivers\WUDFRd.sys [2017-09-29 259584]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2017-09-29 105472]
S3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-09-29 78848]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-02-10 1015296]
S3 dot4;@oem50.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem51.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 27040]
S3 dot4usb;@oem50.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 HyperVideo;HyperVideo; C:\WINDOWS\System32\drivers\HyperVideo.sys [2017-09-29 28160]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys []
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2018-01-01 192512]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-09-29 1849752]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2018-02-15 492560]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2018-02-15 492560]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll" = %windir%\system32\inetsrv\apphostsvc.dll
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2018-02-05 449240]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2018-01-22 102304]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 Cachedrv server; HP SimplePass Cachedrv Service; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [2013-10-14 109568]
R2 CDPUserSvc_4b5c1;CDPUserSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-02-02 7761576]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-10-18 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-10-18 298760]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 hp3ddgsrv;@oem25.inf,%hpservice_desc%;HP 3DDG Service; C:\WINDOWS\system32\HP3DDGService.exe [2017-09-22 130072]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-22 332216]
R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2015-06-29 602888]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-01 733696]
R2 NanoServiceMain;Panda Protection Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [2016-02-11 150624]
R2 omniserv; HP SimplePass Service; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [2013-10-14 87552]
R2 OneSyncSvc_4b5c1;OneSyncSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 panda_url_filtering;panda_url_filtering Service; C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe [2015-11-06 287752]
R2 PandaAgent;Panda Devices Agent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [2016-02-22 73176]
R2 postgresql-x64-9.5;postgresql-x64-9.5 - PostgreSQL Server 9.5; C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe [2016-08-09 94208]
R2 PSUAService;Panda Product Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [2016-02-15 45472]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-02-10 519144]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-12-11 43648]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
R3 PimIndexMaintenanceSvc_4b5c1;PimIndexMaintenanceSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2018-02-15 1136744]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2018-02-15 1533608]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-09-29 52856]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; %SystemRoot%\system32\svchost.exe -k appmodel -p;"ServiceDll" = %SystemRoot%\system32\CapabilityAccessManager.dll
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_4b5c1;DevicesFlowUserSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k diagnostics;"ServiceDll" = %systemroot%\system32\DiagSvc.dll
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k GraphicsPerfSvcGroup;"ServiceDll" = %SystemRoot%\System32\GraphicsPerfSvc.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\InstallService.dll
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-01 822232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.690\McCHSvc.exe [2018-02-19 405400]
S3 MessagingService_4b5c1;MessagingService_4b5c1; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-02-12 194512]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-02-02 213680]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; %SystemRoot%\system32\svchost.exe -k PrintWorkflow;"ServiceDll" = %SystemRoot%\System32\PrintWorkflowService.dll
S3 PrintWorkflowUserSvc_4b5c1;PrintWorkflowUserSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k PrintWorkflow;"ServiceDll" =
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\PushToInstall.dll
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
-----------------EOF-----------------
2018-03-06 12:36:26 ----D---- C:\WINDOWS\Prefetch
2018-03-06 12:36:17 ----D---- C:\WINDOWS\Temp
2018-03-06 12:32:42 ----D---- C:\WINDOWS\system32\drivers
2018-03-06 12:31:27 ----D---- C:\ProgramData\panda_url_filtering
2018-03-06 12:31:21 ----D---- C:\WINDOWS\system32\sru
2018-03-06 12:30:57 ----HD---- C:\Program Files\WindowsApps
2018-03-06 12:30:47 ----D---- C:\WINDOWS\AppReadiness
2018-03-06 12:14:33 ----D---- C:\WINDOWS\SoftwareDistribution
2018-03-06 12:14:31 ----D---- C:\Windows
2018-03-06 12:13:22 ----RD---- C:\Program Files
2018-03-06 12:09:16 ----D---- C:\WINDOWS\INF
2018-03-06 12:09:12 ----D---- C:\WINDOWS\debug
2018-03-06 11:05:27 ----D---- C:\WINDOWS\DeliveryOptimization
2018-03-06 08:01:46 ----D---- C:\WINDOWS\system32\Tasks
2018-03-06 06:51:30 ----D---- C:\WINDOWS\system32\LogFiles
2018-03-06 06:48:39 ----D---- C:\WINDOWS\system32\SleepStudy
2018-03-05 14:00:03 ----D---- C:\WINDOWS\SysWOW64
2018-03-05 13:52:02 ----RD---- C:\WINDOWS\Microsoft.NET
2018-03-02 19:38:29 ----D---- C:\WINDOWS\Logs
2018-03-02 18:41:29 ----D---- C:\WINDOWS\system32\config
2018-03-02 16:53:34 ----D---- C:\WINDOWS\system32\catroot2
2018-03-02 14:59:23 ----D---- C:\WINDOWS\System32
2018-03-02 14:59:21 ----D---- C:\WINDOWS\system32\DriverStore
2018-03-02 14:58:24 ----SHD---- C:\System Volume Information
2018-03-02 12:21:46 ----SHD---- C:\WINDOWS\Installer
2018-03-02 12:21:46 ----SHD---- C:\Config.Msi
2018-02-28 21:37:09 ----D---- C:\WINDOWS\Tasks
2018-02-28 14:14:38 ----D---- C:\music 1
2018-02-28 14:14:38 ----D---- C:\Music
2018-02-28 12:03:00 ----D---- C:\pracovní
2018-02-26 21:00:38 ----D---- C:\FOTKY
2018-02-26 20:09:08 ----D---- C:\les filmes
2018-02-24 05:39:41 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-02-24 05:36:38 ----D---- C:\Program Files (x86)\Common Files
2018-02-24 05:32:17 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-02-23 22:08:45 ----D---- C:\Users\ver.lips\AppData\Roaming\Spotify
2018-02-22 22:52:14 ----D---- C:\ProgramData\Package Cache
2018-02-21 10:18:09 ----D---- C:\WINDOWS\system32\NDF
2018-02-21 09:16:53 ----D---- C:\Program Files\McAfee Security Scan
2018-02-21 09:16:38 ----HD---- C:\ProgramData
2018-02-19 11:30:52 ----D---- C:\WINDOWS\WinSxS
2018-02-16 20:03:12 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-15 13:01:55 ----D---- C:\WINDOWS\rescache
2018-02-14 20:08:21 ----D---- C:\Program Files (x86)\McAfee
2018-02-14 20:07:28 ----D---- C:\Program Files\TrueKey
2018-02-14 20:03:53 ----D---- C:\WINDOWS\TextInput
2018-02-14 20:03:53 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-02-14 20:03:53 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-02-14 20:03:43 ----D---- C:\WINDOWS\system32\wbem
2018-02-14 20:03:43 ----D---- C:\WINDOWS\system32\oobe
2018-02-14 20:03:42 ----D---- C:\WINDOWS\system32\migration
2018-02-14 20:03:42 ----D---- C:\WINDOWS\system32\Boot
2018-02-14 20:03:42 ----D---- C:\WINDOWS\system32\appraiser
2018-02-14 20:03:33 ----D---- C:\WINDOWS\ShellExperiences
2018-02-14 20:03:25 ----D---- C:\WINDOWS\bcastdvr
2018-02-14 20:03:25 ----D---- C:\WINDOWS\apppatch
2018-02-14 20:03:06 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-02-14 12:41:50 ----D---- C:\WINDOWS\system32\MRT
2018-02-14 12:34:35 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-02-14 12:34:09 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-02-14 12:27:50 ----D---- C:\WINDOWS\CbsTemp
2018-02-12 19:11:40 ----D---- C:\WINDOWS\system32\CatRoot
2018-02-12 12:23:56 ----AD---- C:\Program Files (x86)\Windows Live
2018-02-12 12:03:36 ----SD---- C:\Users\ver.lips\AppData\Roaming\Microsoft
2018-02-12 11:56:22 ----RD---- C:\Program Files (x86)
2018-02-12 11:55:39 ----RD---- C:\Users
2018-02-12 09:24:04 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-02-12 09:24:04 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-02-07 08:13:43 ----D---- C:\WINDOWS\system32\Macromed
2018-02-07 08:13:36 ----D---- C:\WINDOWS\SYSWOW64\Macromed
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 avdevprot;avdevprot; C:\WINDOWS\system32\DRIVERS\avdevprot.sys [2017-10-03 60920]
R0 hpdskflt;@oem48.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2017-12-18 39936]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 MBI;@oem39.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\WINDOWS\System32\drivers\MBI.sys [2013-10-11 29464]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2018-02-04 169864]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2017-03-02 44488]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-01-01 59800]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-03-05 91712]
R1 NNSALPC;NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [2015-12-10 103856]
R1 NNSHTTP;NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [2015-12-10 210864]
R1 NNSHTTPS;NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [2015-12-10 120240]
R1 NNSIDS;NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [2015-12-10 120240]
R1 NNSNAHSL;@oem42.inf,%NNSNAHSL_Desc%;Network Activity Hook Server LightWeight Filter Driver; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [2015-06-19 58616]
R1 NNSPICC;NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [2015-12-10 112560]
R1 NNSPIHSW;NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [2015-12-10 87984]
R1 NNSPOP3;NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [2015-12-10 133552]
R1 NNSPROT;NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [2015-12-10 309680]
R1 NNSPRV;NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [2016-02-18 179632]
R1 NNSSMTP;NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [2015-12-10 122800]
R1 NNSSTRM;NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [2016-02-18 267184]
R1 NNSTLSC;NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [2015-12-10 115632]
R1 PSINKNC;PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [2016-02-18 207280]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2017-12-12 178840]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2017-03-02 88488]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 PSINAflt;PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [2016-02-18 174000]
R2 PSINFile;PSINFile; C:\WINDOWS\system32\DRIVERS\PSINFile.sys [2016-02-18 129456]
R2 PSINProc;PSINProc; C:\WINDOWS\system32\DRIVERS\PSINProc.sys [2016-02-18 133552]
R2 PSINProt;PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [2016-02-24 146864]
R2 PSINReg;PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [2016-02-18 117168]
R3 Accelerometer;@oem48.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2017-12-18 53760]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 clwvd;@oem28.inf,%clwvd.DeviceDesc%;CyberLink WebCam Virtual Driver; C:\WINDOWS\system32\DRIVERS\clwvd.sys [2013-10-15 41704]
R3 GPIO;@oem41.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpioe.sys [2013-11-11 31232]
R3 iaioi2c;@oem20.inf,%Driver_Service.Desc%;I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2ce.sys [2013-11-11 67584]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2013-08-13 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2013-08-13 21920]
R3 ISCT;@oem10.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD64.sys [2013-08-13 46568]
R3 iwdbus;@oem26.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 netr28x;@netr28x.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\System32\drivers\netr28x.sys [2017-09-29 2537984]
R3 panda_url_filteringd;panda_url_filteringd driver; \??\C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys [2014-03-19 51288]
R3 PSKMAD;PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [2015-05-22 61712]
R3 rtbth;@oem15.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2015-06-03 1219200]
R3 RTL8168;@oem40.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2013-08-15 830680]
R3 RTSPER;@oem13.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-05-14 751632]
R3 SensorsHIDClassDriver;@SensorsHidClassDriver.inf,%WudfSensorsHIDClassDriverDisplayName%;UMDF Reflector service for Sensors HID Class Driver; C:\WINDOWS\System32\drivers\WUDFRd.sys [2017-09-29 259584]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2017-09-29 105472]
S3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-09-29 78848]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-02-10 1015296]
S3 dot4;@oem50.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem51.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 27040]
S3 dot4usb;@oem50.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 HyperVideo;HyperVideo; C:\WINDOWS\System32\drivers\HyperVideo.sys [2017-09-29 28160]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys []
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2018-01-01 192512]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2017-09-29 1849752]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2018-02-15 492560]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2018-02-15 492560]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll" = %windir%\system32\inetsrv\apphostsvc.dll
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2018-02-05 449240]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2018-01-22 102304]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 Cachedrv server; HP SimplePass Cachedrv Service; C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [2013-10-14 109568]
R2 CDPUserSvc_4b5c1;CDPUserSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-02-02 7761576]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-10-18 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-10-18 298760]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 hp3ddgsrv;@oem25.inf,%hpservice_desc%;HP 3DDG Service; C:\WINDOWS\system32\HP3DDGService.exe [2017-09-22 130072]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-22 332216]
R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2015-06-29 602888]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-01 733696]
R2 NanoServiceMain;Panda Protection Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [2016-02-11 150624]
R2 omniserv; HP SimplePass Service; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [2013-10-14 87552]
R2 OneSyncSvc_4b5c1;OneSyncSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 panda_url_filtering;panda_url_filtering Service; C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe [2015-11-06 287752]
R2 PandaAgent;Panda Devices Agent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [2016-02-22 73176]
R2 postgresql-x64-9.5;postgresql-x64-9.5 - PostgreSQL Server 9.5; C:\Program Files\PostgreSQL\9.5\bin\pg_ctl.exe [2016-08-09 94208]
R2 PSUAService;Panda Product Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [2016-02-15 45472]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-02-10 519144]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-12-11 43648]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
R3 PimIndexMaintenanceSvc_4b5c1;PimIndexMaintenanceSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\system32\SEMgrSvc.dll
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [2018-02-15 1136744]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [2018-02-15 1533608]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-09-29 52856]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; %SystemRoot%\system32\svchost.exe -k appmodel -p;"ServiceDll" = %SystemRoot%\system32\CapabilityAccessManager.dll
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_4b5c1;DevicesFlowUserSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k diagnostics;"ServiceDll" = %systemroot%\system32\DiagSvc.dll
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k GraphicsPerfSvcGroup;"ServiceDll" = %SystemRoot%\System32\GraphicsPerfSvc.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\InstallService.dll
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-01 822232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.690\McCHSvc.exe [2018-02-19 405400]
S3 MessagingService_4b5c1;MessagingService_4b5c1; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-02-12 194512]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-02-02 213680]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; %SystemRoot%\system32\svchost.exe -k PrintWorkflow;"ServiceDll" = %SystemRoot%\System32\PrintWorkflowService.dll
S3 PrintWorkflowUserSvc_4b5c1;PrintWorkflowUserSvc_4b5c1; C:\WINDOWS\system32\svchost.exe -k PrintWorkflow;"ServiceDll" =
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\PushToInstall.dll
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
-----------------EOF-----------------
Re: preventivka
Ahoj 
Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
- Uloz na plochu a ukonci vsetky programy
- Spusti AdwCleaner ako spravca
- Odsuhlas licencne podmienky
- Klikni na Scan (Skenovanie) a pockaj na dokoncenie
- Klikni na Clean (Cistenie) a potvrd kliknutim na OK
- AdwCleaner si vyziada restart PC, potvrd kliknutim na Restart Now (Restartovat teraz)
- Po dokonceni a restartovani PC vyskoci log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: preventivka
Díky.
# AdwCleaner 7.0.8.0 - Logfile created on Tue Mar 06 13:30:00 2018
# Updated on 2018/08/02 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
Deleted: TBSrv
Deleted: panda_url_filtering
***** [ Folders ] *****
Deleted: C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B
Deleted: C:\ProgramData\EmailNotifier
Deleted: C:\Users\All Users\EmailNotifier
Deleted: C:\Program Files (x86)\pandasecuritytb
Deleted: C:\Users\ver.lips\AppData\LocalLow\pandasecuritytb
Deleted: C:\ProgramData\Tbccint
Deleted: C:\Program Files (x86)\Tbccint
Deleted: C:\Users\All Users\Tbccint
Deleted: C:\Users\ver.lips\AppData\Local\Tbccint
Deleted: C:\Users\ver.lips\AppData\LocalLow\Tbccint
Deleted: C:\Users\ver.lips\AppData\LocalLow\PriceGong
Deleted: C:\Program Files\Panda Security URL Filtering
***** [ Files ] *****
Deleted: C:\END
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{8CEDA1F7-8268-4733-8080-020CE4702074}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{79467DA3-B8AB-43C6-A4A0-8DA827A3B34F}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{0F586C74-5BD9-4904-9185-B442A273EA64}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{11277D5A-69BF-45B7-B0C3-B0C23194F651}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{515AF06A-88C7-47F5-BCE9-4F9C2C464507}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{515AF06A-88C7-47F5-BCE9-4F9C2C464507}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{521BA815-061E-466D-BB79-44A3B411D3EA}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{521BA815-061E-466D-BB79-44A3B411D3EA}
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Software\BS_Player_ControlBar_B
Deleted: [Key] - HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
Deleted: [Key] - HKLM\SOFTWARE\Email Notifier
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Tbccint_HKLM
Deleted: [Key] - HKCU\Software\Tbccint_HKLM
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKCU\Software\Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Value] - HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Value] - HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Deleted: [Key] - HKCU\Software\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{607B689F-7600-45E4-B8E5-887F72DAB15C}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Deleted: [Key] - HKCU\Software\Classes\CLSID\{1BBF13E0-551E-42DD-91F4-1A547443FFDA}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0D4A4BC-F7CD-436E-B1FA-25637BA0F5BE}
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Tbccint
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Software\Tbccint
Deleted: [Key] - HKCU\Software\Tbccint
Deleted: [Key] - HKCU\Software\AppDataLow\Software\Tbccint
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Software\TbccintSearchScopes
Deleted: [Key] - HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Conduit
Deleted: [Key] - HKCU\Software\Conduit
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Software\PriceGong
Deleted: [Key] - HKCU\Software\AppDataLow\Software\PriceGong
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Toolbar
Deleted: [Key] - HKCU\Software\AppDataLow\Toolbar
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2159D33-3CE2-401B-8967-1B270628A311}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Toolbar.CT3329621
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [7039 B] - [2018/3/6 13:28:55]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
# AdwCleaner 7.0.8.0 - Logfile created on Tue Mar 06 13:30:00 2018
# Updated on 2018/08/02 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
Deleted: TBSrv
Deleted: panda_url_filtering
***** [ Folders ] *****
Deleted: C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B
Deleted: C:\ProgramData\EmailNotifier
Deleted: C:\Users\All Users\EmailNotifier
Deleted: C:\Program Files (x86)\pandasecuritytb
Deleted: C:\Users\ver.lips\AppData\LocalLow\pandasecuritytb
Deleted: C:\ProgramData\Tbccint
Deleted: C:\Program Files (x86)\Tbccint
Deleted: C:\Users\All Users\Tbccint
Deleted: C:\Users\ver.lips\AppData\Local\Tbccint
Deleted: C:\Users\ver.lips\AppData\LocalLow\Tbccint
Deleted: C:\Users\ver.lips\AppData\LocalLow\PriceGong
Deleted: C:\Program Files\Panda Security URL Filtering
***** [ Files ] *****
Deleted: C:\END
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{8CEDA1F7-8268-4733-8080-020CE4702074}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{79467DA3-B8AB-43C6-A4A0-8DA827A3B34F}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{0F586C74-5BD9-4904-9185-B442A273EA64}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{11277D5A-69BF-45B7-B0C3-B0C23194F651}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{515AF06A-88C7-47F5-BCE9-4F9C2C464507}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{515AF06A-88C7-47F5-BCE9-4F9C2C464507}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{521BA815-061E-466D-BB79-44A3B411D3EA}
Deleted: [Value] - HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{521BA815-061E-466D-BB79-44A3B411D3EA}
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Software\BS_Player_ControlBar_B
Deleted: [Key] - HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
Deleted: [Key] - HKLM\SOFTWARE\Email Notifier
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Tbccint_HKLM
Deleted: [Key] - HKCU\Software\Tbccint_HKLM
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKCU\Software\Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Value] - HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Value] - HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{31264A33-A653-46C4-AF49-1232C59A7DA5}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Deleted: [Key] - HKCU\Software\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{607B689F-7600-45E4-B8E5-887F72DAB15C}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
Deleted: [Key] - HKCU\Software\Classes\CLSID\{1BBF13E0-551E-42DD-91F4-1A547443FFDA}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0D4A4BC-F7CD-436E-B1FA-25637BA0F5BE}
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Tbccint
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Software\Tbccint
Deleted: [Key] - HKCU\Software\Tbccint
Deleted: [Key] - HKCU\Software\AppDataLow\Software\Tbccint
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Software\TbccintSearchScopes
Deleted: [Key] - HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Conduit
Deleted: [Key] - HKCU\Software\Conduit
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Software\PriceGong
Deleted: [Key] - HKCU\Software\AppDataLow\Software\PriceGong
Deleted: [Key] - HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\AppDataLow\Toolbar
Deleted: [Key] - HKCU\Software\AppDataLow\Toolbar
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2159D33-3CE2-401B-8967-1B270628A311}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Toolbar.CT3329621
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [7039 B] - [2018/3/6 13:28:55]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
Re: preventivka
Poprosim o obidva logy z FRST podla tohto navodu (FRST.txt a Addition.txt): https://forum.viry.cz/viewtopic.php?f=13&t=152707 V pripade, ze sa FRSTLauncher nebude dat stiahnut alebo spustit, pouzi iba samotny FRST. Ak sa logy nezmestia do jedneho prispevku, zabal ich do archivu RAR alebo ZIP a posli ako prilohu.Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: preventivka
Díky. FRSTLauncher mi nejde spustit, mám tedy spustit jen ten první soubor, že?
V návodu se píše "Dooznačíme položku Addition.txt - viz obrázek." Obrázek se mi bohužel nezobrazuje a nerada bych něco udělala špatně. Addition bylo zaškrtnuté již po spuštění - přikládám screenshot s tím, co všechno mám označené, a zda je to správně.
V návodu se píše "Dooznačíme položku Addition.txt - viz obrázek." Obrázek se mi bohužel nezobrazuje a nerada bych něco udělala špatně. Addition bylo zaškrtnuté již po spuštění - přikládám screenshot s tím, co všechno mám označené, a zda je to správně.
- Přílohy
-
- addition.PNG (10.74 KiB) Zobrazeno 2661 x
Re: preventivka
Ano, je to spravne.
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: preventivka
V PC je nainstalovanych niekolko antivirusov. Moje odporucanie je ponechat Aviru a odinstalovat nasledujuce programy (navod):
- McAfee Security Scan Plus
Panda Free Antivirus
Panda Security Toolbar
BS Player ControlBar B Toolbar for IE
Intel Security True Key
V PC je nainstalovana zastarala verzia Javy (Java 8 Update 45), odporucam odinstalovat. Ak Javu potrebujes, nainstaluj aktualnu verziu (momentalne Java 8 Update 161) z https://java.com/en/download/ Nasledne vytvor a posli nove logy z FRSTAbsolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: preventivka
Děkuju.
Při pokusu o odinstalaci těchto dvou: Panda Security Toolbar, BS Player ControlBar B Toolbar for IE mi vyskakuje hláška na obrázku.
Při pokusu o odinstalaci těchto dvou: Panda Security Toolbar, BS Player ControlBar B Toolbar for IE mi vyskakuje hláška na obrázku.
- Přílohy
-
- bs toolbar.PNG (9.6 KiB) Zobrazeno 2642 x
Re: preventivka
OK, nevadi, zbavime sa toho nasilu. Aktualizuj este tu Javu a nasledne vloz nove logy z FRST.
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: preventivka
Ostal tam este Intel Security True Key, ak tento program nepouzivas, odinstaluj ho. Nasledne precistime zbytky po tychto programoch.Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Re: preventivka
Nějak jsem to přehlídla, děkuju za připomenutí.
Vkládám tedy nové logy.
Vkládám tedy nové logy.
- Přílohy
-
- FRST2.zip
- (30.3 KiB) Staženo 61 x
Re: preventivka
Otvor poznamkovy blok (Win+R -> notepad -> enter)
- Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:
Kód: Vybrat vše
Start CloseProcesses: CreateRestorePoint: Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter GroupPolicyScripts: Restriction <==== ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#/?show_is=1&source=art HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#/?show_is=1&source=art HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#/?show_is=1&source=art HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#/?show_is=1&source=art HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#/?show_is=1&source=art HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#/?show_is=1&source=art HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#/?show_is=1&source=art SearchScopes: HKLM-x32 -> DefaultScope {4961737D-861D-4372-89FA-66C84BD325E2} URL = SearchScopes: HKU\S-1-5-21-2580292674-1686849953-1872125729-1001 -> DefaultScope {4961737D-861D-4372-89FA-66C84BD325E2} URL = hxxp://trovi.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3329621&CUI=UN28310550159000651&UM=4 SearchScopes: HKU\S-1-5-21-2580292674-1686849953-1872125729-1001 -> {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://www.mystart.com/results.php?gen=ms&pr=vmn&id=mystarttb&v=5_4&ent=ch_5224&q={searchTerms} SearchScopes: HKU\S-1-5-21-2580292674-1686849953-1872125729-1001 -> {4961737D-861D-4372-89FA-66C84BD325E2} URL = hxxp://trovi.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3329621&CUI=UN28310550159000651&UM=4 SearchScopes: HKU\S-1-5-21-2580292674-1686849953-1872125729-1001 -> {7569F2ED-27BC-4F80-BD21-EFE94AFEC867} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} BHO: Panda Security Toolbar -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll => No File BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File BHO-x32: Panda Security Toolbar -> {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} -> C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll => No File Toolbar: HKLM - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll No File Toolbar: HKLM-x32 - BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_0.dll No File Toolbar: HKLM-x32 - No Name - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - No File Toolbar: HKLM-x32 - Panda Security Toolbar - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\pandasecuritytb\pandasecurityDx.dll No File FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [No File] FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [No File] S3 panda_url_filteringd; C:\Program Files\Panda Security URL Filtering\panda_url_filteringd.sys [51288 2014-03-19] (Visicom Media Inc.) S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X] 2018-03-08 15:26 - 2017-03-20 22:54 - 000000000 ____D C:\Program Files\Common Files\McAfee 2018-03-08 15:26 - 2014-07-12 17:09 - 000000000 ____D C:\ProgramData\McAfee 2018-03-06 18:13 - 2016-03-27 17:45 - 000000000 ____D C:\Program Files (x86)\Panda Security 2018-03-06 17:26 - 2016-03-27 17:43 - 000000000 ____D C:\ProgramData\Panda Security 2018-03-06 17:24 - 2016-03-27 17:48 - 000000000 ____D C:\Users\ver.lips\AppData\Roaming\Panda Security 2018-03-06 14:29 - 2016-03-27 17:49 - 000000000 ____D C:\Program Files\Panda Security URL Filtering 2018-03-06 12:31 - 2016-03-27 17:49 - 000000000 ____D C:\ProgramData\panda_url_filtering 2018-02-14 20:08 - 2017-03-20 22:54 - 000000000 ____D C:\Program Files (x86)\McAfee ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll -> No File ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll -> No File ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll -> No File Task: {34B69255-57F6-4E3C-8D15-B6073ADC3083} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION Task: {45A7F60F-BE23-40AD-95C9-0A4DF4D99282} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {53DDE7F8-C48B-4CA7-B682-8C118F3D6049} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION Task: {581F155B-96BE-467D-AA31-D4E8788D3A37} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION Task: {5EC060D1-B287-48F6-81AF-6F18C95D949C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {62F3BF94-35C1-44ED-818F-132096B280C7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION Task: {71D63B10-FC60-432F-B5E9-B1DAD9CE8240} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION Task: {7DF82D22-E287-4BA1-8091-05412FE6F532} - \WPD\SqmUpload_S-1-5-21-2580292674-1686849953-1872125729-1001 -> No File <==== ATTENTION Task: {7E0FF635-009B-4615-B248-1DC3618CF8C0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {AF9E6BE1-566A-4500-BD8C-B738BBB22D43} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {B309D1D0-89D9-4454-906B-441DC89D821C} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION Task: {BE2E1E27-7E72-48D3-97D1-FA49DBD60E49} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION Task: {C5A4D2A8-7DA5-49F8-AA8A-03C914B148B1} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION Task: {DB06B686-13DE-4314-802C-4305C85B8DE1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION Task: {E264FF90-4C00-49C2-92E3-B4187460F313} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION Task: {E5F211C8-6D95-4DCA-9342-6E732975DCD4} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION Task: {F79AD21F-DCCB-49CA-8613-542CB26C3CEE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION IE trusted site: HKU\S-1-5-21-2580292674-1686849953-1872125729-1001\...\sharepoint.com -> hxxps://vse-files.sharepoint.com C:\Program Files\TrueKey C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk C:\Program Files (x86)\pandasecuritytb C:\Users\ver.lips\AppData\LocalLow\BS_Player_ControlBar_B C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus C:\ProgramData\McAfee Security Scan C:\Program Files\McAfee Security Scan C:\Program Files\McAfee DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IECT3329621 DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\pandasecuritytb Hosts: EmptyTemp: End - Uloz na plochu s nazvom fixlist.txt
- Spusti znovu FRST a klikni na Fix
- Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
- Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
E-mail: conder (zavinac) forum.viry.cz
Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).
Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.
V pripade spokojnosti je mozne podporit forum. Dakujeme!
Přispějete na provoz fóra?