Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

poprosim o kontrolu logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

poprosim o kontrolu logu

#1 Příspěvek od petob »

obcas mi eset vyhodi oznam ze treba zablokovat sifrovanu sietovanu komunikaciu.
Dakujem

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peťo at 2018-07-15 08:34:14
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 774 GB (82%) free of 941 GB
Total RAM: 4024 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:34:21, on 15. 7. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19081)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files\trend micro\Peťo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMDTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=CMDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMDTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMDTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [HP File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: HP Trust Circles Service (CreoService) - CryptoMill Technologies Ltd. - C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
O23 - Service: Absolute Software Agent Service (CtAgentService) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\windows\SysWOW64\flcdlock.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Device Access Manager Usage Service (HpDamServiceHost) - Hewlett-Packard Development Company - c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
O23 - Service: HP File Sanitizer (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13765 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
winlogon.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\ESET\ESET Security\ekrn.exe"
C:\windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\igfxCUIService.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPSP
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPCardEngine.exe"
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe"
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe"
C:\windows\System32\svchost.exe -k utcsvc
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-85d90521-47a5-4a95-90a9-52954ebdbe3c -SystemEventPortName:HostProcess-6e692cbd-eecc-4d2e-9c09-038980c559c9 -IoCancelEventPortName:HostProcess-a6442547-4dd4-427b-84d0-ca567fa1c54e -NonStateChangingEventPortName:HostProcess-335d4836-feac-4277-9fb5-37f0b9f011ee -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:93400e8d-f22e-448f-b383-5edefcd6b942 -DeviceGroupId:WpdFsGroup
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
igfxEM.exe
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
HydraDM64.exe -h:65922 "Maximize to full desktop" "Maximize to window corners" "Restore desktop"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan-588 C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe"
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5864.0.818402414\265490418" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - "C:\Users\Peťo\AppData\LocalLow\Mozilla\Temp-{de4b9f7b-2d7d-4dae-90d0-f2af261434e2}" 5864 "\\.\pipe\gecko-crash-server-pipe.5864" 1168 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5864.3.860205338\1013750076" -childID 1 -isForBrowser -prefsHandle 1768 -prefsLen 7799 -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5864 "\\.\pipe\gecko-crash-server-pipe.5864" 1780 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5864.13.276282305\268674220" -childID 2 -isForBrowser -prefsHandle 2692 -prefsLen 11056 -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5864 "\\.\pipe\gecko-crash-server-pipe.5864" 2736 tab
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --use-gl=swiftshader-webgl --disable-gpu-compositing --service-pipe-token=B9398F8F652EBB752767B6C1CAC4129C --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\PEO~1\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 6.1.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.98 Safari/537.36 CreativeCloud/4.6.0.384" --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=B9398F8F652EBB752767B6C1CAC4129C --renderer-client-id=2 --mojo-platform-channel-handle=2656 /prefetch:1
"C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\main.js"
\??\C:\windows\system32\conhost.exe "-1171454435-719238959-835250312-11921792289815927131658891076-1784068206-854134000
"c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe"
"C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe" "C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\server.js"
\??\C:\windows\system32\conhost.exe "-1041086148-18427443781775094593-20765286191551980260-191657514-1871570144-844855930
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5864.27.1194899347\424943507" -childID 4 -isForBrowser -prefsHandle 3036 -prefsLen 11631 -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 5864 "\\.\pipe\gecko-crash-server-pipe.5864" 3088 tab
"c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Peťo\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=67.0.3396.99 --initial-client-data=0x84,0x88,0x8c,0x80,0x90,0x7feea1f3228,0x7feea1f3238,0x7feea1f3248
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=8184 --on-initialized-event-handle=336 --parent-handle=340 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --use-gl=swiftshader-webgl --service-request-channel-token=081A0C2030E77DFAED6D1FDBF4D3C309 --mojo-platform-channel-handle=1116 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=49919C7ED84D61C05932C6D1367AFE20 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=49919C7ED84D61C05932C6D1367AFE20 --renderer-client-id=13 --mojo-platform-channel-handle=4024 /prefetch:1
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=84582D4948BCC22CECD87E71EE561610 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=84582D4948BCC22CECD87E71EE561610 --renderer-client-id=63 --mojo-platform-channel-handle=8176 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=ED2AF530ECBA45306207BBBFA3CE34E3 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=ED2AF530ECBA45306207BBBFA3CE34E3 --renderer-client-id=64 --mojo-platform-channel-handle=7512 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=4257BF638C8E78D2530EC5C6CA00E8EE --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4257BF638C8E78D2530EC5C6CA00E8EE --renderer-client-id=65 --mojo-platform-channel-handle=848 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=B9F5FC8DAD71352A428BA4E17AA378A8 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=B9F5FC8DAD71352A428BA4E17AA378A8 --renderer-client-id=66 --mojo-platform-channel-handle=8468 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=2C7CD82D92E4C158023684A87E9C74D3 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2C7CD82D92E4C158023684A87E9C74D3 --renderer-client-id=67 --mojo-platform-channel-handle=2812 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=3D0633D2900D686D68424429A6F8D7C9 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=3D0633D2900D686D68424429A6F8D7C9 --renderer-client-id=68 --mojo-platform-channel-handle=8044 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=CAAC13F05DD33C785946FB03E931D2D2 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=CAAC13F05DD33C785946FB03E931D2D2 --renderer-client-id=69 --mojo-platform-channel-handle=9864 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=224442D8F0A2A563EAE0F0669DEA222C --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=224442D8F0A2A563EAE0F0669DEA222C --renderer-client-id=70 --mojo-platform-channel-handle=7912 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=418647124CB597F59F6D92017B206010 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=418647124CB597F59F6D92017B206010 --renderer-client-id=105 --mojo-platform-channel-handle=4828 /prefetch:1

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=23966CD886BF529A5A88C7D4E95317C7 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=23966CD886BF529A5A88C7D4E95317C7 --renderer-client-id=136 --mojo-platform-channel-handle=7116 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=3837EC990AB0EE094FA0B54A30B828A5 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=3837EC990AB0EE094FA0B54A30B828A5 --renderer-client-id=142 --mojo-platform-channel-handle=9288 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=E2060549CEF7F59A47D57B7FD97F343D --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=E2060549CEF7F59A47D57B7FD97F343D --renderer-client-id=143 --mojo-platform-channel-handle=7220 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=EEDE7CE9F541D46D796278D923F61510 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=EEDE7CE9F541D46D796278D923F61510 --renderer-client-id=144 --mojo-platform-channel-handle=8812 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=846215CD58C7142D634D9D0B467B4A0C --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=846215CD58C7142D634D9D0B467B4A0C --renderer-client-id=145 --mojo-platform-channel-handle=4780 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=0DC6443E6F89BD98939525F7DDDF293B --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=0DC6443E6F89BD98939525F7DDDF293B --renderer-client-id=147 --mojo-platform-channel-handle=6512 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=A9256BD9F6A8CB2835DF5A73C57D25B9 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=A9256BD9F6A8CB2835DF5A73C57D25B9 --renderer-client-id=148 --mojo-platform-channel-handle=9440 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=135269E069C4D83E2B03FF11685071DC --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=135269E069C4D83E2B03FF11685071DC --renderer-client-id=149 --mojo-platform-channel-handle=5524 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=54B62D4DB526AA788C7A5B73DF786BB2 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=54B62D4DB526AA788C7A5B73DF786BB2 --renderer-client-id=150 --mojo-platform-channel-handle=6224 /prefetch:1
taskeng.exe {2FC6C540-F86A-4605-BCAE-3440C14621D7}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1108,11191780748083817200,3631554607420401538,131072 --disable-gpu-compositing --service-pipe-token=91196F133678824F9B32E138B94079AD --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=91196F133678824F9B32E138B94079AD --renderer-client-id=164 --mojo-platform-channel-handle=8704 /prefetch:1
"C:\Users\Peťo\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\HPCeeScheduleForPeťo.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPeťo (null)

=========Mozilla firefox=========

ProfilePath - C:\Users\Peťo\AppData\Roaming\Mozilla\Firefox\Profiles\1avt9zqr.default-1530245380356

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\digitalpersona.com/ChromeDPAgent]
"Description"=
"Path"=C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-12-06 440680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
HP File Sanitizer - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-06-26 129240]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-12-06 416104]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2018-01-30 400768]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-07-27 7194840]
"CryptoMill Refresh"=C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh []
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11 509936]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11 316392]
"egui"=C:\Program Files\ESET\ESET Security\ecmds.exe [2018-04-19 178496]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-08-31 389120]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2018-06-22 1588568]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2017-03-08 296208]
"StartCCC"=c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-31 766208]
"CLMLServer_For_P2G8"=c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05 111576]
"CLVirtualDrive"=c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [2013-08-07 490760]
"HP File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2014-06-26 2312408]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2018-06-22 2409944]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2018-02-01 1194048]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-07-15 07:52:23 ----A---- C:\windows\system32\drivers\mbamswissarmy.sys
2018-07-11 16:54:41 ----D---- C:\ProgramData\ESET
2018-07-11 16:54:41 ----D---- C:\Program Files\ESET
2018-07-11 15:17:32 ----A---- C:\windows\system32\aitstatic.exe
2018-07-11 15:17:31 ----A---- C:\windows\system32\invagent.dll
2018-07-11 15:17:31 ----A---- C:\windows\system32\generaltel.dll
2018-07-11 15:17:31 ----A---- C:\windows\system32\devinv.dll
2018-07-11 15:17:31 ----A---- C:\windows\system32\CompatTelRunner.exe
2018-07-11 15:17:31 ----A---- C:\windows\system32\centel.dll
2018-07-11 15:17:31 ----A---- C:\windows\system32\appraiser.dll
2018-07-11 15:17:31 ----A---- C:\windows\system32\aepic.dll
2018-07-11 15:17:31 ----A---- C:\windows\system32\aeinv.dll
2018-07-11 15:17:31 ----A---- C:\windows\system32\acmigration.dll
2018-07-11 15:17:19 ----A---- C:\windows\system32\mshtml.dll
2018-07-11 15:17:18 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-07-11 15:17:18 ----A---- C:\windows\system32\ieframe.dll
2018-07-11 15:17:17 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-07-11 15:17:16 ----A---- C:\windows\SYSWOW64\shell32.dll
2018-07-11 15:17:16 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-07-11 15:17:16 ----A---- C:\windows\system32\shell32.dll
2018-07-11 15:17:16 ----A---- C:\windows\system32\jscript9.dll
2018-07-11 15:17:15 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-07-11 15:17:15 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-07-11 15:17:15 ----A---- C:\windows\SYSWOW64\ucrtbase.dll
2018-07-11 15:17:15 ----A---- C:\windows\system32\win32k.sys
2018-07-11 15:17:15 ----A---- C:\windows\system32\vbscript.dll
2018-07-11 15:17:15 ----A---- C:\windows\system32\urlmon.dll
2018-07-11 15:17:15 ----A---- C:\windows\system32\ucrtbase.dll
2018-07-11 15:17:15 ----A---- C:\windows\system32\ExplorerFrame.dll
2018-07-11 15:17:15 ----A---- C:\windows\system32\drivers\tcpip.sys
2018-07-11 15:17:14 ----A---- C:\windows\SYSWOW64\zipfldr.dll
2018-07-11 15:17:14 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-07-11 15:17:14 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2018-07-11 15:17:14 ----A---- C:\windows\system32\zipfldr.dll
2018-07-11 15:17:14 ----A---- C:\windows\system32\wkssvc.dll
2018-07-11 15:17:14 ----A---- C:\windows\system32\iertutil.dll
2018-07-11 15:17:14 ----A---- C:\windows\system32\iedkcs32.dll
2018-07-11 15:17:14 ----A---- C:\windows\system32\drivers\usbport.sys
2018-07-11 15:17:14 ----A---- C:\windows\system32\drivers\dfsc.sys
2018-07-11 15:17:14 ----A---- C:\windows\system32\dnsapi.dll
2018-07-11 15:17:13 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-07-11 15:17:13 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2018-07-11 15:17:13 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-07-11 15:17:13 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2018-07-11 15:17:13 ----A---- C:\windows\system32\ntdll.dll
2018-07-11 15:17:13 ----A---- C:\windows\system32\dnsrslvr.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-07-11 15:17:12 ----A---- C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-07-11 15:17:11 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-11 15:17:11 ----A---- C:\windows\system32\ntoskrnl.exe
2018-07-11 15:17:11 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2018-07-11 15:17:11 ----A---- C:\windows\system32\hal.dll
2018-07-11 15:17:11 ----A---- C:\windows\system32\drivers\netio.sys
2018-07-11 15:17:11 ----A---- C:\windows\system32\drivers\ksecdd.sys
2018-07-11 15:17:11 ----A---- C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-11 15:17:11 ----A---- C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-07-11 15:17:11 ----A---- C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-07-11 15:17:10 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-07-11 15:17:10 ----A---- C:\windows\SYSWOW64\dnscacheugc.exe
2018-07-11 15:17:10 ----A---- C:\windows\system32\wininet.dll
2018-07-11 15:17:10 ----A---- C:\windows\system32\drivers\mpsdrv.sys
2018-07-11 15:17:10 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2018-07-11 15:17:10 ----A---- C:\windows\system32\dnscacheugc.exe
2018-07-11 15:17:10 ----A---- C:\windows\system32\certcli.dll
2018-07-11 15:17:09 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-07-11 15:17:09 ----A---- C:\windows\SYSWOW64\ole32.dll
2018-07-11 15:17:09 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-07-11 15:17:09 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-07-11 15:17:09 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\webcheck.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\ole32.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\msrating.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\mshtmlmedia.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\msfeeds.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\inseng.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\dxtrans.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\dxtmsft.dll
2018-07-11 15:17:09 ----A---- C:\windows\system32\drivers\usbhub.sys
2018-07-11 15:17:08 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-07-11 15:17:08 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-07-11 15:17:08 ----A---- C:\windows\system32\rstrui.exe
2018-07-11 15:17:08 ----A---- C:\windows\system32\rpcrt4.dll
2018-07-11 15:17:08 ----A---- C:\windows\system32\lsasrv.dll
2018-07-11 15:17:08 ----A---- C:\windows\system32\ieui.dll
2018-07-11 15:17:08 ----A---- C:\windows\system32\iesetup.dll
2018-07-11 15:17:08 ----A---- C:\windows\system32\drivers\usbccgp.sys
2018-07-11 15:17:08 ----A---- C:\windows\system32\conhost.exe
2018-07-11 15:17:07 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-07-11 15:17:07 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-07-11 15:17:07 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-07-11 15:17:07 ----A---- C:\windows\system32\wdigest.dll
2018-07-11 15:17:07 ----A---- C:\windows\system32\schannel.dll
2018-07-11 15:17:07 ----A---- C:\windows\system32\mshtmled.dll
2018-07-11 15:17:07 ----A---- C:\windows\system32\kernel32.dll
2018-07-11 15:17:07 ----A---- C:\windows\system32\kerberos.dll
2018-07-11 15:17:07 ----A---- C:\windows\system32\ie4uinit.exe
2018-07-11 15:17:07 ----A---- C:\windows\system32\advapi32.dll
2018-07-11 15:17:06 ----A---- C:\windows\SYSWOW64\wdigest.dll
2018-07-11 15:17:06 ----A---- C:\windows\SYSWOW64\schannel.dll
2018-07-11 15:17:06 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2018-07-11 15:17:06 ----A---- C:\windows\SYSWOW64\kerberos.dll
2018-07-11 15:17:06 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-07-11 15:17:06 ----A---- C:\windows\SYSWOW64\iesetup.dll
2018-07-11 15:17:06 ----A---- C:\windows\system32\winsrv.dll
2018-07-11 15:17:06 ----A---- C:\windows\system32\TSpkg.dll
2018-07-11 15:17:06 ----A---- C:\windows\system32\srcore.dll
2018-07-11 15:17:06 ----A---- C:\windows\system32\smss.exe
2018-07-11 15:17:06 ----A---- C:\windows\system32\occache.dll
2018-07-11 15:17:06 ----A---- C:\windows\system32\msv1_0.dll
2018-07-11 15:17:06 ----A---- C:\windows\system32\KernelBase.dll
2018-07-11 15:17:06 ----A---- C:\windows\system32\jscript9diag.dll
2018-07-11 15:17:05 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2018-07-11 15:17:05 ----A---- C:\windows\SYSWOW64\occache.dll
2018-07-11 15:17:05 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2018-07-11 15:17:05 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-07-11 15:17:05 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2018-07-11 15:17:05 ----A---- C:\windows\system32\rpchttp.dll
2018-07-11 15:17:05 ----A---- C:\windows\system32\ncrypt.dll
2018-07-11 15:17:05 ----A---- C:\windows\system32\ieUnatt.exe
2018-07-11 15:17:05 ----A---- C:\windows\system32\iernonce.dll
2018-07-11 15:17:04 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2018-07-11 15:17:04 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2018-07-11 15:17:04 ----A---- C:\windows\SYSWOW64\kernel32.dll
2018-07-11 15:17:04 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-07-11 15:17:04 ----A---- C:\windows\SYSWOW64\inseng.dll
2018-07-11 15:17:04 ----A---- C:\windows\SYSWOW64\iernonce.dll
2018-07-11 15:17:04 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2018-07-11 15:17:04 ----A---- C:\windows\system32\csrsrv.dll
2018-07-11 15:17:04 ----A---- C:\windows\system32\auditpol.exe
2018-07-11 15:17:04 ----A---- C:\windows\system32\appidapi.dll
2018-07-11 15:17:03 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-07-11 15:17:03 ----A---- C:\windows\SYSWOW64\auditpol.exe
2018-07-11 15:17:03 ----A---- C:\windows\SYSWOW64\appidapi.dll
2018-07-11 15:17:03 ----A---- C:\windows\system32\rpcss.dll
2018-07-11 15:17:03 ----A---- C:\windows\system32\ntvdm64.dll
2018-07-11 15:17:03 ----A---- C:\windows\system32\drivers\videoprt.sys
2018-07-11 15:17:03 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-07-11 15:17:03 ----A---- C:\windows\system32\appidsvc.dll
2018-07-11 15:17:02 ----A---- C:\windows\SYSWOW64\sspicli.dll
2018-07-11 15:17:02 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-07-11 15:17:02 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2018-07-11 15:17:02 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2018-07-11 15:17:02 ----A---- C:\windows\system32\wow64win.dll
2018-07-11 15:17:02 ----A---- C:\windows\system32\jsproxy.dll
2018-07-11 15:17:02 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-07-11 15:17:02 ----A---- C:\windows\system32\ieetwcollector.exe
2018-07-11 15:17:02 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2018-07-11 15:17:01 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\wow64cpu.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\wow64.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\sspisrv.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\sspicli.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\secur32.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\MshtmlDac.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\lsass.exe
2018-07-11 15:17:01 ----A---- C:\windows\system32\jscript.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2018-07-11 15:17:01 ----A---- C:\windows\system32\drivers\appid.sys
2018-07-11 15:17:01 ----A---- C:\windows\system32\cryptbase.dll
2018-07-11 15:17:01 ----A---- C:\windows\system32\bcrypt.dll
2018-07-11 15:17:00 ----A---- C:\windows\SYSWOW64\srclient.dll
2018-07-11 15:17:00 ----A---- C:\windows\SYSWOW64\secur32.dll
2018-07-11 15:17:00 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-07-11 15:17:00 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2018-07-11 15:17:00 ----A---- C:\windows\SYSWOW64\credssp.dll
2018-07-11 15:17:00 ----A---- C:\windows\SYSWOW64\bcrypt.dll
2018-07-11 15:17:00 ----A---- C:\windows\system32\srclient.dll
2018-07-11 15:17:00 ----A---- C:\windows\system32\setbcdlocale.dll
2018-07-11 15:17:00 ----A---- C:\windows\system32\MPSSVC.dll
2018-07-11 15:17:00 ----A---- C:\windows\system32\drivers\usbehci.sys
2018-07-11 15:17:00 ----A---- C:\windows\system32\credssp.dll
2018-07-11 15:17:00 ----A---- C:\windows\system32\comcat.dll
2018-07-11 15:17:00 ----A---- C:\windows\system32\appidpolicyconverter.exe
2018-07-11 15:16:59 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-11 15:16:59 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-11 15:16:59 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-11 15:16:59 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-11 15:16:59 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-07-11 15:16:59 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-07-11 15:16:59 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2018-07-11 15:16:59 ----A---- C:\windows\SYSWOW64\comcat.dll
2018-07-11 15:16:59 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2018-07-11 15:16:59 ----A---- C:\windows\system32\ieapfltr.dll
2018-07-11 15:16:59 ----A---- C:\windows\system32\icfupgd.dll
2018-07-11 15:16:59 ----A---- C:\windows\system32\FirewallAPI.dll
2018-07-11 15:16:59 ----A---- C:\windows\system32\appidcertstorecheck.exe
2018-07-11 15:16:59 ----A---- C:\windows\system32\apisetschema.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-11 15:16:58 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-11 15:16:57 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-11 15:16:57 ----A---- C:\windows\SYSWOW64\wfapigp.dll
2018-07-11 15:16:57 ----A---- C:\windows\SYSWOW64\user.exe
2018-07-11 15:16:57 ----A---- C:\windows\SYSWOW64\instnm.exe
2018-07-11 15:16:57 ----A---- C:\windows\system32\wfapigp.dll
2018-07-11 15:16:57 ----A---- C:\windows\system32\ieetwcollectorres.dll
2018-07-11 15:16:57 ----A---- C:\windows\system32\drivers\usbuhci.sys
2018-07-11 15:16:57 ----A---- C:\windows\system32\drivers\usbohci.sys
2018-07-11 15:16:57 ----A---- C:\windows\system32\adtschema.dll
2018-07-11 15:16:56 ----A---- C:\windows\SYSWOW64\oleres.dll
2018-07-11 15:16:56 ----A---- C:\windows\SYSWOW64\msobjs.dll
2018-07-11 15:16:56 ----A---- C:\windows\SYSWOW64\msaudite.dll
2018-07-11 15:16:56 ----A---- C:\windows\SYSWOW64\adtschema.dll
2018-07-11 15:16:56 ----A---- C:\windows\system32\oleres.dll
2018-07-11 15:16:56 ----A---- C:\windows\system32\msobjs.dll
2018-07-11 15:16:56 ----A---- C:\windows\system32\msaudite.dll
2018-07-11 15:16:56 ----A---- C:\windows\system32\drivers\usbd.sys
2018-07-09 21:36:13 ----A---- C:\windows\system32\drivers\mbae64.sys
2018-07-03 17:04:11 ----D---- C:\windows\SYSWOW64\GPUCache
2018-06-19 11:53:37 ----A---- C:\windows\system32\drivers\usbser.sys
2018-06-19 11:53:37 ----A---- C:\windows\system32\drivers\hw_usbdev.sys
2018-06-19 11:53:37 ----A---- C:\windows\system32\drivers\hw_quusbnet.sys
2018-06-19 11:53:37 ----A---- C:\windows\system32\drivers\hw_quusbmdm.sys
2018-06-19 11:53:37 ----A---- C:\windows\system32\drivers\hw_cdcacm.sys
2018-06-19 11:53:37 ----A---- C:\windows\system32\drivers\ew_usbccgpfilter.sys
2018-06-19 11:53:18 ----D---- C:\Program Files (x86)\HiSuite

======List of files/folders modified in the last 1 month======

2018-07-15 08:34:19 ----D---- C:\windows\Temp
2018-07-15 08:34:17 ----D---- C:\windows\Prefetch
2018-07-15 08:34:17 ----D---- C:\Program Files\trend micro
2018-07-15 07:52:23 ----D---- C:\windows\system32\drivers
2018-07-15 07:07:48 ----D---- C:\windows\system32\config
2018-07-15 07:03:56 ----D---- C:\windows\System32
2018-07-15 06:53:21 ----D---- C:\ProgramData\PDFC
2018-07-15 06:53:14 ----D---- C:\Windows
2018-07-14 17:57:18 ----D---- C:\Users\Peťo\AppData\Roaming\vlc
2018-07-11 20:30:55 ----D---- C:\windows\rescache
2018-07-11 20:07:21 ----D---- C:\windows\Microsoft.NET
2018-07-11 20:02:47 ----RSD---- C:\windows\assembly
2018-07-11 16:55:17 ----SHD---- C:\windows\Installer
2018-07-11 16:55:12 ----D---- C:\windows\system32\DriverStore
2018-07-11 16:55:12 ----D---- C:\windows\inf
2018-07-11 16:54:41 ----RD---- C:\Program Files
2018-07-11 16:54:41 ----HD---- C:\ProgramData
2018-07-11 16:51:10 ----D---- C:\windows\debug
2018-07-11 16:35:32 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-07-11 16:29:01 ----D---- C:\windows\winsxs
2018-07-11 16:25:23 ----D---- C:\windows\system32\appraiser
2018-07-11 16:25:17 ----D---- C:\windows\SYSWOW64\sk-SK
2018-07-11 16:25:17 ----D---- C:\Program Files\Internet Explorer
2018-07-11 16:25:17 ----D---- C:\Program Files (x86)\Internet Explorer
2018-07-11 16:25:16 ----D---- C:\windows\SYSWOW64\en-US
2018-07-11 16:25:16 ----D---- C:\windows\SYSWOW64\cs-CZ
2018-07-11 16:25:16 ----D---- C:\windows\SysWOW64
2018-07-11 16:25:14 ----D---- C:\windows\system32\sk-SK
2018-07-11 16:25:14 ----D---- C:\windows\system32\drivers\en-US
2018-07-11 16:25:14 ----D---- C:\windows\system32\cs-CZ
2018-07-11 16:25:13 ----D---- C:\windows\system32\en-US
2018-07-11 16:25:10 ----RSD---- C:\windows\Fonts
2018-07-11 16:25:08 ----D---- C:\windows\AppPatch
2018-07-11 16:25:05 ----D---- C:\windows\system32\Boot
2018-07-11 15:38:52 ----D---- C:\windows\system32\catroot2
2018-07-11 15:36:01 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2018-07-11 15:31:45 ----D---- C:\windows\system32\MRT
2018-07-11 15:28:48 ----AC---- C:\windows\system32\MRT.exe
2018-07-11 15:28:12 ----SHD---- C:\System Volume Information
2018-07-11 09:44:47 ----D---- C:\windows\Tasks
2018-07-11 09:44:47 ----D---- C:\windows\system32\Tasks
2018-07-10 20:31:25 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-07-10 20:31:15 ----D---- C:\windows\system32\Macromed
2018-07-10 20:31:07 ----D---- C:\windows\SYSWOW64\Macromed
2018-07-09 21:36:09 ----D---- C:\ProgramData\Malwarebytes
2018-07-08 07:03:27 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-07-07 13:43:39 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-07-03 18:32:33 ----D---- C:\Program Files\Common Files\Adobe
2018-07-03 18:26:53 ----D---- C:\Users\Peťo\AppData\Roaming\Adobe
2018-07-03 18:24:53 ----D---- C:\ProgramData\Adobe
2018-07-03 12:20:42 ----D---- C:\Program Files (x86)\Adobe
2018-07-01 16:38:41 ----D---- C:\windows\system32\NDF
2018-06-27 21:34:41 ----AD---- C:\SWSETUP
2018-06-27 17:00:34 ----D---- C:\windows\system32\wdi
2018-06-19 11:53:18 ----RD---- C:\Program Files (x86)
2018-06-16 09:10:40 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\windows\system32\DRIVERS\edevmon.sys [2018-04-12 110432]
R0 iaStorA;iaStorA; C:\windows\system32\drivers\iaStorA.sys [2013-09-21 630632]
R0 iaStorF;iaStorF; C:\windows\system32\drivers\iaStorF.sys [2013-09-21 28008]
R0 iusb3hcs;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\windows\system32\drivers\iusb3hcs.sys [2017-03-08 22800]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PinFile;PinFile; C:\windows\system32\DRIVERS\PinFile.sys [2016-08-24 56760]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 SDDisk2K;SDDisk2K; C:\windows\system32\DRIVERS\SDDisk2K.sys [2016-08-24 236472]
R0 SDDToki;SDDToki; C:\windows\system32\DRIVERS\SDDToki.sys [2016-08-24 139192]
R0 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-21 34688]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\windows\system32\drivers\vmbus.sys [2010-11-21 199552]
R1 CLVirtualDrive;CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [2011-12-27 90608]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2018-04-12 137928]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2018-04-12 196112]
R1 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2018-04-12 82816]
R1 EpfwLWF;ESET Firewall; C:\windows\system32\DRIVERS\EpfwLWF.sys [2018-04-30 61520]
R1 epfwwfp;epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [2018-04-12 108320]
R2 ekbdflt;ekbdflt; C:\windows\system32\DRIVERS\ekbdflt.sys [2018-04-12 50136]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2016-02-17 21527568]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2016-02-17 493592]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 IceKore;IceKore; C:\windows\system32\DRIVERS\IceKore.sys [2013-11-14 411608]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2018-01-30 4943744]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2013-07-31 3564376]
R3 iusb3hub;Ovládač rozbočovača Intel(R) USB 3.0; C:\windows\system32\DRIVERS\iusb3hub.sys [2017-03-08 388880]
R3 iusb3xhc;Ovládač hostiteľského radiča Intel(R) USB 3.0 eXtensible; C:\windows\system32\DRIVERS\iusb3xhc.sys [2017-03-08 799504]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [2018-07-15 253664]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2014-08-13 125952]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2013-08-15 881880]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2013-10-07 65752]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\windows\system32\DRIVERS\ew_usbccgpfilter.sys [2018-04-20 18944]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2018-04-20 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 VMBusHID;VMBusHID; C:\windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2018-06-22 818128]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [2009-11-18 98208]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2018-05-11 2321384]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-05-11 2128872]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2016-02-17 305176]
R2 CreoService;HP Trust Circles Service; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [2014-03-25 1927640]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 CtAgentService;Absolute Software Agent Service; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [2014-03-31 7168]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2013-08-12 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2013-08-12 298760]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DpHost;@C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2014-07-28 500048]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-04-19 2240264]
R2 HpDamServiceHost;HP Device Access Manager Usage Service; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [2013-11-15 18232]
R2 HPFSService;HP File Sanitizer; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2014-06-26 1842904]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2018-06-13 333688]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-22 332216]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2018-04-20 190784]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2018-01-30 362880]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-12 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-08-13 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-08-13 405976]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-05-09 6541008]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2018-02-01 1795136]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-06-19 246488]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Security\ekrn.exe [2018-04-19 2240264]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-07-10 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2018-01-30 502656]
S3 FLCDLOCK;HP Device Locking / Auditing; c:\windows\SysWOW64\flcdlock.exe [2013-11-20 567608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 hpqcaslwmiex;HP CASL Framework Service; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [2016-06-03 1031704]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2014-07-24 1093816]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2018-06-16 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-12 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-07-07 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2014-11-13 1255736]
S4 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: poprosim o kontrolu logu

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: poprosim o kontrolu logu

#3 Příspěvek od petob »

zo spomínaných postupov ma nevyžiadal adw o nič. tak len vysledok

# -------------------------------
# Malwarebytes AdwCleaner 7.2.1.1
# -------------------------------
# Build: 07-04-2018
# Database: 2018-07-04.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 07-16-2018
# Duration: 00:00:16
# OS: Windows 7 Professional
# Scanned: 41365
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1312 octets] - [21/04/2018 21:22:43]
AdwCleaner[C00].txt - [1417 octets] - [21/04/2018 21:23:50]
AdwCleaner[S01].txt - [1249 octets] - [09/05/2018 12:59:16]
AdwCleaner[S02].txt - [1249 octets] - [09/05/2018 13:47:10]
AdwCleaner[S03].txt - [1524 octets] - [09/07/2018 21:14:26]
AdwCleaner[C03].txt - [1690 octets] - [09/07/2018 21:15:14]
AdwCleaner[S04].txt - [1615 octets] - [09/07/2018 21:22:38]
AdwCleaner[S05].txt - [1249 octets] - [11/07/2018 18:52:34]
AdwCleaner[S06].txt - [1249 octets] - [11/07/2018 18:53:14]
AdwCleaner[S07].txt - [1798 octets] - [11/07/2018 18:53:53]
AdwCleaner[S08].txt - [1859 octets] - [15/07/2018 08:31:35]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S09].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: poprosim o kontrolu logu

#4 Příspěvek od Conder »

:arrow: Poprosim o obidva logy z FRST podla tohto navodu (FRST.txt a Addition.txt): https://forum.viry.cz/viewtopic.php?f=13&t=152707

:arrow: V pripade, ze sa FRSTLauncher nebude dat stiahnut alebo spustit, pouzi iba samotny FRST.

:arrow: Ak sa logy nezmestia do jedneho prispevku, zabal ich do archivu RAR alebo ZIP a posli ako prilohu.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: poprosim o kontrolu logu

#5 Příspěvek od petob »

toto mi vypisalo ked som klikol na ten odkaz aby som si stiahol FRST

https://thumbsnap.com/i/7XkIWYoS.jpg

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: poprosim o kontrolu logu

#6 Příspěvek od Conder »

:arrow: To je falosna detekcia pri pokuse o stiahnutie FRSTLauncheru. Stiahni teda iba samotny FRST: http://www.bleepingcomputer.com/downloa ... scan-tool/
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: poprosim o kontrolu logu

#7 Příspěvek od petob »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.07.2018
Ran by Peťo (administrator) on HP (19-07-2018 16:16:27)
Running from C:\Users\Peťo\Desktop
Loaded Profiles: Peťo (Available Profiles: Peťo)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(DigitalPersona, Inc.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(CryptoMill Technologies Ltd.) C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Hewlett-Packard Development Company) C:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CORESHREDDER.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [400768 2018-01-30] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7194840 2013-07-27] (Realtek Semiconductor)
HKLM\...\Run: [CryptoMill Refresh] => C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [178496 2018-04-19] (ESET)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296208 2017-03-08] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-31] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-08-07] (CyberLink Corp.)
HKLM-x32\...\Run: [HP File Sanitizer] => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe [2312408 2014-06-26] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409944 2018-06-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [1194048 2018-02-01] (PDF Complete Inc)
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2013-08-31] (AMD)
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\Run: [GoogleChromeAutoLaunch_CBF760E6948D4582CE9F91695AE24651] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1588568 2018-06-22] (Google Inc.)
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: J - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {7a4f43c5-9edf-11e7-9639-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {97cf125a-7378-11e8-a031-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {b75c2325-4105-11e7-bc7c-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {b75c234f-4105-11e7-bc7c-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2013-08-31] (AMD)
HKU\S-1-5-18\...\Run: [AdobeBridge] => [X]
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2014-11-11]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.88.1
Tcpip\..\Interfaces\{5D34EF48-5425-47B2-A080-3A7048311097}: [DhcpNameServer] 192.168.88.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMDTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMDTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMDTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMDTDFJS
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMDTDFJS
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMDTDFJS
HKU\S-1-5-21-315758732-1186768704-838511381-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=CMDTDFJS
HKU\S-1-5-21-315758732-1186768704-838511381-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMDTDFJS
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-12-06] (HP Inc.)
BHO-x32: HP File Sanitizer -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2014-06-26] (Hewlett-Packard)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-12-06] (HP Inc.)

FireFox:
========
FF DefaultProfile: 1avt9zqr.default-1530245380356
FF ProfilePath: C:\Users\Peťo\AppData\Roaming\Mozilla\Firefox\Profiles\1avt9zqr.default-1530245380356 [2018-07-19]
FF Extension: (WebCompat Reporter) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-07-07] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome
FF Extension: (HP Client Security Manager) - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome [2017-10-11] [Legacy] [not signed]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-06-22] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-08-13] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-08-13] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-08-13] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-06-22] (Adobe Systems)
FF Plugin-x32: digitalpersona.com/ChromeDPAgent -> C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\components\npChromeDPAgent.dll [2014-06-26] (DigitalPersona, Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.bing.com/?mkt=en-US&pc=__PARAM__
CHR Profile: C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default [2018-07-19]
CHR Extension: (Prezentácie) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google Search) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Tabuľky) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Tlačidlo Uložiť na Pintereste) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2018-07-03]
CHR Extension: (HP Client Security Manager) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab [2017-10-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-14]
CHR HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nfedoihopcjdfjihhhojdclnfdgomdho] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ncffjdbbodifgldkcbhmiiljfcnbgjab] - C:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome.crx [2014-06-26]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-06-22] (Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated)
R2 CreoService; C:\Program Files\Hewlett-Packard\HP Trust Circles\CreoSvc.exe [1927640 2014-03-25] (CryptoMill Technologies Ltd.)
R2 CtAgentService; C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe [7168 2014-03-31] () [File not signed]
R2 CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-08-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [298760 2013-08-12] (CyberLink)
R2 DpHost; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [500048 2014-07-28] (DigitalPersona, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2240264 2018-04-19] (ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2240264 2018-04-19] (ESET)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [567608 2013-11-20] (Hewlett-Packard Company)
R2 HpDamServiceHost; c:\Program Files (x86)\Hewlett-Packard\HP Device Access Manager\HP.ProtectTools.DeviceAccessManager.ServiceHost.exe [18232 2013-11-15] (Hewlett-Packard Development Company)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [333688 2018-06-13] (HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-04-20] () [File not signed]
R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [362880 2018-01-30] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-08-13] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1795136 2018-02-01] (PDF Complete Inc)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-19] (Realtek Semiconductor)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-12-04] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 CLVirtualDrive; C:\windows\System32\DRIVERS\CLVirtualDrive.sys [90608 2011-12-27] (CyberLink)
S3 DAMDrv; C:\windows\System32\DRIVERS\DAMDrv64.sys [65752 2013-10-07] (Hewlett-Packard Company)
R1 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [137928 2018-04-12] (ESET)
R0 edevmon; C:\windows\System32\DRIVERS\edevmon.sys [110432 2018-04-12] (ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [196112 2018-04-12] (ESET)
R2 ekbdflt; C:\windows\System32\DRIVERS\ekbdflt.sys [50136 2018-04-12] (ESET)
R1 epfw; C:\windows\System32\DRIVERS\epfw.sys [82816 2018-04-12] (ESET)
R1 EpfwLWF; C:\windows\System32\DRIVERS\EpfwLWF.sys [61520 2018-04-30] (ESET)
R1 epfwwfp; C:\windows\System32\DRIVERS\epfwwfp.sys [108320 2018-04-12] (ESET)
S3 ew_usbccgpfilter; C:\windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2018-04-20] (Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-04-20] (Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\windows\System32\drivers\iaStorF.sys [28008 2013-09-21] (Intel Corporation)
R3 IceKore; C:\windows\System32\DRIVERS\IceKore.sys [411608 2013-11-14] (CryptoMill Technologies Inc.)
R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [253664 2018-07-19] (Malwarebytes)
R3 MEIx64; C:\windows\System32\DRIVERS\TeeDriverx64.sys [125952 2014-08-13] (Intel Corporation)
R0 PinFile; C:\windows\System32\DRIVERS\PinFile.sys [56760 2016-08-24] (WinMagic Inc.)
R0 SDDisk2K; C:\windows\System32\DRIVERS\SDDisk2K.sys [236472 2016-08-24] (WinMagic Inc.)
R0 SDDToki; C:\windows\System32\DRIVERS\SDDToki.sys [139192 2016-08-24] (WinMagic Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-07-19 16:16 - 2018-07-19 16:19 - 000021751 _____ C:\Users\Peťo\Desktop\FRST.txt
2018-07-19 16:15 - 2018-07-19 16:16 - 000000000 ____D C:\FRST
2018-07-19 16:13 - 2018-07-19 16:13 - 002412544 _____ (Farbar) C:\Users\Peťo\Desktop\FRST64.exe
2018-07-18 20:15 - 2018-07-18 20:15 - 000094073 _____ C:\Users\Peťo\Desktop\Bez názvu.jpf
2018-07-16 18:26 - 2018-07-16 18:27 - 007402192 _____ (Malwarebytes) C:\Users\Peťo\Downloads\adwcleaner_7.2.1.exe
2018-07-15 07:52 - 2018-07-19 16:04 - 000253664 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2018-07-14 14:01 - 2018-07-14 14:46 - 829326844 _____ C:\Users\Peťo\Downloads\Génius PICASSO 2 (10) HD 1080i cz.ts
2018-07-11 16:55 - 2018-07-11 16:55 - 000001951 _____ C:\Users\Public\Desktop\ESET Ochrana online platieb.lnk
2018-07-11 16:54 - 2018-07-11 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2018-07-11 16:54 - 2018-07-11 16:54 - 000000000 ____D C:\ProgramData\ESET
2018-07-11 16:54 - 2018-07-11 16:54 - 000000000 ____D C:\Program Files\ESET
2018-07-11 16:52 - 2018-07-11 16:53 - 004279416 _____ (ESET) C:\Users\Peťo\Downloads\eset_smart_security_premium_live_installer.exe
2018-07-11 15:17 - 2018-06-21 02:58 - 000398376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2018-07-11 15:17 - 2018-06-21 02:00 - 000348824 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2018-07-11 15:17 - 2018-06-16 19:07 - 025743872 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2018-07-11 15:17 - 2018-06-16 18:36 - 020286464 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2018-07-11 15:17 - 2018-06-16 18:33 - 002902016 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2018-07-11 15:17 - 2018-06-16 18:32 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2018-07-11 15:17 - 2018-06-16 18:31 - 000576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2018-07-11 15:17 - 2018-06-16 18:31 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2018-07-11 15:17 - 2018-06-16 18:31 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2018-07-11 15:17 - 2018-06-16 18:30 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2018-07-11 15:17 - 2018-06-16 18:27 - 005779968 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2018-07-11 15:17 - 2018-06-16 18:24 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2018-07-11 15:17 - 2018-06-16 18:23 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2018-07-11 15:17 - 2018-06-16 18:20 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2018-07-11 15:17 - 2018-06-16 18:19 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2018-07-11 15:17 - 2018-06-16 18:19 - 000794624 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2018-07-11 15:17 - 2018-06-16 18:19 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2018-07-11 15:17 - 2018-06-16 18:19 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2018-07-11 15:17 - 2018-06-16 18:12 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2018-07-11 15:17 - 2018-06-16 18:08 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2018-07-11 15:17 - 2018-06-16 18:06 - 000498176 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2018-07-11 15:17 - 2018-06-16 18:06 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2018-07-11 15:17 - 2018-06-16 18:05 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2018-07-11 15:17 - 2018-06-16 18:05 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2018-07-11 15:17 - 2018-06-16 18:04 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2018-07-11 15:17 - 2018-06-16 18:02 - 002295296 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2018-07-11 15:17 - 2018-06-16 18:02 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2018-07-11 15:17 - 2018-06-16 18:02 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2018-07-11 15:17 - 2018-06-16 18:01 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2018-07-11 15:17 - 2018-06-16 17:59 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2018-07-11 15:17 - 2018-06-16 17:59 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2018-07-11 15:17 - 2018-06-16 17:58 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2018-07-11 15:17 - 2018-06-16 17:57 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2018-07-11 15:17 - 2018-06-16 17:57 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2018-07-11 15:17 - 2018-06-16 17:56 - 000662016 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2018-07-11 15:17 - 2018-06-16 17:56 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2018-07-11 15:17 - 2018-06-16 17:55 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2018-07-11 15:17 - 2018-06-16 17:55 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2018-07-11 15:17 - 2018-06-16 17:53 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2018-07-11 15:17 - 2018-06-16 17:47 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2018-07-11 15:17 - 2018-06-16 17:46 - 015283200 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2018-07-11 15:17 - 2018-06-16 17:44 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2018-07-11 15:17 - 2018-06-16 17:42 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2018-07-11 15:17 - 2018-06-16 17:42 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2018-07-11 15:17 - 2018-06-16 17:42 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2018-07-11 15:17 - 2018-06-16 17:42 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-07-11 15:17 - 2018-06-16 17:41 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2018-07-11 15:17 - 2018-06-16 17:40 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2018-07-11 15:17 - 2018-06-16 17:39 - 002135552 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2018-07-11 15:17 - 2018-06-16 17:39 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2018-07-11 15:17 - 2018-06-16 17:38 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2018-07-11 15:17 - 2018-06-16 17:37 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2018-07-11 15:17 - 2018-06-16 17:36 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2018-07-11 15:17 - 2018-06-16 17:34 - 004496384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2018-07-11 15:17 - 2018-06-16 17:32 - 013680128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2018-07-11 15:17 - 2018-06-16 17:30 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2018-07-11 15:17 - 2018-06-16 17:29 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2018-07-11 15:17 - 2018-06-16 17:28 - 002060288 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2018-07-11 15:17 - 2018-06-16 17:27 - 003241472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2018-07-11 15:17 - 2018-06-16 17:27 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2018-07-11 15:17 - 2018-06-16 17:16 - 001545216 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2018-07-11 15:17 - 2018-06-16 17:08 - 002767872 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2018-07-11 15:17 - 2018-06-16 17:05 - 001313792 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2018-07-11 15:17 - 2018-06-13 18:23 - 000140992 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2018-07-11 15:17 - 2018-06-13 18:20 - 014185984 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2018-07-11 15:17 - 2018-06-13 18:19 - 001867776 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2018-07-11 15:17 - 2018-06-13 18:18 - 000680960 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2018-07-11 15:17 - 2018-06-13 17:55 - 012880384 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2018-07-11 15:17 - 2018-06-13 17:54 - 001499648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2018-07-11 15:17 - 2018-06-13 17:40 - 003226112 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2018-07-11 15:17 - 2018-06-08 18:27 - 005577408 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2018-07-11 15:17 - 2018-06-08 18:27 - 000708288 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2018-07-11 15:17 - 2018-06-08 18:27 - 000262336 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2018-07-11 15:17 - 2018-06-08 18:27 - 000154816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2018-07-11 15:17 - 2018-06-08 18:27 - 000095424 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2018-07-11 15:17 - 2018-06-08 18:23 - 000631640 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2018-07-11 15:17 - 2018-06-08 18:22 - 001665344 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2018-07-11 15:17 - 2018-06-08 18:21 - 000369664 _____ (Microsoft Corporation) C:\windows\system32\zipfldr.dll
2018-07-11 15:17 - 2018-06-08 18:21 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2018-07-11 15:17 - 2018-06-08 18:21 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2018-07-11 15:17 - 2018-06-08 18:21 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2018-07-11 15:17 - 2018-06-08 18:21 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2018-07-11 15:17 - 2018-06-08 18:21 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 002066432 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 001461760 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 001211904 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 001163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000731648 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000512000 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2018-07-11 15:17 - 2018-06-08 18:20 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2018-07-11 15:17 - 2018-06-08 18:19 - 000357888 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2018-07-11 15:17 - 2018-06-08 18:19 - 000182272 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2018-07-11 15:17 - 2018-06-08 18:19 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2018-07-11 15:17 - 2018-06-08 18:19 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2018-07-11 15:17 - 2018-06-08 18:19 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2018-07-11 15:17 - 2018-06-08 18:19 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2018-07-11 15:17 - 2018-06-08 18:18 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2018-07-11 15:17 - 2018-06-08 18:18 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2018-07-11 15:17 - 2018-06-08 18:18 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2018-07-11 15:17 - 2018-06-08 18:18 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2018-07-11 15:17 - 2018-06-08 18:18 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2018-07-11 15:17 - 2018-06-08 18:02 - 004050624 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2018-07-11 15:17 - 2018-06-08 18:02 - 003962048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2018-07-11 15:17 - 2018-06-08 17:57 - 001314072 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 001417728 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000554496 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000330240 _____ (Microsoft Corporation) C:\windows\SysWOW64\zipfldr.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000275456 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2018-07-11 15:17 - 2018-06-08 17:55 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2018-07-11 15:17 - 2018-06-08 17:54 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2018-07-11 15:17 - 2018-06-08 17:54 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2018-07-11 15:17 - 2018-06-08 17:54 - 000269824 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2018-07-11 15:17 - 2018-06-08 17:54 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2018-07-11 15:17 - 2018-06-08 17:54 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2018-07-11 15:17 - 2018-06-08 17:44 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2018-07-11 15:17 - 2018-06-08 17:44 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2018-07-11 15:17 - 2018-06-08 17:44 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\dnscacheugc.exe
2018-07-11 15:17 - 2018-06-08 17:43 - 000064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2018-07-11 15:17 - 2018-06-08 17:39 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2018-07-11 15:17 - 2018-06-08 17:38 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2018-07-11 15:17 - 2018-06-08 17:38 - 000129024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2018-07-11 15:17 - 2018-06-08 17:34 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2018-07-11 15:17 - 2018-06-08 17:34 - 000159744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2018-07-11 15:17 - 2018-06-08 17:34 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2018-07-11 15:17 - 2018-06-08 17:33 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2018-07-11 15:17 - 2018-06-08 17:33 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2018-07-11 15:17 - 2018-06-08 17:28 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnscacheugc.exe
2018-07-11 15:17 - 2018-06-08 17:27 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2018-07-11 15:17 - 2018-06-08 17:21 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2018-07-11 15:17 - 2018-06-08 17:21 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2018-07-11 15:17 - 2018-06-08 17:19 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2018-07-11 15:17 - 2018-06-08 15:05 - 002860032 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2018-07-11 15:17 - 2018-06-08 15:05 - 001602048 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2018-07-11 15:17 - 2018-06-08 15:05 - 000783872 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2018-07-11 15:17 - 2018-06-08 15:05 - 000612352 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2018-07-11 15:17 - 2018-06-08 15:05 - 000470016 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2018-07-11 15:17 - 2018-06-08 15:05 - 000443392 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2018-07-11 15:17 - 2018-06-08 15:05 - 000301056 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2018-07-11 15:17 - 2018-06-08 15:05 - 000246272 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2018-07-11 15:17 - 2018-06-07 18:19 - 000828928 _____ (Microsoft Corporation) C:\windows\system32\MPSSVC.dll
2018-07-11 15:17 - 2018-06-07 17:49 - 000077312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mpsdrv.sys
2018-07-11 15:17 - 2018-05-31 18:28 - 001893568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2018-07-11 15:17 - 2018-05-31 18:28 - 000377024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2018-07-11 15:17 - 2018-05-31 18:28 - 000287936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2018-07-11 15:17 - 2018-05-02 17:32 - 000344064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2018-07-11 15:17 - 2018-05-02 17:32 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2018-07-11 15:17 - 2018-05-02 17:32 - 000099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2018-07-11 15:17 - 2018-05-02 17:32 - 000056320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2018-07-11 15:17 - 2018-04-26 15:05 - 000998912 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000918296 _____ (Microsoft Corporation) C:\windows\SysWOW64\ucrtbase.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000065880 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000063832 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000021848 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000020824 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000019288 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000018776 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000017752 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000017752 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000017240 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000017240 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000016216 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000015704 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000015704 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000015192 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000014168 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000014168 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000013656 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000013152 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012632 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000012120 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011608 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2018-07-11 15:17 - 2018-04-26 15:05 - 000011096 _____ (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2018-07-11 15:17 - 2018-04-25 18:02 - 000124416 _____ (Microsoft Corporation) C:\windows\system32\wkssvc.dll
2018-07-11 15:17 - 2018-04-25 17:18 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2018-07-11 15:16 - 2018-06-16 18:46 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2018-07-11 15:16 - 2018-06-16 18:46 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2018-07-11 15:16 - 2018-06-16 18:19 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2018-07-11 15:16 - 2018-06-16 17:04 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2018-07-11 15:16 - 2018-06-16 17:04 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2018-07-11 15:16 - 2018-06-08 18:20 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2018-07-11 15:16 - 2018-06-08 18:20 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2018-07-11 15:16 - 2018-06-08 18:20 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 18:18 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:55 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2018-07-11 15:16 - 2018-06-08 17:55 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2018-07-11 15:16 - 2018-06-08 17:55 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2018-07-11 15:16 - 2018-06-08 17:55 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:54 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:44 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2018-07-11 15:16 - 2018-06-08 17:29 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2018-07-11 15:16 - 2018-06-08 17:21 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2018-07-11 15:16 - 2018-06-08 17:21 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2018-07-11 15:16 - 2018-06-08 17:19 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:19 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:19 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-11 15:16 - 2018-06-08 17:19 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-11 15:16 - 2018-06-07 18:20 - 000022528 _____ (Microsoft Corporation) C:\windows\system32\wfapigp.dll
2018-07-11 15:16 - 2018-06-07 18:19 - 000749568 _____ (Microsoft Corporation) C:\windows\system32\FirewallAPI.dll
2018-07-11 15:16 - 2018-06-07 18:19 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\icfupgd.dll
2018-07-11 15:16 - 2018-06-07 17:57 - 000463360 _____ (Microsoft Corporation) C:\windows\SysWOW64\FirewallAPI.dll
2018-07-11 15:16 - 2018-06-07 17:34 - 000018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\wfapigp.dll
2018-07-11 15:16 - 2018-05-02 17:32 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2018-07-11 15:16 - 2018-05-02 17:32 - 000025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2018-07-11 15:16 - 2018-05-02 17:32 - 000007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2018-07-09 21:36 - 2018-07-18 20:15 - 000001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-07-09 21:36 - 2018-07-15 07:51 - 000152688 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys
2018-07-09 21:36 - 2018-07-09 21:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-07-09 21:30 - 2018-07-09 21:30 - 073185120 _____ (Malwarebytes ) C:\Users\Peťo\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.374-1.0.5819.exe
2018-07-09 21:12 - 2018-07-09 21:12 - 007402192 _____ (Malwarebytes) C:\Users\Peťo\Desktop\adwcleaner_7.2.1.exe
2018-07-09 21:07 - 2018-07-11 19:52 - 000690040 _____ C:\Users\Peťo\Desktop\Untitled-4.ai
2018-07-06 18:40 - 2018-07-06 19:28 - 867171964 _____ C:\Users\Peťo\Downloads\DOKUMENT-MEČIAR (2017) SK [720p].mp4
2018-07-03 18:32 - 2018-07-03 18:32 - 000002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2018.lnk
2018-07-03 18:26 - 2018-07-03 18:26 - 000001048 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2018.lnk
2018-07-03 17:04 - 2018-07-03 17:04 - 000000000 ____D C:\windows\SysWOW64\GPUCache
2018-07-03 12:20 - 2018-07-03 12:20 - 000001157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2018-07-03 12:20 - 2018-07-03 12:20 - 000001145 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2018-07-01 16:08 - 2018-07-01 16:08 - 000319890 _____ C:\Users\Peťo\Downloads\wnetwatcher-1-.zip
2018-07-01 15:24 - 2018-07-01 15:25 - 000015872 ___SH C:\Users\Peťo\Downloads\Thumbs.db
2018-06-24 13:47 - 2018-06-24 13:48 - 532732947 _____ C:\Users\Peťo\Downloads\drive-download-20180624T114610Z-001.zip
2018-06-21 13:05 - 2018-06-21 14:35 - 1630730240 _____ C:\Users\Peťo\Downloads\Oszi almanach (1984) hungarian DVDRip .avi
2018-06-21 12:23 - 2018-06-21 12:23 - 000023180 _____ C:\Users\Peťo\Downloads\A Londoni Ferfi (2007) DVDRip.XViD-KG.srt
2018-06-21 12:21 - 2018-06-21 12:57 - 654144626 _____ C:\Users\Peťo\Downloads\A Londoni Ferfi (2007) DVDRip.XViD-KG .mkv
2018-06-19 19:33 - 2018-06-19 21:06 - 1640060176 _____ C:\Users\Peťo\Downloads\Koně se také střílejí - They Shoot Horses, Don't They (1969) CZ titulky.avi
2018-06-19 11:54 - 2018-06-19 11:54 - 000000999 _____ C:\Users\Public\Desktop\HiSuite.lnk
2018-06-19 11:54 - 2018-06-19 11:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
2018-06-19 11:53 - 2018-06-19 11:54 - 000000000 ____D C:\Program Files (x86)\HiSuite
2018-06-19 11:53 - 2018-04-20 08:28 - 000287232 _____ (Huawei Technologies Co., Ltd.) C:\windows\system32\Drivers\hw_quusbnet.sys
2018-06-19 11:53 - 2018-04-20 08:28 - 000226560 _____ (Huawei Technologies Co., Ltd.) C:\windows\system32\Drivers\hw_quusbmdm.sys
2018-06-19 11:53 - 2018-04-20 08:28 - 000127360 _____ (Huawei Technologies Co., Ltd.) C:\windows\system32\Drivers\hw_cdcacm.sys
2018-06-19 11:53 - 2018-04-20 08:28 - 000116864 _____ (Huawei Technologies Co., Ltd.) C:\windows\system32\Drivers\hw_usbdev.sys
2018-06-19 11:53 - 2018-04-20 08:28 - 000033280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbser.sys
2018-06-19 11:53 - 2018-04-20 08:28 - 000018944 _____ (Huawei Technologies Co., Ltd.) C:\windows\system32\Drivers\ew_usbccgpfilter.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-07-19 16:11 - 2009-07-14 06:45 - 000027568 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-19 16:11 - 2009-07-14 06:45 - 000027568 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-19 16:08 - 2018-03-20 19:48 - 000000000 ___RD C:\Users\Peťo\Creative Cloud Files
2018-07-19 16:07 - 2015-06-20 17:04 - 000000000 ____D C:\Users\Peťo\AppData\Local\Adobe
2018-07-19 16:05 - 2017-03-08 18:44 - 000000000 __SHD C:\Users\Peťo\IntelGraphicsProfiles
2018-07-19 16:04 - 2014-06-17 07:53 - 000000000 ____D C:\ProgramData\PDFC
2018-07-19 16:03 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2018-07-19 05:43 - 2016-11-18 12:37 - 000000000 ____D C:\Users\Peťo\AppData\LocalLow\Mozilla
2018-07-19 05:32 - 2017-08-09 08:36 - 000000328 _____ C:\windows\Tasks\HPCeeScheduleForPeťo.job
2018-07-19 05:32 - 2015-11-08 22:24 - 000000225 _____ C:\windows\CryptoMill_CreoService.001
2018-07-18 21:53 - 2014-11-13 09:52 - 000003942 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{9F65086F-7083-4DD7-9A67-72C7B5FF57D1}
2018-07-18 16:56 - 2017-08-09 08:36 - 000003180 _____ C:\windows\System32\Tasks\HPCeeScheduleForPeťo
2018-07-18 16:44 - 2015-11-08 22:24 - 000000225 _____ C:\windows\CryptoMill_CreoService.002
2018-07-17 19:19 - 2016-01-15 13:05 - 000000000 ____D C:\Users\Peťo\AppData\Roaming\vlc
2018-07-17 16:41 - 2016-11-18 12:59 - 000000000 ____D C:\Users\Peťo\Desktop\FAKTURY
2018-07-17 16:25 - 2015-11-08 22:24 - 000000225 _____ C:\windows\CryptoMill_CreoService.003
2018-07-17 07:40 - 2015-11-08 22:24 - 000000225 _____ C:\windows\CryptoMill_CreoService.004
2018-07-17 00:02 - 2010-11-21 05:27 - 000563832 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2018-07-16 18:05 - 2014-06-17 07:52 - 000000225 _____ C:\windows\CryptoMill_CreoService.005
2018-07-15 10:18 - 2009-07-14 07:13 - 000781790 _____ C:\windows\system32\PerfStringBackup.INI
2018-07-15 10:18 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2018-07-15 08:34 - 2015-11-07 16:32 - 000000000 ____D C:\Program Files\trend micro
2018-07-11 20:30 - 2009-07-14 05:20 - 000000000 ____D C:\windows\rescache
2018-07-11 18:11 - 2017-12-06 18:44 - 000000033 _____ C:\Users\Peťo\AppData\Roaming\AdobeWLCMCache.dat
2018-07-11 16:28 - 2009-07-14 06:45 - 000349824 _____ C:\windows\system32\FNTCACHE.DAT
2018-07-11 16:25 - 2014-12-11 05:38 - 000000000 ____D C:\windows\system32\appraiser
2018-07-11 15:36 - 2013-12-03 22:26 - 000765656 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2018-07-11 15:31 - 2014-12-18 07:35 - 000000000 ____D C:\windows\system32\MRT
2018-07-11 15:28 - 2014-12-18 07:35 - 134675576 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2018-07-10 20:31 - 2015-06-20 17:05 - 000004312 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2018-07-10 20:31 - 2015-06-20 17:04 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2018-07-10 20:31 - 2015-06-20 17:04 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-07-10 20:31 - 2015-06-20 17:04 - 000000000 ____D C:\windows\SysWOW64\Macromed
2018-07-10 20:31 - 2015-06-20 17:04 - 000000000 ____D C:\windows\system32\Macromed
2018-07-09 21:36 - 2014-12-26 11:05 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-07-08 18:46 - 2017-08-03 20:51 - 000000000 ____D C:\Users\Peťo\Desktop\Nový priečinok (12)
2018-07-08 07:03 - 2014-11-11 12:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-07-07 13:43 - 2016-11-18 09:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-07-03 18:32 - 2017-07-31 09:23 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-07-03 18:27 - 2017-07-24 19:33 - 000000000 ____D C:\Users\Peťo\Documents\Adobe
2018-07-03 18:26 - 2014-11-11 11:52 - 000000000 ____D C:\Users\Peťo\AppData\Roaming\Adobe
2018-07-03 18:24 - 2015-01-04 18:44 - 000000000 ____D C:\ProgramData\Adobe
2018-07-03 17:25 - 2014-11-11 11:51 - 000000000 ____D C:\Users\Peťo
2018-07-03 12:20 - 2014-11-11 22:16 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-07-03 05:31 - 2018-01-11 15:56 - 000000000 ___RD C:\Users\Peťo\petob82@gmail.com Creative Cloud Files
2018-07-01 18:52 - 2016-06-29 20:23 - 000000000 ____D C:\Users\Peťo\Downloads\hudba
2018-07-01 16:38 - 2009-07-14 05:20 - 000000000 ____D C:\windows\system32\NDF
2018-06-29 06:09 - 2017-12-10 10:37 - 000000000 ____D C:\Users\Peťo\Desktop\Staré údaje Firefoxu
2018-06-27 21:34 - 2014-03-29 01:26 - 000000000 ____D C:\SWSETUP
2018-06-25 22:09 - 2014-11-11 11:59 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-25 22:09 - 2014-11-11 11:59 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-06-25 19:45 - 2014-11-24 20:26 - 000000000 ____D C:\Users\Peťo\AppData\Local\ElevatedDiagnostics
2018-06-24 12:21 - 2015-02-01 16:05 - 000000000 ____D C:\Users\Peťo\Downloads\fotky
2018-06-19 11:54 - 2016-07-28 22:04 - 000000000 ____D C:\Users\Peťo\AppData\Local\Hisuite

==================== Files in the root of some directories =======

2017-12-06 18:44 - 2018-07-11 18:11 - 000000033 _____ () C:\Users\Peťo\AppData\Roaming\AdobeWLCMCache.dat
2015-11-08 21:33 - 2015-11-08 21:33 - 000000017 _____ () C:\Users\Peťo\AppData\Local\resmon.resmoncfg
2015-10-16 10:04 - 2015-10-16 10:04 - 000000000 _____ () C:\Users\Peťo\AppData\Local\{77571600-889B-4461-80A8-A2E9C8F9FE93}

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-07-17 08:17

==================== End of FRST.txt ============================

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: poprosim o kontrolu logu

#8 Příspěvek od petob »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.07.2018
Ran by Peťo (19-07-2018 16:19:38)
Running from C:\Users\Peťo\Desktop
Windows 7 Professional Service Pack 1 (X64) (2014-11-11 09:51:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-315758732-1186768704-838511381-500 - Administrator - Disabled)
Guest (S-1-5-21-315758732-1186768704-838511381-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-315758732-1186768704-838511381-1003 - Limited - Enabled)
Peťo (S-1-5-21-315758732-1186768704-838511381-1002 - Administrator - Enabled) => C:\Users\Peťo

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security Premium (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Smart Security Premium (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Bridge CC 2018 (HKLM-x32\...\KBRG_8_0) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.6.0.384 - Adobe Systems Incorporated)
Adobe Flash Player 30 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 30.0.0.134 - Adobe Systems Incorporated)
Adobe Illustrator CC 2018 (HKLM-x32\...\ILST_22_1) (Version: 22.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_5) (Version: 19.1.5 - Adobe Systems Incorporated)
Adobe Photoshop CS (HKLM-x32\...\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}) (Version: CS - Adobe Systems, Inc.)
Aktualizácia Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}_PROPLUS_{9A8C39B0-D27F-4F81-BE74-2FECF164707E}) (Version: - Microsoft)
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}_PROPLUS_{CE23B3DC-18CC-46FC-A309-81D6670F8D3D}) (Version: - Microsoft)
Aktualizácia Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}_PROPLUS_{D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}) (Version: - Microsoft)
AMD Catalyst Install Manager (HKLM\...\{00DEA78C-D2CA-635C-D0FD-96B9F895116A}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM-x32\...\CCleaner) (Version: 2.36 - Piriform)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.3207 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3212 - CyberLink Corp.)
DirectX for Managed Code Update (Summer 2004) (HKLM-x32\...\{E9E34215-82EF-4909-BE2F-F581F0DC9062}) (Version: 9.02.2904 - Microsoft) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
ESET Security (HKLM\...\{BEFBE0CD-6723-4D98-8263-9A2C376BC6CD}) (Version: 11.1.54.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 8.0.1.300 - Huawei Technologies Co.,Ltd)
HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 8.3.7.1864 - Hewlett-Packard Company)
HP Device Access Manager (HKLM\...\{DBE16A07-DDFF-4453-807A-212EF93916E0}) (Version: 8.3.2.0 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{9FE8AC0F-4A69-4418-AD2F-8CB34CE3259B}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Drive Encryption (HKLM\...\HPDriveEncryption) (Version: 8.6.32.40 - HP)
HP File Sanitizer (HKLM-x32\...\{6349342F-9CEF-4A70-995A-2CF3704C2603}) (Version: 8.4.27.1 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{23544215-E6E6-448B-B6E9-6268D5B3E74D}) (Version: 3.5.0.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{7561C06A-7797-4462-A7C3-86F45AE901CF}) (Version: 8.7.4 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.6.18.11 - HP Inc.)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{37E3A1F1-0034-4851-8FAD-9452C9EB8390}) (Version: 12.9.24.3 - HP Inc.)
HP Theft Recovery (HKLM-x32\...\InstallShield_{B1E569B6-A5EB-4C97-9F93-9ED2AA99AF0E}) (Version: 8.3.0.7 - Hewlett-Packard Company)
HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
HP Trust Circles (HKLM-x32\...\HP Trust Circles) (Version: 8.3.12.18693 - Hewlett-Packard Company)
HydraVision (HKLM-x32\...\{1101B6BA-2F21-A029-5F09-DEB4B81F4425}) (Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.27.1012 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4889 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.3.60 - Intel Corporation)
Malwarebytes verzia 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 61.0.1 (x64 sk) (HKLM\...\Mozilla Firefox 61.0.1 (x64 sk)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.2 - Mozilla)
MusicBee 2.4 (HKLM-x32\...\MusicBee) (Version: 2.4 - Steven Mayall)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.2.33 - PDF Complete, Inc)
PX Profile Update (HKLM-x32\...\{756A5BB1-AF94-FD92-EBA6-26E3D9650D6A}) (Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.74.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR archivátor (HKLM-x32\...\WinRAR archiver) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-315758732-1186768704-838511381-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-315758732-1186768704-838511381-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ShellIconOverlayIdentifiers: [+1TBIcon] -> {B9C55E85-DED6-4911-82F3-83CF1CAB2898} => C:\Program Files\Hewlett-Packard\HP Trust Circles\tbicon.dll [2014-03-25] (CryptoMill Technologies Ltd.)
ShellIconOverlayIdentifiers-x32: [+1TBIcon] -> {B9C55E85-DED6-4911-82F3-83CF1CAB2898} => C:\Program Files\Hewlett-Packard\HP Trust Circles\tbicon.dll [2014-03-25] (CryptoMill Technologies Ltd.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-08-20] (Cyberlink)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-04-19] (ESET)
ContextMenuHandlers1: [ShredContextMenu] -> {85EFA470-665A-4322-AB1E-1EB9C70F61C8} => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\ShredContextMenu.dll [2014-06-26] ()
ContextMenuHandlers1: [TrustBoundaryMgrExt] -> {A93C63E9-BABA-4456-AAF7-A0930FAFA985} => C:\Program Files\Hewlett-Packard\HP Trust Circles\tbshell.dll [2014-03-25] (CryptoMill Technologies Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2008-06-20] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2008-09-16] ()
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-08-20] (Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-04-19] (ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers4: [ShredContextMenu] -> {85EFA470-665A-4322-AB1E-1EB9C70F61C8} => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\ShredContextMenu.dll [2014-06-26] ()
ContextMenuHandlers4: [TrustBoundaryMgrExt] -> {A93C63E9-BABA-4456-AAF7-A0930FAFA985} => C:\Program Files\Hewlett-Packard\HP Trust Circles\tbshell.dll [2014-03-25] (CryptoMill Technologies Ltd.)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2008-06-20] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2008-09-16] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-08-31] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\system32\igfxDTCM.dll [2018-01-30] (Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-27] ()
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-04-19] (ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [TrustBoundaryMgrExt] -> {A93C63E9-BABA-4456-AAF7-A0930FAFA985} => C:\Program Files\Hewlett-Packard\HP Trust Circles\tbshell.dll [2014-03-25] (CryptoMill Technologies Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2008-06-20] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2008-09-16] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2BA2A325-ED68-47E6-A04F-267A3661988F} - System32\Tasks\AdobeGCInvoker-1.0-HP-Peťo => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {379CC7CD-C335-4E53-8DD5-18D201DEDE38} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {3A240BBE-6DD8-41A2-82FD-9DC45B521210} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {6B264349-F992-41E8-809E-43E113080EC7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {72F24B90-E781-4803-8F7E-A97F5DF7FFF8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {7AAE3A65-888C-4162-BE69-739A6D7EDD92} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {7B89473E-5D07-4C96-80AF-7F464B9733B2} - System32\Tasks\GoogleUpdateTaskMachineUA1d040bee0d766ae => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {830FA163-E175-4DF1-AE6F-E41EB4C5257D} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-07-10] (Adobe Systems Incorporated)
Task: {852AB1A3-5393-42A4-BF12-E349A6492202} - System32\Tasks\GoogleUpdateTaskMachineCore1cffeff3732ce5a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {9825A738-E545-493F-929D-693E235B5471} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {AA7B8FF2-3E7B-424B-8EE9-B2FBA5F4E3DD} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-22] ()
Task: {B0BAC0FD-A0D1-4FC2-BE08-88E5862A50D6} - System32\Tasks\AdobeAAMUpdater-1.0-HP-Peťo => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11] (Adobe Systems Incorporated)
Task: {B874510E-A349-49E9-BF04-BE96FFE541BC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-06-27] (HP Inc.)
Task: {D29453EA-C59B-43C0-8AB9-9D28B47C9ECD} - System32\Tasks\GoogleUpdateTaskMachineCore1d040bee0413f91 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {DAECB8A0-57D6-489D-9798-5F2A5DF0853A} - System32\Tasks\GoogleUpdateTaskMachineUA1cffeff37d4abed => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {F2B4BAA5-CA68-47E8-9A1F-E8334C67C362} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {FB139476-8FC2-45F4-B6AE-CECA509A5A33} - System32\Tasks\HPCeeScheduleForPeťo => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\HPCeeScheduleForPeťo.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Public\Desktop\Box offer for HP.lnk -> C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe () -> hxxp://js.redirect.hp.com/jumpstation?bd=all&c=none&locale=en_*&pf=cmdt&s=Box_50GB&tp=dticon

==================== Loaded Modules (Whitelisted) ==============

2014-03-31 22:28 - 2014-03-31 22:28 - 000007168 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
2018-04-20 08:28 - 2018-04-20 08:28 - 000190784 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2018-07-09 21:36 - 2018-07-15 07:51 - 002433744 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-02-27 20:08 - 2018-02-27 20:08 - 000614856 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2014-11-11 22:14 - 2008-06-20 01:41 - 000062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2018-06-08 16:34 - 2018-06-08 16:34 - 035475912 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
2018-06-25 22:09 - 2018-06-22 21:15 - 002663768 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\swiftshader\libglesv2.dll
2018-06-25 22:09 - 2018-06-22 21:15 - 000128856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\swiftshader\libegl.dll
2014-06-17 07:50 - 2013-08-05 09:49 - 000627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-08-06 00:48 - 2013-08-06 00:48 - 000016856 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2018-06-07 14:35 - 2018-06-07 14:35 - 081764304 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2018-06-07 14:35 - 2018-06-07 14:35 - 002257360 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\swiftshader\libglesv2.dll
2018-06-07 14:35 - 2018-06-07 14:35 - 000110544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\swiftshader\libegl.dll
2014-08-13 11:54 - 2014-08-13 11:54 - 001241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2018-04-12 21:33 - 2018-04-12 21:33 - 000142376 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\fs-ext\build\Release\fs-ext.node
2018-04-12 21:33 - 2018-04-12 21:33 - 000271400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2018-04-12 21:33 - 2018-04-12 21:33 - 000141864 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\ref\build\Release\binding.node
2018-04-12 21:33 - 2018-04-12 21:33 - 000150568 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\ffi\build\Release\ffi_bindings.node
2018-04-12 21:33 - 2018-04-12 21:33 - 000111144 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2018-04-12 21:33 - 2018-04-12 21:33 - 000110120 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\idle-gc\build\Release\idle-gc.node
2018-06-28 10:46 - 2018-06-28 10:46 - 000125976 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\fs-ext\build\Release\fs-ext.node
2018-06-28 10:46 - 2018-06-28 10:46 - 000124952 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\ref\build\Release\binding.node
2018-06-28 10:46 - 2018-06-28 10:46 - 000133144 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\ffi\build\Release\ffi_bindings.node
2018-06-28 10:46 - 2018-06-28 10:46 - 000222232 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2018-06-28 10:46 - 2018-06-28 10:46 - 000111128 _____ () C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2018-06-28 10:46 - 2018-06-28 10:46 - 000106520 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\bufferutil\build\Release\bufferutil.node
2018-06-28 10:46 - 2018-06-28 10:46 - 000094232 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-04-21 19:47 - 000000826 _____ C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-315758732-1186768704-838511381-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Peťo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.88.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{A5411DCE-58AE-4348-B830-B661C6B7F791}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{65F6ED9E-08A9-42EA-A552-A0D82678F885}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{EFF0497C-9D1A-496D-9C6B-A8E6A9E20D3D}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{47CE2F85-94F2-4168-89BE-37567214DA69}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{6FFB97AB-20CF-4FDF-B5AB-B4A46241E538}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{EBC6FA5F-195A-46DA-AA4C-0560CFBB2B9B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{C749EB7F-AFA9-4CD6-ACF5-1469F7FBC29D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E8B8A520-6EE0-499F-B0E1-3FCF8960C5FE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2D6A505B-B04E-4790-8AE2-C45CAF50A338}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3C1C4620-FD04-4ED6-ADC0-996BEBDB4ECA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E4955658-A1AE-46F3-A8E7-EBCF46FDE133}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{74BD05DC-8E3E-4B9D-AF63-93941485DD54}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{E8E676F7-5EFA-45DD-A9A3-E82E92E71F64}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{90FE3CDD-68F9-421B-9734-7C3A7CA89215}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{0BF74D82-A463-49A1-A29C-D5C0A411D584}C:\program files (x86)\mediamonkey\mediamonkey (non-skinned).exe] => (Block) C:\program files (x86)\mediamonkey\mediamonkey (non-skinned).exe
FirewallRules: [UDP Query User{F5FB05A9-BD65-4FDD-8D8A-5DC18BEE6AD4}C:\program files (x86)\mediamonkey\mediamonkey (non-skinned).exe] => (Block) C:\program files (x86)\mediamonkey\mediamonkey (non-skinned).exe
FirewallRules: [{80762143-9604-4FC3-B9D1-CD8062EDFF99}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{65E2518C-E381-4E05-BF42-CE64783A61CD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BEB075E2-BBA8-4DA4-9175-857A2CB04412}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{C1E1A8BE-7938-4D63-B515-7A4BEC634F8F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{AFDC3A3B-FCC2-4FBD-AA8A-BB9F014FAFDD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B6869EC5-941A-4579-BDC5-1172BD9C83BA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B57ECA07-4E78-46FF-869E-C5C5C2688902}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{44AF466F-1C21-47B5-8B91-7C8CB91E6207}] => (Allow) C:\Program Files\ESET\ESET Password Manager\pwm.exe
FirewallRules: [{842D7AF5-1542-45D9-8115-7F1CD88ADAD9}] => (Allow) C:\Program Files\ESET\ESET Password Manager\pwm.exe
FirewallRules: [{68D9EE80-7286-4126-986C-4B418644C339}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

11-07-2018 15:27:52 Windows Update
17-07-2018 07:45:34 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/19/2018 06:25:09 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Error: (07/18/2018 05:39:52 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Error: (07/16/2018 06:30:58 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Error: (07/15/2018 10:57:45 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Error: (07/15/2018 10:18:42 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (07/15/2018 10:18:42 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (07/15/2018 07:11:29 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).

Error: (07/14/2018 11:37:07 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: A problem prevented Customer Experience Improvement Program data from being sent to Microsoft, (Error 80004005).


System errors:
=============
Error: (07/19/2018 02:15:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CyberLink PowerDVD 12 Media Server Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 2-krát.

Error: (07/19/2018 06:31:39 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CyberLink PowerDVD 12 Media Server Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (07/18/2018 04:46:39 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (07/18/2018 04:46:39 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (07/17/2018 05:19:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CyberLink PowerDVD 12 Media Server Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (07/17/2018 09:31:46 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CyberLink PowerDVD 12 Media Server Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 2-krát.

Error: (07/17/2018 08:50:48 AM) (Source: Disk) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (07/17/2018 08:18:12 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CyberLink PowerDVD 12 Media Server Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.


CodeIntegrity:
===================================

Date: 2018-06-16 08:53:55.035
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod1331.dll.nup.raw because the set of per-page image hashes could not be found on the system.

Date: 2018-06-16 08:53:54.740
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod1331.dll.nup.raw because the set of per-page image hashes could not be found on the system.

Date: 2018-06-16 08:53:54.486
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod1331.dll.nup.raw because the set of per-page image hashes could not be found on the system.

Date: 2018-06-16 08:53:54.131
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod1331.dll.nup.raw because the set of per-page image hashes could not be found on the system.

Date: 2018-06-16 08:53:53.784
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod1331.dll.nup.raw because the set of per-page image hashes could not be found on the system.

Date: 2018-06-16 08:53:53.462
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Security\Updfiles\base_nonnups\nod1331.dll.nup.raw because the set of per-page image hashes could not be found on the system.

Date: 2017-08-20 08:54:28.963
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Security\updfiles\base_nonnups\nod3862.dll.nup.raw because the set of per-page image hashes could not be found on the system.

Date: 2017-08-20 08:54:28.750
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\ESET\ESET Security\updfiles\base_nonnups\nod3862.dll.nup.raw because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Percentage of memory in use: 69%
Total physical RAM: 4024.17 MB
Available physical RAM: 1230.21 MB
Total Virtual: 8046.5 MB
Available Virtual: 5055.51 MB

==================== Drives ================================

Drive c: (Windows ) (Fixed) (Total:918.97 GB) (Free:763.74 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:11.44 GB) (Free:1.27 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

\\?\Volume{5ef32844-69d2-11e4-b1c6-806e6f6e6963}\ (SYSTEM ) (Fixed) (Total:1 GB) (Free:0.61 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: B3AE8120)
Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=919 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=11.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=100 MB) - (Type=0C)

==================== End of Addition.txt ============================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: poprosim o kontrolu logu

#9 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    File: C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
    File: C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
    File: c:\Program Files\Intel\iCLS Client\HeciServer.exe
    HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: J - J:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {7a4f43c5-9edf-11e7-9639-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {97cf125a-7378-11e8-a031-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {b75c2325-4105-11e7-bc7c-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
    HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {b75c234f-4105-11e7-bc7c-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
    HKU\S-1-5-18\...\Run: [AdobeBridge] => [X]
    Lsa: [Notification Packages] DPPassFilter scecli
    CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
    CHR HomePage: Default -> hxxp://www.bing.com/?mkt=en-US&pc=__PARAM__
    CHR HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nfedoihopcjdfjihhhojdclnfdgomdho] - hxxps://clients2.google.com/service/update2/crx
    2018-07-15 08:34 - 2015-11-07 16:32 - 000000000 ____D C:\Program Files\trend micro
    2015-10-16 10:04 - 2015-10-16 10:04 - 000000000 _____ () C:\Users\Peťo\AppData\Local\{77571600-889B-4461-80A8-A2E9C8F9FE93}
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
    
    Hosts:
    EmptyTemp:
    End
  • Klikni na Subor a potom na Ulozit
  • Vpravo dole vyber kodovanie Unicode
  • Subor uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: poprosim o kontrolu logu

#10 Příspěvek od petob »

Fix result of Farbar Recovery Scan Tool (x64) Version: 21.07.2018
Ran by Peťo (21-07-2018 14:20:29) Run:1
Running from C:\Users\Peťo\Desktop
Loaded Profiles: Peťo (Available Profiles: Peťo)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

File: C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
File: C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
File: c:\Program Files\Intel\iCLS Client\HeciServer.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: J - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {7a4f43c5-9edf-11e7-9639-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {97cf125a-7378-11e8-a031-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {b75c2325-4105-11e7-bc7c-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-315758732-1186768704-838511381-1002\...\MountPoints2: {b75c234f-4105-11e7-bc7c-a0d3c14032ca} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\Run: [AdobeBridge] => [X]
Lsa: [Notification Packages] DPPassFilter scecli
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HomePage: Default -> hxxp://www.bing.com/?mkt=en-US&pc=__PARAM__
CHR HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nfedoihopcjdfjihhhojdclnfdgomdho] - hxxps://clients2.google.com/service/update2/crx
2018-07-15 08:34 - 2015-11-07 16:32 - 000000000 ____D C:\Program Files\trend micro
2015-10-16 10:04 - 2015-10-16 10:04 - 000000000 _____ () C:\Users\Peťo\AppData\Local\{77571600-889B-4461-80A8-A2E9C8F9FE93}
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========================= File: C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe ========================

C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe
File not signed
MD5: F34684D02CCFAE9CC428907079EBF585
Creation and modification date: 2014-03-31 22:28 - 2014-03-31 22:28
Size: 000007168
Attributes: ----A
Company Name:
Internal Name: CtService.exe
Original Name: CtService.exe
Product: CtService
Description: CtService
File Version: 8.2.0.4
Product Version: 8.2.0.4
Copyright: Copyright © 2013
VirusTotal: https://www.virustotal.com/file/35ec66a ... 530112909/

====== End of File: ======


========================= File: C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe ========================

C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
File not signed
MD5: 9CEE2BBB060DC4B7062BE4461774A7A0
Creation and modification date: 2018-04-20 08:28 - 2018-04-20 08:28
Size: 000190784
Attributes: ----A
Company Name:
Internal Name: DCSHOST
Original Name: HuaweiHiSuiteService.EXE
Product: HuaweiHiSuiteService
Description: HuaweiHiSuiteService
File Version: 2, 0, 0, 42
Product Version: 2, 0, 0, 42
Copyright: Copyright (C) 2008
VirusTotal: https://www.virustotal.com/file/bbe3aee ... 531696879/

====== End of File: ======


========================= File: c:\Program Files\Intel\iCLS Client\HeciServer.exe ========================

c:\Program Files\Intel\iCLS Client\HeciServer.exe
File not signed
MD5: 0DB1E3F6189C628675F855C0EB510419
Creation and modification date: 2013-05-12 02:45 - 2013-05-12 02:45
Size: 000733696
Attributes: ----A
Company Name: Intel(R) Corporation
Internal Name: HeciServer
Original Name: HeciServer.exe
Product: Intel(R) Capability Licensing Service Interface
Description: Intel(R) Capability Licensing Service Interface
File Version: 1.28.487.1 sys_sysscbld
Product Version: 1,28,487,1
Copyright: (C) Copyright Intel(R) Corporation
VirusTotal: https://www.virustotal.com/file/989f539 ... 532110497/

====== End of File: ======

"HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\J" => removed successfully
"HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7a4f43c5-9edf-11e7-9639-a0d3c14032ca}" => removed successfully
HKLM\Software\Classes\CLSID\{7a4f43c5-9edf-11e7-9639-a0d3c14032ca} => not found
"HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{97cf125a-7378-11e8-a031-a0d3c14032ca}" => removed successfully
HKLM\Software\Classes\CLSID\{97cf125a-7378-11e8-a031-a0d3c14032ca} => not found
"HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b75c2325-4105-11e7-bc7c-a0d3c14032ca}" => removed successfully
HKLM\Software\Classes\CLSID\{b75c2325-4105-11e7-bc7c-a0d3c14032ca} => not found
"HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b75c234f-4105-11e7-bc7c-a0d3c14032ca}" => removed successfully
HKLM\Software\Classes\CLSID\{b75c234f-4105-11e7-bc7c-a0d3c14032ca} => not found
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge" => removed successfully
HKLM\System\CurrentControlSet\Control\Lsa\\Notification Packages => value restored successfully
"HKLM\SOFTWARE\Policies\Google" => removed successfully
"Chrome HomePage" => removed successfully
"HKU\S-1-5-21-315758732-1186768704-838511381-1002\SOFTWARE\Google\Chrome\Extensions\nfedoihopcjdfjihhhojdclnfdgomdho" => removed successfully
C:\Program Files\trend micro => moved successfully
C:\Users\Peťo\AppData\Local\{77571600-889B-4461-80A8-A2E9C8F9FE93} => moved successfully
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 41038434 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 34211871 B
Edge => 0 B
Chrome => 777065245 B
Firefox => 413197053 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 7968 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 130920 B
Peťo => 259658205 B

RecycleBin => 0 B
EmptyTemp: => 1.4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:25:15 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: poprosim o kontrolu logu

#11 Příspěvek od Conder »

:arrow: Eset by mal ukazat aj adresu, ktoru zablokoval, alebo skus pozriet v logoch a napis sem niektore z nich.

:arrow: Inak vyzera to ciste podla logov.

:arrow: Este upraceme po pouzitych nastrojoch: :arrow: Skontroluj velkost plochy (C:\Users\Peťo\Desktop). Ak je vacsia ako 300 MB, presun vsetky subory a zlozky z plochy do dokumentov a na ploche nechaj iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: poprosim o kontrolu logu

#12 Příspěvek od petob »

plochu som vycistil aj ten nastroj som stiahol a pouzil podla navodu. co sa tyka logov v esete nenasiel som tam tie detekcie.

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: poprosim o kontrolu logu

#13 Příspěvek od Conder »

:arrow: Skus v Esete vlavo Nastroje -> Viac nastrojov -> Protokoly -> Filtrovane stranky.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

petob
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 07 lis 2015 15:47

Re: poprosim o kontrolu logu

#14 Příspěvek od petob »

http://bgtrs.pro/?rid=-7EBBQCQMAAHD5DgI ... ;Blokované PUA zoznamom blokovaných adries

taketo nieco ?

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: poprosim o kontrolu logu

#15 Příspěvek od Conder »

Ano, to by malo byt ono. Je tam este nieco viac? Tie hlasky o zablokovani sa vyskytuju len pri prehliadani webstranok?
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět