Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

prosím o preventivní kontrolu logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
76033347
Návštěvník
Návštěvník
Příspěvky: 99
Registrován: 19 říj 2006 17:42

prosím o preventivní kontrolu logu

#1 Příspěvek od 76033347 »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepa at 2018-07-17 13:27:20
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 308 GB (68%) free of 456 GB
Total RAM: 3948 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:27:24, on 17.7.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19081)
Boot mode: Normal

Running processes:
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\trend micro\Pepa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-77155854-2383314568-665062872-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-77155854-2383314568-665062872-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {537675de-6231-4c94-a204-c14207cd8f6f} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.connectify.me
O15 - ESC Trusted Zone: http://*.fastspring.com
O15 - ESC Trusted Zone: http://*.connectify.me (HKLM)
O15 - ESC Trusted Zone: http://*.fastspring.com (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7D639893-A0FD-4223-A72F-66BC9176DFF3}: NameServer = 213.192.12.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_core.dll,-101 (chromoting) - Google Inc. - C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_host.exe
O23 - Service: Connectify - Connectify - C:\Program Files (x86)\Connectify\ConnectifyService.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11033 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
"C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe"
"C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Connectify\ConnectifyService.exe"
"ConnectifyD.exe"
\??\C:\Windows\system32\conhost.exe "1987630388-598999083-935118899120370469256083689744217252120736786892062731469
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Windows\System32\TiltWheelMouse.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
taskeng.exe {DD77DFC8-92D8-4A35-B066-EE149BB5D082}
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Pepa\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Pepa\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Pepa\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=67.0.3396.99 --initial-client-data=0xc0,0xc4,0xc8,0xbc,0xcc,0x7fef1fc3228,0x7fef1fc3238,0x7fef1fc3248
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=4144 --on-initialized-event-handle=352 --parent-handle=356 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1740,10164097764215296425,12459658550038227471,131072 --service-pipe-token=F0CCD8B60DD8A9B292AB265190908271 --lang=cs --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=F0CCD8B60DD8A9B292AB265190908271 --renderer-client-id=4 --mojo-platform-channel-handle=1760 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1740,10164097764215296425,12459658550038227471,131072 --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=079FED80491BA0DCA31A922AC8414627 --mojo-platform-channel-handle=1944 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1740,10164097764215296425,12459658550038227471,131072 --service-pipe-token=A0F04E77D6D0DDD79D5E76A3884C9517 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=A0F04E77D6D0DDD79D5E76A3884C9517 --renderer-client-id=7 --mojo-platform-channel-handle=2576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1740,10164097764215296425,12459658550038227471,131072 --service-pipe-token=A9A1F710F3D1E8AC2C1C952D1896D3B8 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=A9A1F710F3D1E8AC2C1C952D1896D3B8 --renderer-client-id=13 --mojo-platform-channel-handle=5212 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1740,10164097764215296425,12459658550038227471,131072 --service-pipe-token=5FE7576C84C939C0D4195228020B33C3 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=5FE7576C84C939C0D4195228020B33C3 --renderer-client-id=15 --mojo-platform-channel-handle=4540 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1740,10164097764215296425,12459658550038227471,131072 --service-pipe-token=5570795349A22A710728FE110F66A8F5 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=5570795349A22A710728FE110F66A8F5 --renderer-client-id=17 --mojo-platform-channel-handle=2464 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Pepa\Downloads\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-16 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-16 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-16 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-16 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-06-21 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-06-21 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-06-21 416024]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-07-29 2280232]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-10 11785832]
"Power Management"=C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2011-08-02 1831016]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2018-04-12 18334528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Connectify Hotspot]
C:\Program Files (x86)\Connectify\Connectify.exe [2016-02-16 4140088]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-07-01 1103440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-06-10 389632]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-07-17 12:52:26 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2018-07-17 12:52:25 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2018-07-17 12:52:23 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2018-07-17 12:52:22 ----A---- C:\Windows\system32\rdpudd.dll
2018-07-17 12:52:22 ----A---- C:\Windows\system32\rdpendp_winip.dll
2018-07-17 12:52:22 ----A---- C:\Windows\system32\rdpcorets.dll
2018-07-17 11:31:13 ----SHD---- C:\Config.Msi
2018-07-11 12:20:03 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2018-07-11 12:14:25 ----A---- C:\Windows\system32\generaltel.dll
2018-07-11 12:14:25 ----A---- C:\Windows\system32\appraiser.dll
2018-07-11 12:14:25 ----A---- C:\Windows\system32\aitstatic.exe
2018-07-11 12:14:25 ----A---- C:\Windows\system32\aeinv.dll
2018-07-11 12:14:24 ----A---- C:\Windows\system32\invagent.dll
2018-07-11 12:14:24 ----A---- C:\Windows\system32\devinv.dll
2018-07-11 12:14:24 ----A---- C:\Windows\system32\centel.dll
2018-07-11 12:14:24 ----A---- C:\Windows\system32\aepic.dll
2018-07-11 12:14:24 ----A---- C:\Windows\system32\acmigration.dll
2018-07-11 12:14:23 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-07-11 12:14:05 ----A---- C:\Windows\system32\mshtml.dll
2018-07-11 12:14:03 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-07-11 12:14:00 ----A---- C:\Windows\system32\ieframe.dll
2018-07-11 12:13:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-07-11 12:13:58 ----A---- C:\Windows\system32\jscript9.dll
2018-07-11 12:13:57 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-07-11 12:13:57 ----A---- C:\Windows\system32\shell32.dll
2018-07-11 12:13:56 ----A---- C:\Windows\SYSWOW64\shell32.dll
2018-07-11 12:13:55 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-07-11 12:13:54 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-07-11 12:13:54 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2018-07-11 12:13:54 ----A---- C:\Windows\system32\win32k.sys
2018-07-11 12:13:54 ----A---- C:\Windows\system32\urlmon.dll
2018-07-11 12:13:54 ----A---- C:\Windows\system32\ucrtbase.dll
2018-07-11 12:13:54 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-07-11 12:13:53 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-07-11 12:13:53 ----A---- C:\Windows\system32\vbscript.dll
2018-07-11 12:13:52 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-07-11 12:13:52 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2018-07-11 12:13:52 ----A---- C:\Windows\system32\wkssvc.dll
2018-07-11 12:13:52 ----A---- C:\Windows\system32\iertutil.dll
2018-07-11 12:13:52 ----A---- C:\Windows\system32\drivers\usbport.sys
2018-07-11 12:13:52 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-07-11 12:13:51 ----A---- C:\Windows\SYSWOW64\zipfldr.dll
2018-07-11 12:13:51 ----A---- C:\Windows\system32\zipfldr.dll
2018-07-11 12:13:51 ----A---- C:\Windows\system32\dnsapi.dll
2018-07-11 12:13:50 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-07-11 12:13:50 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-07-11 12:13:50 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-07-11 12:13:50 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2018-07-11 12:13:50 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2018-07-11 12:13:50 ----A---- C:\Windows\system32\ntdll.dll
2018-07-11 12:13:50 ----A---- C:\Windows\system32\iedkcs32.dll
2018-07-11 12:13:50 ----A---- C:\Windows\system32\dnsrslvr.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-07-11 12:13:49 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-07-11 12:13:48 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-07-11 12:13:48 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-07-11 12:13:48 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-07-11 12:13:47 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-11 12:13:47 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-07-11 12:13:47 ----A---- C:\Windows\system32\hal.dll
2018-07-11 12:13:47 ----A---- C:\Windows\system32\drivers\netio.sys
2018-07-11 12:13:47 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-07-11 12:13:47 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-07-11 12:13:47 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-11 12:13:47 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-07-11 12:13:46 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-07-11 12:13:46 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-07-11 12:13:46 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2018-07-11 12:13:46 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-07-11 12:13:46 ----A---- C:\Windows\system32\wininet.dll
2018-07-11 12:13:46 ----A---- C:\Windows\system32\dxtmsft.dll
2018-07-11 12:13:46 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-07-11 12:13:46 ----A---- C:\Windows\system32\dnscacheugc.exe
2018-07-11 12:13:46 ----A---- C:\Windows\system32\certcli.dll
2018-07-11 12:13:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-07-11 12:13:45 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-07-11 12:13:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-07-11 12:13:45 ----A---- C:\Windows\system32\webcheck.dll
2018-07-11 12:13:45 ----A---- C:\Windows\system32\ole32.dll
2018-07-11 12:13:45 ----A---- C:\Windows\system32\msrating.dll
2018-07-11 12:13:45 ----A---- C:\Windows\system32\inseng.dll
2018-07-11 12:13:45 ----A---- C:\Windows\system32\drivers\usbhub.sys
2018-07-11 12:13:44 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-07-11 12:13:44 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-07-11 12:13:44 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-07-11 12:13:44 ----A---- C:\Windows\system32\msfeeds.dll
2018-07-11 12:13:44 ----A---- C:\Windows\system32\dxtrans.dll
2018-07-11 12:13:44 ----A---- C:\Windows\system32\conhost.exe
2018-07-11 12:13:43 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-07-11 12:13:43 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-07-11 12:13:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-07-11 12:13:43 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-07-11 12:13:43 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\winsrv.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\wdigest.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\schannel.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\rstrui.exe
2018-07-11 12:13:43 ----A---- C:\Windows\system32\rpcrt4.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\mshtmled.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\lsasrv.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\kernel32.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\kerberos.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\jscript9diag.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\ieui.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\iesetup.dll
2018-07-11 12:13:43 ----A---- C:\Windows\system32\ie4uinit.exe
2018-07-11 12:13:43 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2018-07-11 12:13:43 ----A---- C:\Windows\system32\advapi32.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-07-11 12:13:42 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\TSpkg.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\srcore.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\smss.exe
2018-07-11 12:13:42 ----A---- C:\Windows\system32\rpchttp.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\rpcss.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\occache.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\ncrypt.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\msv1_0.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\KernelBase.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\ieUnatt.exe
2018-07-11 12:13:42 ----A---- C:\Windows\system32\iernonce.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-07-11 12:13:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-07-11 12:13:42 ----A---- C:\Windows\system32\csrsrv.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\auditpol.exe
2018-07-11 12:13:42 ----A---- C:\Windows\system32\appidsvc.dll
2018-07-11 12:13:42 ----A---- C:\Windows\system32\appidapi.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-07-11 12:13:41 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\wow64win.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\wow64cpu.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\wow64.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\sspisrv.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\sspicli.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\srclient.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\secur32.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\ntvdm64.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\MPSSVC.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\lsass.exe
2018-07-11 12:13:41 ----A---- C:\Windows\system32\jsproxy.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\jscript.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-07-11 12:13:41 ----A---- C:\Windows\system32\drivers\usbehci.sys
2018-07-11 12:13:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-07-11 12:13:41 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-07-11 12:13:41 ----A---- C:\Windows\system32\drivers\appid.sys
2018-07-11 12:13:41 ----A---- C:\Windows\system32\cryptbase.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\credssp.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\comcat.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\bcrypt.dll
2018-07-11 12:13:41 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-11 12:13:40 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-11 12:13:40 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-07-11 12:13:40 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2018-07-11 12:13:40 ----A---- C:\Windows\SYSWOW64\user.exe
2018-07-11 12:13:40 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-07-11 12:13:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-07-11 12:13:40 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2018-07-11 12:13:40 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-07-11 12:13:40 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-07-11 12:13:40 ----A---- C:\Windows\system32\wfapigp.dll
2018-07-11 12:13:40 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-07-11 12:13:40 ----A---- C:\Windows\system32\ieapfltr.dll
2018-07-11 12:13:40 ----A---- C:\Windows\system32\icfupgd.dll
2018-07-11 12:13:40 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-07-11 12:13:40 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2018-07-11 12:13:40 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-07-11 12:13:40 ----A---- C:\Windows\system32\apisetschema.dll
2018-07-11 12:13:39 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-07-11 12:13:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-07-11 12:13:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-07-11 12:13:39 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-07-11 12:13:39 ----A---- C:\Windows\system32\oleres.dll
2018-07-11 12:13:39 ----A---- C:\Windows\system32\msobjs.dll
2018-07-11 12:13:39 ----A---- C:\Windows\system32\msaudite.dll
2018-07-11 12:13:39 ----A---- C:\Windows\system32\drivers\usbohci.sys
2018-07-11 12:13:39 ----A---- C:\Windows\system32\drivers\usbd.sys
2018-07-11 12:13:39 ----A---- C:\Windows\system32\adtschema.dll

======List of files/folders modified in the last 1 month======

2018-07-17 13:27:24 ----D---- C:\Windows\Prefetch
2018-07-17 13:27:22 ----D---- C:\Program Files\trend micro
2018-07-17 13:27:21 ----D---- C:\Windows\Temp
2018-07-17 13:23:47 ----A---- C:\Windows\SYSWOW64\log.txt
2018-07-17 13:21:36 ----D---- C:\Windows\winsxs
2018-07-17 13:21:28 ----D---- C:\ProgramData\NVIDIA
2018-07-17 13:21:16 ----D---- C:\Windows\system32\config
2018-07-17 13:20:18 ----D---- C:\Windows\SYSWOW64\en-US
2018-07-17 13:20:18 ----D---- C:\Windows\SysWOW64
2018-07-17 13:20:18 ----D---- C:\Windows\system32\en-US
2018-07-17 13:20:18 ----D---- C:\Windows\system32\drivers
2018-07-17 13:20:18 ----D---- C:\Windows\system32\cs-CZ
2018-07-17 13:20:18 ----D---- C:\Windows\System32
2018-07-17 13:20:18 ----D---- C:\Windows\PolicyDefinitions
2018-07-17 13:20:17 ----D---- C:\Windows\system32\DriverStore
2018-07-17 13:20:16 ----D---- C:\Windows\inf
2018-07-17 12:50:18 ----SHD---- C:\System Volume Information
2018-07-17 12:29:24 ----D---- C:\Windows\rescache
2018-07-17 11:51:05 ----D---- C:\Windows\Microsoft.NET
2018-07-17 11:38:31 ----SHD---- C:\Windows\Installer
2018-07-17 11:34:12 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-07-17 11:33:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-07-17 11:21:59 ----D---- C:\Windows
2018-07-17 11:21:48 ----D---- C:\ProgramData\AVAST Software
2018-07-17 11:21:02 ----D---- C:\Program Files
2018-07-17 11:17:15 ----D---- C:\Windows\debug
2018-07-17 10:51:55 ----RSD---- C:\Windows\assembly
2018-07-17 09:52:22 ----RD---- C:\Program Files (x86)
2018-07-17 09:52:21 ----D---- C:\Windows\system32\Tasks
2018-07-12 17:10:08 ----D---- C:\Windows\system32\appraiser
2018-07-12 17:09:51 ----D---- C:\Program Files\Internet Explorer
2018-07-12 17:09:48 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-07-12 17:09:48 ----D---- C:\Program Files (x86)\Internet Explorer
2018-07-12 17:09:37 ----D---- C:\Windows\system32\drivers\cs-CZ
2018-07-12 17:09:24 ----RSD---- C:\Windows\Fonts
2018-07-12 17:09:23 ----D---- C:\Windows\AppPatch
2018-07-12 17:09:20 ----D---- C:\Windows\system32\Boot
2018-07-12 16:53:12 ----D---- C:\Windows\system32\catroot2
2018-07-12 16:41:32 ----D---- C:\Windows\system32\MRT
2018-07-12 16:31:41 ----AC---- C:\Windows\system32\MRT.exe
2018-07-11 12:20:10 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-07-11 12:20:07 ----D---- C:\Windows\system32\Macromed
2018-07-11 12:20:05 ----D---- C:\Windows\SYSWOW64\Macromed
2018-06-19 07:14:07 ----D---- C:\Program Files (x86)\Google

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-04-26 557848]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2017-01-25 47032]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 cfywlan1;Connectify WLAN LightWeight Filter; C:\Windows\system32\DRIVERS\cfywlan1.sys [2016-05-06 36736]
R1 cnnctfy3;Connectify LightWeight Filter; C:\Windows\system32\DRIVERS\cnnctfy3.sys [2016-05-06 43872]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-09 2377216]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-21 67624]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-21 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-05-16 51240]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-05-06 86056]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-06-10 12230912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-15 2814952]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-05-10 425000]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2018-07-17 129752]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-07-29 1383472]
R3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 6144]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 FreshIO;FreshIO; \??\C:\Program Files (x86)\FreshDevices\FreshDiagnose\FreshIO.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2014-12-05 14448]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2014-12-05 27760]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-10 54784]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 vpnva;Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64; C:\Windows\system32\DRIVERS\vpnva64-6.sys [2014-10-16 52592]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2015-04-30 23200]
S3 WinUsb;Sony sa0104 ADB Interface; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9; C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-03-21 83984]
R2 Connectify;Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [2016-02-16 256568]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-07-01 353360]
R2 ePowerSvc;ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-08-02 872552]
R2 GREGService;GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2011-05-30 36456]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2011-04-22 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-22 325656]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-03-30 598312]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-12-29 458176]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-03-31 2009704]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-22 2656280]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2018-03-26 128584]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-29 154440]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-07-11 335872]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-29 154440]
S3 chromoting;@C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_core.dll,-101; C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_host.exe [2018-05-31 72536]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-06-16 116224]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-26 1255736]
S3 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 2292096]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-03-26 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 PuranDefrag;PuranDefrag; C:\Windows\system32\PuranDefragS.exe [2013-08-15 292736]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: prosím o preventivní kontrolu logu

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

76033347
Návštěvník
Návštěvník
Příspěvky: 99
Registrován: 19 říj 2006 17:42

Re: prosím o preventivní kontrolu logu

#3 Příspěvek od 76033347 »

# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build: 07-17-2018
# Database: 2018-07-16.3
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 07-18-2018
# Duration: 00:01:43
# OS: Windows 7 Home Premium
# Scanned: 41772
# Detected: 5


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Conduit HKU\S-1-5-21-77155854-2383314568-665062872-1000\Software\AppDataLow\Software\Conduit
PUP.Optional.Conduit HKCU\Software\Conduit
PUP.Optional.Legacy HKU\S-1-5-21-77155854-2383314568-665062872-1000\Software\AppDataLow\Software\SIMPLYTECH
PUP.Optional.Legacy HKU\S-1-5-21-77155854-2383314568-665062872-1000\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
PUP.Optional.WebBar HKU\S-1-5-21-77155854-2383314568-665062872-1000\Software\AppDataLow\Toolbar

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.









děkuji za pomoc a posílám report z aplikace
***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [3541 octets] - [08/06/2018 12:32:02]
AdwCleaner[C00].txt - [3309 octets] - [08/06/2018 12:32:28]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: prosím o preventivní kontrolu logu

#4 Příspěvek od Conder »

:arrow: Poprosim o obidva logy z FRST podla tohto navodu (FRST.txt a Addition.txt): https://forum.viry.cz/viewtopic.php?f=13&t=152707

:arrow: V pripade, ze sa FRSTLauncher nebude dat stiahnut alebo spustit, pouzi iba samotny FRST.

:arrow: Ak sa logy nezmestia do jedneho prispevku, zabal ich do archivu RAR alebo ZIP a posli ako prilohu.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět