Dobrý den,
potřeboval bych akutní pomoc. Symantec Endpoint občas detekuje Trojan.Gen.2 a najde velké množství souborů začínajících DWH????.exe, zároveň nejde upravit grafiku Windows 7 režim Aero... a největším problémem pro mě je, že nemohu pracovat v programu Cadkon = obdoba AUTO Cad, který mi spadává.
Zkoušel jsem to vyčisti nejrůznějšími programi - ty buď nic nenašli, nebo našli a odstranili, ale při restartu stejný problém = omezená grafika Win 7 a spadávající Cadkon!!!
Prosím o pomoc...
Logfile of random's system information tool 1.10 (written by random/random)
Run by TUZE at 2016-11-30 09:00:50
Microsoft Windows 7 Enterprise Service Pack 1
System drive C: has 131 GB (19%) free of 693 GB
Total RAM: 8091 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:00:57, on 30.11.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18525)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\SymCorpUI.exe
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ProtectionUtilSurrogate.exe
C:\Program Files\trend micro\TUZE.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://tuze.primaerp.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\bin\IPS\IPSBHO.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [ADSKAppManager] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O20 - Winlogon Notify: SEP - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\WinLogoutNotifier.dll (file missing)
O23 - Service: AbSoftMgr4 - AB Studio - C:\Program Files\Common Files\AB Studio Shared\AbSoftMgr4.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing)
O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
O23 - Service: ArcSoft Exchange Service (ADExchange) - Unknown owner - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\8.0.644.0\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: OpenVPN Service (OpenVPNService) - The OpenVPN Project - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Symantec Endpoint Protection (SepMasterService) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe
O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\Smc.exe
O23 - Service: Symantec Network Access Control (SNAC) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\snac64.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Sierra Wireless Service (SwiService) - Sierra Wireless, Inc. - C:\Program Files (x86)\Sierra Wireless Inc\QMIPackage\Utils\SWIService.exe
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WTGService - Unknown owner - C:\Program Files (x86)\OneClickInternet\WTGService.exe
--
End of file - 14989 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
"C:\Program Files\DisplayLink Core Software\8.0.644.0\DisplayLinkManager.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\DisplayLink Core Software\8.0.644.0\DisplayLinkUserAgent.exe" -dluPipeName dl.dlu.6KZEv2azuWywv3Y2NUoRtPtV5P4ZFFssdXpFHDYVep9R1rGXBgJkTcsJPeHhLACo -monitorableAppPipeName dl.monitorable.app.zbi3b6lgfH6Ff82ymyNhjKnAvfAunJxitNitw7Dcf2FS9t7KqbM0kB6LZKmm1Hb2
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {36FF2108-69A2-419D-92EF-A8CF65B744F0}
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\SysWow64\IntelCpHeciSvc.exe
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\Windows\system32\svchost.exe -k regsvc
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe" /s "Symantec Endpoint Protection" /m "C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\sms.dll" /prefetch:1
"C:\Program Files\Sony\VAIO Power Management\SPMgr.exe" /Start
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Sierra Wireless Inc\QMIPackage\Utils\SWIService.exe"
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe" /u /c /a /s "UserSession"
"C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe"
"C:\Program Files (x86)\OneClickInternet\WTGService.exe"
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
"C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe"
C:\Windows\SysWOW64\DllHost.exe /Processid:{78FD0120-D39C-45D8-A9BE-2B802B3C23E5}
C:\Windows\SysWOW64\DllHost.exe /Processid:{CB45D4CA-8A34-4EF1-9957-6134E5270E83}
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\Smc.exe" /prefetch:1
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Sony\VAIO Smart Network\VSNService.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
/Device:000031a1
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
igfxEM.exe
igfxHK.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SONYAPO
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
"C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --approot=SOFTWARE\Autodesk --appAgent=/AUTODESKDESKTOPAPP/6.0.108.150/cs-CZ/0001 --lang=cs-CZ --cache-path="C:\Users\TUZE\AppData\Local\Autodesk\Autodesk Desktop App\BrowserCache" --peerPid=5136
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=gpu-process --channel="5672.0.1502486538\1598531729" --no-sandbox --lang=cs-CZ --log-severity=disable --peerpid=5136 --disable-image-transport-surface --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,5,14,27 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4226 --lang=cs-CZ --log-severity=disable --peerpid=5136 /prefetch:822062411
"C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe" --type=renderer --no-sandbox --lang=en-US --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --lang=cs-CZ --log-severity=disable --peerpid=5136 --enable-software-compositing --channel="5672.1.752606527\706693018" /prefetch:673131151
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe" "--AUTO_START" "--start" "--address" "127.0.0.1" "--port" "49330" "--depend_on_key" "SYSTEM\CurrentControlSet\Services\ESRV_SVC_WILLAMETTE" "--depend_on_value" "run" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=w output_folder='C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll','process_input_options.txt' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll','service=yes' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll','pause=60000 working_dir=C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData override_existing_tracing=no limit_output_by_filesize_mb=10' os='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\os_counters.txt' "
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Sony\VAIO Power Management\SPMService.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Common Files\AB Studio Shared\AbSoftMgr4.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files\DisplayLink Core Software\8.0.644.0\DisplayLinkUI.exe" -monitorableAppPipeName dl.monitorable.app.fpgrgVYtFnXrJiSysiMLh2IdVDXdPyE71ENSQ1NT4YIBHcK7VxdEElKiimh1rDXB
"C:\Windows\system32\igfxTray.exe"
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
C:\Windows\system32\AUDIODG.EXE 0x8bc
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:8848 CREDAT:267521 /prefetch:2
C:\Windows\system32\PrintIsolationHost.exe -Embedding
C:\Windows\system32\Macromed\Flash\FlashUtil64_21_0_0_197_ActiveX.exe -Embedding
"C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /OCX /NoLibraryAdd /Play "https://www.email.cz/download/k/KbYH4US ... %C5%AF.mp4" /prefetch:10
"C:\Users\TUZE\Downloads\RSITx64.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:8848 CREDAT:464136 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:8848 CREDAT:595407 /prefetch:2
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\SymCorpUI.exe"
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\SmcGui.exe" -Embedding
"C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ProtectionUtilSurrogate.exe" {CCD1C6CC-DCA5-448E-8C35-3BA8C6FBF99D} -Embedding
"C:\Windows\System32\MsSpellCheckingFacility.exe" -Embedding
"C:\Users\TUZE\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-11-29 214208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-30 553024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2016-11-29 683720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-11-29 2888896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-30 214080]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-11-29 151240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\bin\IPS\IPSBHO.DLL [2012-01-03 210872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2016-11-29 442568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-29 1955520]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-04-30 1158248]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-04-30 1158248]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-05-01 2884880]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2015-04-20 7822312]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WinSat"=winsat dwm -xml results.xml []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2012-02-29 56088]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-04-30 291608]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2011-02-03 506712]
"ISBMgr.exe"=C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2011-09-20 60552]
"ADSKAppManager"=C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [2016-03-23 716224]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-20 595480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\System32\nvinitx.dll,C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SepMasterService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmcService]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-11-30 08:50:20 ----D---- C:\rsit
2016-11-30 08:50:20 ----D---- C:\Program Files\trend micro
2016-11-30 04:37:06 ----D---- C:\Windows\LastGood
2016-11-29 20:12:38 ----D---- C:\Windows\SYSWOW64\NV
2016-11-29 20:12:38 ----D---- C:\Windows\system32\NV
2016-11-29 20:11:33 ----A---- C:\Windows\NvContainerRecovery.bat
2016-11-29 20:08:29 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2016-11-29 20:08:29 ----A---- C:\Windows\system32\nvaudcap64v.dll
2016-11-29 20:08:29 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2016-11-29 15:45:28 ----A---- C:\Windows\system32\nvdispgenco6437586.dll
2016-11-29 15:45:28 ----A---- C:\Windows\system32\nvdispco6437586.dll
2016-11-29 14:01:59 ----D---- C:\Program Files\Common Files\DESIGNER
2016-11-22 13:27:54 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2016-11-18 21:12:48 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2016-11-18 21:12:48 ----A---- C:\Windows\system32\nvwgf2umx.dll
2016-11-18 21:12:47 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2016-11-18 21:12:46 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2016-11-18 21:12:46 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2016-11-18 21:12:46 ----A---- C:\Windows\system32\nvopencl.dll
2016-11-18 21:12:46 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2016-11-18 21:12:45 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2016-11-18 21:12:45 ----A---- C:\Windows\system32\nvoglv64.dll
2016-11-18 21:12:44 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2016-11-18 21:12:44 ----A---- C:\Windows\system32\nvoglshim64.dll
2016-11-18 21:12:44 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2016-11-18 21:12:43 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2016-11-18 21:12:43 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2016-11-18 21:12:43 ----A---- C:\Windows\system32\nvinitx.dll
2016-11-18 21:12:43 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2016-11-18 21:12:43 ----A---- C:\Windows\system32\NvIFR64.dll
2016-11-18 21:12:42 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2016-11-18 21:12:42 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2016-11-18 21:12:42 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2016-11-18 21:12:42 ----A---- C:\Windows\system32\NvFBC64.dll
2016-11-18 21:12:42 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2016-11-18 21:12:42 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2016-11-18 21:12:41 ----A---- C:\Windows\system32\nvd3dumx.dll
2016-11-18 21:12:39 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2016-11-18 21:12:38 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2016-11-18 21:12:38 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2016-11-18 21:12:38 ----A---- C:\Windows\system32\nvcuvid.dll
2016-11-18 21:12:38 ----A---- C:\Windows\system32\nvcuda.dll
2016-11-18 21:12:36 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2016-11-18 21:12:36 ----A---- C:\Windows\system32\nvcompiler.dll
2016-11-18 13:26:36 ----HD---- C:\$Windows.~WS
2016-11-18 13:11:16 ----D---- C:\$WINDOWS.~BT
2016-11-18 13:05:06 ----HD---- C:\$GetCurrent
2016-11-18 13:04:19 ----D---- C:\Windows10Upgrade
2016-11-16 15:20:25 ----A---- C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-11-16 15:06:33 ----A---- C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-11-16 10:33:08 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2016-11-14 16:46:54 ----A---- C:\Windows\SYSWOW64\SET2450.tmp
2016-11-14 16:46:54 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2016-11-14 16:46:54 ----A---- C:\Windows\system32\nvumdshimx.dll
2016-11-14 16:46:51 ----A---- C:\Windows\system32\nvdispgenco6437570.dll
2016-11-14 16:46:51 ----A---- C:\Windows\system32\nvdispco6437570.dll
2016-11-09 09:53:44 ----A---- C:\Windows\system32\mshtml.dll
2016-11-09 09:53:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-11-09 09:53:31 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-11-09 09:53:31 ----A---- C:\Windows\system32\ieframe.dll
2016-11-09 09:53:24 ----A---- C:\Windows\system32\jscript9.dll
2016-11-09 09:53:22 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-11-09 09:53:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-11-09 09:53:20 ----A---- C:\Windows\system32\wininet.dll
2016-11-09 09:53:18 ----A---- C:\Windows\system32\win32k.sys
2016-11-09 09:53:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-11-09 09:53:16 ----A---- C:\Windows\system32\iertutil.dll
2016-11-09 09:53:15 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-11-09 09:53:15 ----A---- C:\Windows\system32\urlmon.dll
2016-11-09 09:53:14 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-11-09 09:53:14 ----A---- C:\Windows\system32\lsasrv.dll
2016-11-09 09:53:13 ----A---- C:\Windows\system32\MSVidCtl.dll
2016-11-09 09:53:12 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2016-11-09 09:53:12 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-11-09 09:53:12 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-11-09 09:53:12 ----A---- C:\Windows\system32\UIAnimation.dll
2016-11-09 09:53:12 ----A---- C:\Windows\system32\ntdll.dll
2016-11-09 09:53:12 ----A---- C:\Windows\system32\msv1_0.dll
2016-11-09 09:53:12 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-11-09 09:53:11 ----A---- C:\Windows\SYSWOW64\MSVidCtl.dll
2016-11-09 09:53:11 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-11-09 09:53:11 ----A---- C:\Windows\system32\win32spl.dll
2016-11-09 09:53:11 ----A---- C:\Windows\system32\clfs.sys
2016-11-09 09:53:10 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-11-09 09:53:10 ----A---- C:\Windows\system32\atmfd.dll
2016-11-09 09:53:09 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2016-11-09 09:53:09 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-11-09 09:53:09 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2016-11-09 09:53:09 ----A---- C:\Windows\system32\msfeeds.dll
2016-11-09 09:53:09 ----A---- C:\Windows\system32\inetcomm.dll
2016-11-09 09:53:09 ----A---- C:\Windows\system32\ie4uinit.exe
2016-11-09 09:53:08 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2016-11-09 09:53:08 ----A---- C:\Windows\system32\IMJP10K.DLL
2016-11-09 09:53:07 ----A---- C:\Windows\system32\msctf.dll
2016-11-09 09:53:06 ----A---- C:\Windows\system32\iedkcs32.dll
2016-11-09 09:53:06 ----A---- C:\Windows\system32\drivers\bowser.sys
2016-11-09 09:53:04 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-11-09 09:53:04 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-09 09:53:03 ----A---- C:\Windows\system32\UtcResources.dll
2016-11-09 09:53:02 ----A---- C:\Windows\system32\oleaut32.dll
2016-11-09 09:53:02 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-11-09 09:53:01 ----A---- C:\Windows\SYSWOW64\input.dll
2016-11-09 09:53:01 ----A---- C:\Windows\system32\input.dll
2016-11-09 09:53:01 ----A---- C:\Windows\system32\asycfilt.dll
2016-11-09 09:53:00 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-11-09 09:53:00 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-11-09 09:53:00 ----A---- C:\Windows\SYSWOW64\msctf.dll
2016-11-09 09:53:00 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2016-11-09 09:53:00 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-11-09 09:53:00 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2016-11-09 09:53:00 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-11-09 09:52:55 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-11-09 09:52:55 ----A---- C:\Windows\system32\webcheck.dll
2016-11-09 09:52:55 ----A---- C:\Windows\system32\dxtrans.dll
2016-11-09 09:52:55 ----A---- C:\Windows\system32\dxtmsft.dll
2016-11-09 09:52:54 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-11-09 09:52:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-11-09 09:52:54 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-11-09 09:52:54 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-11-09 09:52:54 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-11-09 09:52:54 ----A---- C:\Windows\system32\msrating.dll
2016-11-09 09:52:54 ----A---- C:\Windows\system32\certcli.dll
2016-11-09 09:52:53 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-11-09 09:52:53 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-11-09 09:52:53 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-11-09 09:52:53 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-11-09 09:52:53 ----A---- C:\Windows\system32\occache.dll
2016-11-09 09:52:53 ----A---- C:\Windows\system32\mshtmled.dll
2016-11-09 09:52:53 ----A---- C:\Windows\system32\jscript9diag.dll
2016-11-09 09:52:53 ----A---- C:\Windows\system32\ieUnatt.exe
2016-11-09 09:52:53 ----A---- C:\Windows\system32\ieui.dll
2016-11-09 09:52:53 ----A---- C:\Windows\system32\iesetup.dll
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-11-09 09:52:52 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\vbscript.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\jsproxy.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\jscript.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\inseng.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\INETRES.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\iernonce.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-11-09 09:52:52 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-11-09 09:52:52 ----A---- C:\Windows\system32\ieapfltr.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2016-11-09 09:52:51 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\wow64win.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\winsrv.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\wdigest.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\TSpkg.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\sspicli.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\srcore.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\smss.exe
2016-11-09 09:52:51 ----A---- C:\Windows\system32\schannel.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\rpchttp.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\ncrypt.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\lpk.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\KernelBase.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\kernel32.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\kerberos.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\fontsub.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-11-09 09:52:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-11-09 09:52:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-11-09 09:52:51 ----A---- C:\Windows\system32\dciman32.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\cryptbase.dll
2016-11-09 09:52:51 ----A---- C:\Windows\system32\conhost.exe
2016-11-09 09:52:51 ----A---- C:\Windows\system32\advapi32.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\lpk.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-11-09 09:52:50 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\wow64cpu.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\wow64.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\sspisrv.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\srclient.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\secur32.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\rstrui.exe
2016-11-09 09:52:50 ----A---- C:\Windows\system32\lsass.exe
2016-11-09 09:52:50 ----A---- C:\Windows\system32\drivers\appid.sys
2016-11-09 09:52:50 ----A---- C:\Windows\system32\csrsrv.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\credssp.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\auditpol.exe
2016-11-09 09:52:50 ----A---- C:\Windows\system32\atmlib.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\appidsvc.dll
2016-11-09 09:52:50 ----A---- C:\Windows\system32\appidapi.dll
2016-11-09 09:52:49 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-11-09 09:52:49 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-11-09 09:52:49 ----A---- C:\Windows\system32\ntvdm64.dll
2016-11-09 09:52:49 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-09 09:52:48 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-09 09:52:48 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-11-09 09:52:48 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-11-09 09:52:48 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-11-09 09:52:48 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-09 09:52:46 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-09 09:52:46 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-11-09 09:52:46 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-11-09 09:52:46 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-11-09 09:52:46 ----A---- C:\Windows\system32\apisetschema.dll
2016-11-09 09:52:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-09 09:52:45 ----A---- C:\Windows\SYSWOW64\user.exe
2016-11-09 09:52:45 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-11-09 09:52:45 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-11-09 09:52:45 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-11-09 09:52:45 ----A---- C:\Windows\system32\tzres.dll
2016-11-09 09:52:45 ----A---- C:\Windows\system32\msaudite.dll
2016-11-09 09:52:45 ----A---- C:\Windows\system32\adtschema.dll
2016-11-09 09:52:44 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-11-09 09:52:44 ----A---- C:\Windows\system32\msobjs.dll
2016-11-09 09:52:04 ----A---- C:\Windows\system32\diagtrack.dll
2016-11-02 14:46:36 ----D---- C:\f4ffbc0fbd7191790095832a0e
2016-11-02 14:14:39 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2016-11-02 14:14:39 ----A---- C:\Windows\system32\poqexec.exe
======List of files/folders modified in the last 1 month======
2016-11-30 08:50:20 ----RD---- C:\Program Files
2016-11-30 08:20:17 ----D---- C:\Windows\temp
2016-11-30 04:56:50 ----D---- C:\Windows\system32\config
2016-11-30 04:37:16 ----D---- C:\Windows\system32\catroot
2016-11-30 04:37:15 ----D---- C:\Windows\system32\catroot2
2016-11-30 04:37:06 ----D---- C:\Windows\SysWOW64
2016-11-30 04:37:06 ----D---- C:\Windows\System32
2016-11-30 04:37:06 ----D---- C:\Windows
2016-11-30 04:16:55 ----A---- C:\Windows\SYSWOW64\log.txt
2016-11-30 04:13:29 ----D---- C:\ProgramData\NVIDIA
2016-11-30 04:09:38 ----SHD---- C:\System Volume Information
2016-11-29 20:12:39 ----D---- C:\Windows\system32\Tasks
2016-11-29 20:12:31 ----D---- C:\Windows\system32\drivers
2016-11-29 20:12:31 ----D---- C:\Windows\inf
2016-11-29 20:12:30 ----D---- C:\Windows\system32\DriverStore
2016-11-29 20:12:25 ----D---- C:\Program Files (x86)\VulkanRT
2016-11-29 20:12:23 ----D---- C:\temp
2016-11-29 20:09:11 ----D---- C:\Program Files\NVIDIA Corporation
2016-11-29 20:09:11 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2016-11-29 20:09:09 ----D---- C:\ProgramData\NVIDIA Corporation
2016-11-29 17:12:39 ----D---- C:\Windows\Microsoft.NET
2016-11-29 16:41:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-11-29 15:14:32 ----D---- C:\Windows\Prefetch
2016-11-29 14:14:42 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-29 14:04:00 ----D---- C:\Config.Msi
2016-11-29 14:03:56 ----SHD---- C:\Windows\Installer
2016-11-29 14:03:39 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-11-29 14:01:59 ----D---- C:\Program Files\Common Files\Microsoft Shared
2016-11-29 14:01:59 ----D---- C:\Program Files\Common Files
2016-11-29 13:58:22 ----D---- C:\Program Files\Microsoft Office
2016-11-24 06:44:59 ----RD---- C:\Program Files (x86)
2016-11-18 13:28:00 ----D---- C:\Windows\Panther
2016-11-18 13:11:05 ----D---- C:\Windows\Logs
2016-11-17 14:17:57 ----D---- C:\Windows\system32\wbem
2016-11-17 14:09:52 ----D---- C:\Program Files (x86)\Internet Explorer
2016-11-17 14:09:50 ----D---- C:\Program Files\Microsoft Office 15
2016-11-17 14:09:50 ----D---- C:\Program Files\Internet Explorer
2016-11-17 14:09:50 ----D---- C:\Program Files\Intel
2016-11-17 14:09:30 ----D---- C:\ProgramData\Package Cache
2016-11-17 14:09:30 ----D---- C:\ProgramData\Autodesk
2016-11-17 14:09:24 ----D---- C:\Users\TUZE\AppData\Roaming\Seznam.cz
2016-11-17 14:09:24 ----D---- C:\Users\TUZE\AppData\Roaming\Autodesk
2016-11-17 14:09:24 ----D---- C:\Users\TUZE\AppData\Roaming\ArcSoft
2016-11-17 14:09:23 ----RSD---- C:\Windows\assembly
2016-11-17 14:09:23 ----D---- C:\Windows\Help
2016-11-17 14:09:23 ----D---- C:\Windows\AppPatch
2016-11-17 14:09:21 ----SD---- C:\Windows\system32\CompatTel
2016-11-17 14:09:21 ----D---- C:\Windows\system32\de-DE
2016-11-17 14:09:21 ----D---- C:\Windows\system32\cs-CZ
2016-11-17 14:09:21 ----D---- C:\Windows\system32\CodeIntegrity
2016-11-17 14:09:21 ----D---- C:\Windows\system32\Boot
2016-11-17 14:09:21 ----D---- C:\Windows\system32\appraiser
2016-11-17 14:09:21 ----D---- C:\Windows\servicing
2016-11-17 14:09:21 ----D---- C:\Windows\rescache
2016-11-17 14:09:20 ----D---- C:\Windows\system32\migration
2016-11-17 14:09:20 ----D---- C:\Windows\system32\en-US
2016-11-17 14:09:20 ----D---- C:\Windows\system32\drivers\UMDF
2016-11-17 14:09:19 ----D---- C:\Windows\SYSWOW64\sk-SK
2016-11-17 14:09:19 ----D---- C:\Windows\SYSWOW64\migration
2016-11-17 14:09:19 ----D---- C:\Windows\SYSWOW64\en-US
2016-11-17 14:09:19 ----D---- C:\Windows\SYSWOW64\de-DE
2016-11-17 14:09:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-11-17 14:09:19 ----D---- C:\Windows\system32\sk-SK
2016-11-17 14:09:18 ----D---- C:\Windows\winsxs
2016-11-17 14:09:18 ----D---- C:\Windows\Tasks
2016-11-17 14:09:18 ----D---- C:\Windows\SYSWOW64\wbem
2016-11-17 14:08:58 ----D---- C:\Windows\registration
2016-11-17 02:30:59 ----D---- C:\Program Files (x86)\Common Files
2016-11-16 14:48:19 ----D---- C:\Program Files (x86)\Intel
2016-11-14 16:41:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2016-11-11 00:48:40 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2016-11-11 00:48:40 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2016-11-11 00:48:40 ----A---- C:\Windows\system32\nvapi64.dll
2016-11-10 23:38:42 ----A---- C:\Windows\system32\nvsvc64.dll
2016-11-10 23:38:42 ----A---- C:\Windows\system32\nvcpl.dll
2016-11-10 23:38:39 ----A---- C:\Windows\system32\nvsvcr.dll
2016-11-10 23:38:39 ----A---- C:\Windows\system32\nvshext.dll
2016-11-10 23:38:39 ----A---- C:\Windows\system32\nvmctray.dll
2016-11-10 23:38:39 ----A---- C:\Windows\system32\nv3dappshextr.dll
2016-11-10 23:38:39 ----A---- C:\Windows\system32\nv3dappshext.dll
2016-11-09 10:04:54 ----D---- C:\Windows\system32\MRT
2016-11-09 09:58:59 ----AC---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 dlkmdldr;dlkmdldr; C:\Windows\system32\drivers\dlkmdldr.sys [2016-07-30 27920]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-02-01 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-04-30 16152]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2016-11-11 38336]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SymDS;Symantec Data Store; C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SYMDS64.SYS [2012-01-03 451192]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SYMEFA64.SYS [2012-01-03 931448]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\BASHDefs\20161128.001\BHDrvx64.sys [2016-11-07 1874136]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-10-04 497368]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\IPSDefs\20161129.001\IDSvia64.sys [2016-10-25 1012952]
R1 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SRTSP64.SYS [2012-01-03 678008]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SRTSPX64.SYS [2012-01-03 39032]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\Ironx64.SYS [2012-01-03 171128]
R1 SYMNETS;Symantec Network Security WFP Driver; C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SYMNETS.SYS [2012-01-03 386168]
R1 SysPlant;SysPlant for NT; C:\Windows\system32\Drivers\SysPlant.sys [2015-08-05 118768]
R1 Teefer2;Symantec Endpoint Protection Firewall; C:\Windows\system32\DRIVERS\Teefer.sys [2012-01-03 62672]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ATSwpWDF;AuthenTec TruePrint WBF Driver; C:\Windows\system32\DRIVERS\ATSwpWDF.sys [2011-08-19 1050016]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 dlkmd;dlkmd; C:\Windows\system32\drivers\dlkmd.sys [2016-07-30 458000]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2016-10-04 156888]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-05-25 3788728]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-04-30 4744808]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2014-09-09 454416]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-04-30 356120]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-04-30 788760]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\VirusDefs\20161129.022\ENG64.SYS [2016-11-14 138456]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\VirusDefs\20161129.022\EX64.SYS [2016-11-14 2148056]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwsw01.sys [2015-05-04 11534096]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2016-11-11 46016]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-04-30 676968]
R3 semav6msr64;semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [2015-06-04 21984]
R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\DRIVERS\SFEP.sys [2012-01-16 14336]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2015-08-05 174200]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-05-01 423696]
R3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2014-11-05 27136]
S1 ArcCtrl;ArcCtrl; C:\Windows\system32\drivers\ArcCtrl.sys []
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2015-09-21 507392]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys []
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2011-12-13 747008]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DisplayLinkUsbIo_x64;DisplayLinkUsbIo_x64; C:\Windows\system32\DRIVERS\DisplayLinkUsbIo_x64_8.0.644.0.sys [2016-10-17 58640]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2011-12-14 60416]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2012-04-30 340072]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 SyDvCtrl;SyDvCtrl; \??\C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\SyDvCtrl64.sys [2012-01-03 29664]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdAppMgrSvc;Autodesk Application Manager Service; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [2016-03-23 1231376]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-13 82128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2015-01-27 1198456]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2015-03-31 1714216]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2015-01-27 1161592]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-11-15 3321024]
R2 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-04 280680]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\8.0.644.0\DisplayLinkManager.exe [2016-07-30 11843304]
R2 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2015-07-16 413848]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-02-01 13592]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-04-30 2429544]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2015-06-04 319080]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-04-30 127320]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-04-30 162648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-04-30 276824]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-11-10 458176]
R2 SepMasterService;Symantec Endpoint Protection; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe [2012-01-03 137224]
R2 SwiService;Sierra Wireless Service; C:\Program Files (x86)\Sierra Wireless Inc\QMIPackage\Utils\SWIService.exe [2012-01-13 152944]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-04-30 362840]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe [2012-04-06 65464]
R2 VAIO Power Management;VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2012-01-10 535688]
R2 VSNService;VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [2013-07-03 967256]
R3 AbSoftMgr4;AbSoftMgr4; C:\Program Files\Common Files\AB Studio Shared\AbSoftMgr4.exe [2015-06-29 2410248]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
R3 SmcService;Symantec Management Client; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\Smc.exe [2012-01-03 2594816]
S2 ADExchange;ArcSoft Exchange Service; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2015-05-05 150256]
S2 SystemUsageReportSvc_WILLAMETTE;Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [2015-07-16 105112]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe []
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2015-08-06 1357104]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2016-09-14 1235912]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-10-27 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-11-22 147400]
S3 OpenVPNService;OpenVPN Service; C:\Program Files\OpenVPN\bin\openvpnserv.exe [2015-08-04 38200]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-11-13 259784]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-09-26 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SNAC;Symantec Network Access Control; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\snac64.exe [2012-01-03 324016]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 USER_ESRV_SVC_WILLAMETTE;User Energy Server Service WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2015-07-16 413848]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Trojan.Gen.2, soubory dwhXXXX.exe, nejde Aero Win 7 a ACAD
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní: http://forum.viry.cz/viewtopic.php?f=12&t=123975 . Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní: http://forum.viry.cz/viewtopic.php?f=12&t=123975 . Děkujeme za pochopení.
-
Fanda TUZE
- Návštěvník
- Příspěvky: 1
- Registrován: 30 lis 2016 08:46
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Trojan.Gen.2, soubory dwhXXXX.exe, nejde Aero Win 7 a AC
Zdravím!
Jak je na tom váš oper. systém s legalitou?
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?