Logfile of random's system information tool 1.10 (written by random/random)
Run by pc at 2016-01-01 18:32:50
Microsoft Windows 10 Home
System drive C: has 76 GB (26%) free of 292 GB
Total RAM: 3067 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:33:59, on 1.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\trend micro\pc.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11344 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Alwil Software\Avast5\afwServ.exe"
"C:\Program Files\LSI SoftModem\agr64svc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
taskeng.exe {B4A6626F-2478-4C3D-8A21-B60B3DA385F8}
sihost.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\mqsvc.exe
"C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe"
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1426072499-1494131920-3719141132-10002_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1426072499-1494131920-3719141132-10002 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 600 604 612 8192 608
"C:\Users\pc\Downloads\RSITx64.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\System32\wsqmcons.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{7006698D-2974-4091-A424-85DD0B909E23}
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=17.0.8.22]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=17.0.8]
"Description"=RealPlayer Video Downloader (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for HTML5 (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for PepperFlash (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=17.0.8.22]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npMeetingJoinPluginOC.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
nprpplugin.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\extensions\
staged
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-03-15 589896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2015-11-30 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2009-10-28 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2009-10-28 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 2339032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18 153768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2015-11-30 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 1731800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2009-10-28 346736]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\pc\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-06 1268816]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2015-12-20 7021880]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-01 18:00:06 ----D---- C:\Program Files\CCleaner
2015-12-30 14:09:08 ----D---- C:\ProgramData\Pinnacle VideoSpin
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Pinnacle
2015-12-30 14:08:09 ----D---- C:\ProgramData\Pinnacle
2015-12-30 11:37:46 ----D---- C:\Users\pc\AppData\Roaming\Leawo
2015-12-30 11:37:00 ----A---- C:\WINDOWS\system32\xvidcore.dll
2015-12-30 11:36:55 ----D---- C:\Program Files\Leawo
2015-12-27 20:25:58 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-27 09:10:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-27 09:10:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-27 09:10:16 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-27 09:10:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-27 09:10:10 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-27 09:10:09 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-27 09:10:07 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-27 09:10:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-27 09:09:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-27 09:09:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-27 09:09:53 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-27 09:09:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-27 09:09:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-27 09:09:45 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-27 09:09:44 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-27 09:09:43 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-27 09:09:38 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-27 09:09:35 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-27 09:09:34 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-27 09:09:28 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-27 09:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-27 09:09:26 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-27 09:09:24 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\services.exe
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-27 09:09:05 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-27 09:08:55 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-27 09:08:50 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-27 09:08:39 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-27 09:08:24 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-27 09:08:18 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-27 09:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-27 09:08:06 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-27 09:08:05 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-27 09:08:02 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-27 09:08:02 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-27 09:07:58 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-27 09:07:57 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-27 09:07:55 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-27 09:07:37 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-27 09:07:34 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-27 09:07:32 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-27 09:07:30 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-26 13:07:33 ----SHDC---- C:\Recovery
2015-12-26 12:50:29 ----ASH---- C:\hiberfil.sys
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-12-26 12:35:11 ----SD---- C:\Users\pc\AppData\Roaming\Microsoft
2015-12-26 12:34:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-26 12:33:53 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-12-26 12:30:57 ----D---- C:\Program Files\LSI SoftModem
2015-12-26 12:30:32 ----D---- C:\Program Files\Realtek
2015-12-26 12:30:31 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-12-26 12:30:23 ----D---- C:\Program Files\Synaptics
2015-12-26 12:29:34 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-26 12:27:54 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-26 12:25:46 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-26 12:21:13 ----D---- C:\WINDOWS\Prefetch
2015-12-26 12:21:12 ----ASH---- C:\swapfile.sys
2015-12-26 12:21:11 ----ASH---- C:\pagefile.sys
2015-12-26 12:20:18 ----DC---- C:\WINDOWS\Panther
2015-12-26 12:12:38 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\msmq
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-12-26 12:07:43 ----D---- C:\Program Files\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files\MSBuild
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\MSBuild
2015-12-26 12:07:43 ----D---- C:\inetpub
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-26 12:06:19 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-20 21:18:06 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-12-20 21:17:34 ----A---- C:\WINDOWS\avastSS.scr
2015-12-20 21:17:06 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2015-12-20 10:45:54 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt(151).sys
======List of files/folders modified in the last 1 month======
2016-01-01 18:33:57 ----D---- C:\Windows
2016-01-01 18:33:55 ----D---- C:\Program Files\trend micro
2016-01-01 18:33:53 ----D---- C:\WINDOWS\Temp
2016-01-01 18:26:51 ----D---- C:\WINDOWS\debug
2016-01-01 18:25:38 ----D---- C:\WINDOWS\system32\sru
2016-01-01 18:24:50 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-01 18:21:21 ----D---- C:\Users\pc\AppData\Roaming\uTorrent
2016-01-01 18:11:26 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2016-01-01 18:11:26 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-01 18:11:21 ----D---- C:\WINDOWS\INF
2016-01-01 18:00:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-01 18:00:06 ----RD---- C:\Program Files
2016-01-01 17:58:35 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 17:56:39 ----D---- C:\Users\pc\AppData\Roaming\vlc
2016-01-01 14:28:08 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 18:55:15 ----D---- C:\WINDOWS\rescache
2015-12-31 18:50:37 ----D---- C:\WINDOWS\Logs
2015-12-31 17:33:50 ----D---- C:\WINDOWS\system32\config
2015-12-31 15:05:35 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-31 15:05:23 ----D---- C:\WINDOWS\WinSxS
2015-12-31 14:54:54 ----HD---- C:\Program Files\WindowsApps
2015-12-31 03:32:09 ----RD---- C:\WINDOWS\assembly
2015-12-30 14:10:36 ----SHD---- C:\WINDOWS\Installer
2015-12-30 14:10:34 ----D---- C:\Config.Msi
2015-12-30 14:09:29 ----RSD---- C:\WINDOWS\Fonts
2015-12-30 14:09:10 ----D---- C:\WINDOWS\SysWOW64
2015-12-30 14:09:08 ----RD---- C:\Program Files (x86)
2015-12-30 14:09:08 ----HD---- C:\ProgramData
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Common Files
2015-12-30 13:25:57 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 13:24:58 ----SHD---- C:\System Volume Information
2015-12-30 11:37:00 ----D---- C:\WINDOWS\System32
2015-12-30 11:23:37 ----D---- C:\WINDOWS\system32\WDI
2015-12-29 21:59:08 ----D---- C:\WINDOWS\system32\drivers
2015-12-29 21:48:44 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-28 17:46:21 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\oobe
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\migration
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\Dism
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\appraiser
2015-12-28 17:45:40 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-28 17:45:40 ----D---- C:\WINDOWS\Provisioning
2015-12-28 17:45:35 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-28 17:45:34 ----D---- C:\WINDOWS\bcastdvr
2015-12-28 17:45:34 ----D---- C:\WINDOWS\AppPatch
2015-12-28 17:45:33 ----D---- C:\Program Files\Internet Explorer
2015-12-28 17:45:33 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-28 17:42:29 ----D---- C:\WINDOWS\system32\catroot2
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-27 04:55:43 ----D---- C:\WINDOWS\appcompat
2015-12-26 13:40:45 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-26 13:22:12 ----RD---- C:\WINDOWS\PrintDialog
2015-12-26 13:22:10 ----RD---- C:\WINDOWS\MiracastView
2015-12-26 13:21:34 ----SD---- C:\ProgramData\Microsoft
2015-12-26 13:11:09 ----D---- C:\WINDOWS\system32\restore
2015-12-26 13:07:33 ----D---- C:\Program Files\Windows NT
2015-12-26 13:04:02 ----D---- C:\WINDOWS\Registration
2015-12-26 13:03:45 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-26 13:01:17 ----D---- C:\WINDOWS\Tasks
2015-12-26 13:00:42 ----RSD---- C:\WINDOWS\Media
2015-12-26 13:00:37 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-26 12:56:00 ----D---- C:\WINDOWS\system32\wbem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\oem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\OEM
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\NDF
2015-12-26 12:49:47 ----D---- C:\WINDOWS\ShellNew
2015-12-26 12:49:46 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-12-26 12:49:46 ----D---- C:\WINDOWS\cs
2015-12-26 12:49:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-26 12:42:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-12-26 12:42:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\wfp
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\SPReview
2015-12-26 12:42:26 ----D---- C:\WINDOWS\system32\spool
2015-12-26 12:42:23 ----D---- C:\WINDOWS\system32\MRT
2015-12-26 12:42:22 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\IME
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-12-26 12:42:19 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-26 12:42:17 ----D---- C:\WINDOWS\schemas
2015-12-26 12:42:17 ----D---- C:\WINDOWS\Resources
2015-12-26 12:42:16 ----D---- C:\WINDOWS\OCR
2015-12-26 12:42:00 ----D---- C:\WINDOWS\ehome
2015-12-26 12:41:58 ----RD---- C:\Users
2015-12-26 12:41:53 ----D---- C:\ProgramData\USOPrivate
2015-12-26 12:41:53 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-26 12:41:39 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-12-26 12:41:39 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-26 12:41:38 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-26 12:41:35 ----SHD---- C:\Program Files\Windows Sidebar
2015-12-26 12:41:35 ----D---- C:\Program Files\Windows Mail
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft.NET
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft Games
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\System
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files
2015-12-26 12:39:05 ----D---- C:\WINDOWS\system32\Recovery
2015-12-26 12:36:22 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-26 12:33:15 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-26 12:26:26 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\MUI
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-12-26 12:07:31 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-12-26 12:07:27 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-12-26 12:07:26 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-12-26 12:07:25 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-12-26 12:07:24 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-12-26 12:07:22 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-12-26 12:07:21 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-12-26 12:07:20 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-12-26 12:07:17 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-12-21 16:00:54 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-21 16:00:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-12-21 14:43:56 ----D---- C:\ProgramData\Microsoft Help
2015-12-21 14:41:53 ----A---- C:\WINDOWS\win.ini
2015-12-21 14:19:01 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-20 19:55:43 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;@oem34.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2015-12-20 466400]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-12-20 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-12-20 273784]
R0 iaStor;@oem39.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-05-20 557848]
R0 speedfan;speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2015-12-20 28144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-12-20 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-12-20 1055560]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-12-20 451040]
R1 dtsoftbus01;@oem37.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2013-05-27 283200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-12-20 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-12-20 97648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-12-20 155304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AgereSoftModem;@oem36.inf,%ServiceName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2009-06-11 1208320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 AtiHDAudioService;@oem28.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW76.sys [2013-02-14 96768]
R3 DKbFltr;@oem26.inf,%DKbFltr.SvcDesc%;Dritek Keyboard Filter Driver (64-bit); C:\WINDOWS\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2015-10-30 446464]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-26 175616]
R3 SynTP;@oem32.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-09-18 292912]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 dg_ssudbus;@oem21.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-11-26 108800]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 ssudmdm;@oem15.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-11-26 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-29 81088]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-03-27 16896]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2015-12-20 226440]
R2 avast! Firewall;Avast Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2015-12-20 109520]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-09-30 844320]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-26 26624]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-09-24 62720]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 OneSyncSvc_278f4;Hostitel synchronizace_278f4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-03-15 39568]
R2 RealPlayer Cloud Service;RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [2014-04-06 1141848]
R2 RealPlayerUpdateSvc;RealPlayer Update Service; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-03-20 23552]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3606a;Hostitel synchronizace_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_484b8;Hostitel synchronizace_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_63962;Hostitel synchronizace_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6f8c3;Hostitel synchronizace_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d243ad;Hostitel synchronizace_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-28 182768]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_278f4;Služba zasílání zpráv_278f4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3606a;Služba zasílání zpráv_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_484b8;Služba zasílání zpráv_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_63962;Služba zasílání zpráv_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6f8c3;Služba zasílání zpráv_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d243ad;Služba zasílání zpráv_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-26 129976]
S3 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-11 305448]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_278f4;Data kontaktů_278f4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3606a;Data kontaktů_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_484b8;Data kontaktů_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_63962;Data kontaktů_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6f8c3;Data kontaktů_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d243ad;Data kontaktů_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o kontrolu.. pomalý nb.. možná něco s win10..
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
# AdwCleaner v5.027 - Logfile created 01/01/2016 at 20:33:44
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 10 Home (x64)
# Username : pc - PC-PC
# Running from : C:\Users\pc\Desktop\adwcleaner_5.027.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
***** [ Web browsers ] *****
[-] [C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : delta-search.com
[-] [C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : babylon.com
[-] [C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : niapdbllcanepiiimjjndipklodoedlc
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [1280 bytes] ##########
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 10 Home (x64)
# Username : pc - PC-PC
# Running from : C:\Users\pc\Desktop\adwcleaner_5.027.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
***** [ Web browsers ] *****
[-] [C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : delta-search.com
[-] [C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : babylon.com
[-] [C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : niapdbllcanepiiimjjndipklodoedlc
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [1280 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
Logfile of random's system information tool 1.10 (written by random/random)
Run by pc at 2016-01-01 22:19:29
Microsoft Windows 10 Home
System drive C: has 76 GB (26%) free of 292 GB
Total RAM: 3067 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:19:35, on 1.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\trend micro\pc.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11344 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Alwil Software\Avast5\afwServ.exe"
"C:\Program Files\LSI SoftModem\agr64svc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
C:\WINDOWS\system32\mqsvc.exe
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
sihost.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\Users\pc\Downloads\RSITx64 (1).exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe21_ Global\UsGthrCtrlFltPipeMssGthrPipe21 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 600 604 612 8192 608
"c:\program files (x86)\real\realplayer\RPDS\Bin\proclaunch.exe" --cmd="\"c:\program files (x86)\real\realplayer\RPDS\Tools\ffmpeg\ffprobe.exe\" -show_format -show_streams \"C:\Users\pc\Downloads\CCleaner Professional 4.14 Final\CCleaner Professional 4.14 Final\Klíč\CCleaner.dat\"" --log="\\.\pipe\rpdsvc_probe_ddc" --pid-log=\\.\pipe\rpdsvc_proclaunch_13 --lower-priority --wait=10000
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=17.0.8.22]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=17.0.8]
"Description"=RealPlayer Video Downloader (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for HTML5 (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for PepperFlash (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=17.0.8.22]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npMeetingJoinPluginOC.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
nprpplugin.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\extensions\
staged
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-03-15 589896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2015-11-30 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2009-10-28 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2009-10-28 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 2339032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18 153768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2015-11-30 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 1731800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2009-10-28 346736]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\pc\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-06 1268816]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2015-12-20 7021880]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-01 18:00:06 ----D---- C:\Program Files\CCleaner
2015-12-30 14:09:08 ----D---- C:\ProgramData\Pinnacle VideoSpin
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Pinnacle
2015-12-30 14:08:09 ----D---- C:\ProgramData\Pinnacle
2015-12-30 11:37:46 ----D---- C:\Users\pc\AppData\Roaming\Leawo
2015-12-30 11:37:00 ----A---- C:\WINDOWS\system32\xvidcore.dll
2015-12-30 11:36:55 ----D---- C:\Program Files\Leawo
2015-12-27 20:25:58 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-27 09:10:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-27 09:10:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-27 09:10:16 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-27 09:10:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-27 09:10:10 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-27 09:10:09 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-27 09:10:07 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-27 09:10:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-27 09:09:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-27 09:09:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-27 09:09:53 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-27 09:09:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-27 09:09:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-27 09:09:45 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-27 09:09:44 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-27 09:09:43 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-27 09:09:38 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-27 09:09:35 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-27 09:09:34 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-27 09:09:28 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-27 09:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-27 09:09:26 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-27 09:09:24 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\services.exe
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-27 09:09:05 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-27 09:08:55 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-27 09:08:50 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-27 09:08:39 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-27 09:08:24 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-27 09:08:18 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-27 09:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-27 09:08:06 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-27 09:08:05 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-27 09:08:02 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-27 09:08:02 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-27 09:07:58 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-27 09:07:57 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-27 09:07:55 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-27 09:07:37 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-27 09:07:34 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-27 09:07:32 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-27 09:07:30 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-26 13:07:33 ----SHDC---- C:\Recovery
2015-12-26 12:50:29 ----ASH---- C:\hiberfil.sys
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-12-26 12:35:11 ----SD---- C:\Users\pc\AppData\Roaming\Microsoft
2015-12-26 12:34:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-26 12:33:53 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-12-26 12:30:57 ----D---- C:\Program Files\LSI SoftModem
2015-12-26 12:30:32 ----D---- C:\Program Files\Realtek
2015-12-26 12:30:31 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-12-26 12:30:23 ----D---- C:\Program Files\Synaptics
2015-12-26 12:29:34 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-26 12:27:54 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-26 12:25:46 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-26 12:21:13 ----D---- C:\WINDOWS\Prefetch
2015-12-26 12:21:12 ----ASH---- C:\swapfile.sys
2015-12-26 12:21:11 ----ASH---- C:\pagefile.sys
2015-12-26 12:20:18 ----DC---- C:\WINDOWS\Panther
2015-12-26 12:12:38 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\msmq
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-12-26 12:07:43 ----D---- C:\Program Files\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files\MSBuild
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\MSBuild
2015-12-26 12:07:43 ----D---- C:\inetpub
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-26 12:06:19 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-20 21:18:06 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-12-20 21:17:34 ----A---- C:\WINDOWS\avastSS.scr
2015-12-20 21:17:06 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2015-12-20 10:45:54 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt(151).sys
======List of files/folders modified in the last 1 month======
2016-01-01 22:19:33 ----D---- C:\Program Files\trend micro
2016-01-01 22:18:49 ----D---- C:\WINDOWS\Temp
2016-01-01 21:36:00 ----D---- C:\WINDOWS\system32\sru
2016-01-01 20:33:44 ----DC---- C:\AdwCleaner
2016-01-01 18:38:22 ----D---- C:\Windows
2016-01-01 18:34:02 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-01 18:33:58 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-01 18:26:51 ----D---- C:\WINDOWS\debug
2016-01-01 18:21:21 ----D---- C:\Users\pc\AppData\Roaming\uTorrent
2016-01-01 18:11:26 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2016-01-01 18:11:21 ----D---- C:\WINDOWS\INF
2016-01-01 18:00:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-01 18:00:06 ----RD---- C:\Program Files
2016-01-01 17:58:35 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 17:56:39 ----D---- C:\Users\pc\AppData\Roaming\vlc
2016-01-01 14:28:08 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 18:55:15 ----D---- C:\WINDOWS\rescache
2015-12-31 18:50:37 ----D---- C:\WINDOWS\Logs
2015-12-31 17:33:50 ----D---- C:\WINDOWS\system32\config
2015-12-31 15:05:35 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-31 15:05:23 ----D---- C:\WINDOWS\WinSxS
2015-12-31 14:54:54 ----HD---- C:\Program Files\WindowsApps
2015-12-31 03:32:09 ----RD---- C:\WINDOWS\assembly
2015-12-30 14:10:36 ----SHD---- C:\WINDOWS\Installer
2015-12-30 14:10:34 ----D---- C:\Config.Msi
2015-12-30 14:09:29 ----RSD---- C:\WINDOWS\Fonts
2015-12-30 14:09:10 ----D---- C:\WINDOWS\SysWOW64
2015-12-30 14:09:08 ----RD---- C:\Program Files (x86)
2015-12-30 14:09:08 ----HD---- C:\ProgramData
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Common Files
2015-12-30 13:25:57 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 13:24:58 ----SHD---- C:\System Volume Information
2015-12-30 11:37:00 ----D---- C:\WINDOWS\System32
2015-12-30 11:23:37 ----D---- C:\WINDOWS\system32\WDI
2015-12-29 21:59:08 ----D---- C:\WINDOWS\system32\drivers
2015-12-29 21:48:44 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-28 17:46:21 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\oobe
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\migration
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\Dism
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\appraiser
2015-12-28 17:45:40 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-28 17:45:40 ----D---- C:\WINDOWS\Provisioning
2015-12-28 17:45:35 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-28 17:45:34 ----D---- C:\WINDOWS\bcastdvr
2015-12-28 17:45:34 ----D---- C:\WINDOWS\AppPatch
2015-12-28 17:45:33 ----D---- C:\Program Files\Internet Explorer
2015-12-28 17:45:33 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-28 17:42:29 ----D---- C:\WINDOWS\system32\catroot2
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-27 04:55:43 ----D---- C:\WINDOWS\appcompat
2015-12-26 13:40:45 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-26 13:22:12 ----RD---- C:\WINDOWS\PrintDialog
2015-12-26 13:22:10 ----RD---- C:\WINDOWS\MiracastView
2015-12-26 13:21:34 ----SD---- C:\ProgramData\Microsoft
2015-12-26 13:11:09 ----D---- C:\WINDOWS\system32\restore
2015-12-26 13:07:33 ----D---- C:\Program Files\Windows NT
2015-12-26 13:04:02 ----D---- C:\WINDOWS\Registration
2015-12-26 13:03:45 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-26 13:01:17 ----D---- C:\WINDOWS\Tasks
2015-12-26 13:00:42 ----RSD---- C:\WINDOWS\Media
2015-12-26 13:00:37 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-26 12:56:00 ----D---- C:\WINDOWS\system32\wbem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\oem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\OEM
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\NDF
2015-12-26 12:49:47 ----D---- C:\WINDOWS\ShellNew
2015-12-26 12:49:46 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-12-26 12:49:46 ----D---- C:\WINDOWS\cs
2015-12-26 12:49:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-26 12:42:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-12-26 12:42:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\wfp
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\SPReview
2015-12-26 12:42:26 ----D---- C:\WINDOWS\system32\spool
2015-12-26 12:42:23 ----D---- C:\WINDOWS\system32\MRT
2015-12-26 12:42:22 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\IME
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-12-26 12:42:19 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-26 12:42:17 ----D---- C:\WINDOWS\schemas
2015-12-26 12:42:17 ----D---- C:\WINDOWS\Resources
2015-12-26 12:42:16 ----D---- C:\WINDOWS\OCR
2015-12-26 12:42:00 ----D---- C:\WINDOWS\ehome
2015-12-26 12:41:58 ----RD---- C:\Users
2015-12-26 12:41:53 ----D---- C:\ProgramData\USOPrivate
2015-12-26 12:41:53 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-26 12:41:39 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-12-26 12:41:39 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-26 12:41:38 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-26 12:41:35 ----SHD---- C:\Program Files\Windows Sidebar
2015-12-26 12:41:35 ----D---- C:\Program Files\Windows Mail
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft.NET
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft Games
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\System
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files
2015-12-26 12:39:05 ----D---- C:\WINDOWS\system32\Recovery
2015-12-26 12:36:22 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-26 12:33:15 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-26 12:26:26 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\MUI
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-12-26 12:07:31 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-12-26 12:07:27 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-12-26 12:07:26 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-12-26 12:07:25 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-12-26 12:07:24 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-12-26 12:07:22 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-12-26 12:07:21 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-12-26 12:07:20 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-12-26 12:07:17 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-12-21 16:00:54 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-21 16:00:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-12-21 14:43:56 ----D---- C:\ProgramData\Microsoft Help
2015-12-21 14:41:53 ----A---- C:\WINDOWS\win.ini
2015-12-21 14:19:01 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-20 19:55:43 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;@oem34.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2015-12-20 466400]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-12-20 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-12-20 273784]
R0 iaStor;@oem39.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-05-20 557848]
R0 speedfan;speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2015-12-20 28144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-12-20 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-12-20 1055560]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-12-20 451040]
R1 dtsoftbus01;@oem37.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2013-05-27 283200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-12-20 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-12-20 97648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-12-20 155304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AgereSoftModem;@oem36.inf,%ServiceName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2009-06-11 1208320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 AtiHDAudioService;@oem28.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW76.sys [2013-02-14 96768]
R3 DKbFltr;@oem26.inf,%DKbFltr.SvcDesc%;Dritek Keyboard Filter Driver (64-bit); C:\WINDOWS\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2015-10-30 446464]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-26 175616]
R3 SynTP;@oem32.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-09-18 292912]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 dg_ssudbus;@oem21.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-11-26 108800]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 ssudmdm;@oem15.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-11-26 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-29 81088]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-03-27 16896]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2015-12-20 226440]
R2 avast! Firewall;Avast Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2015-12-20 109520]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-09-30 844320]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-26 26624]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-09-24 62720]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 OneSyncSvc_314d8;Hostitel synchronizace_314d8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-03-15 39568]
R2 RealPlayer Cloud Service;RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [2014-04-06 1141848]
R2 RealPlayerUpdateSvc;RealPlayer Update Service; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-03-20 23552]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_334f6;Hostitel synchronizace_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3606a;Hostitel synchronizace_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_484b8;Hostitel synchronizace_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_63962;Hostitel synchronizace_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6f8c3;Hostitel synchronizace_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d243ad;Hostitel synchronizace_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-28 182768]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_314d8;Služba zasílání zpráv_314d8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_334f6;Služba zasílání zpráv_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3606a;Služba zasílání zpráv_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_484b8;Služba zasílání zpráv_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_63962;Služba zasílání zpráv_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6f8c3;Služba zasílání zpráv_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d243ad;Služba zasílání zpráv_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-26 129976]
S3 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-11 305448]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_314d8;Data kontaktů_314d8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_334f6;Data kontaktů_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3606a;Data kontaktů_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_484b8;Data kontaktů_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_63962;Data kontaktů_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6f8c3;Data kontaktů_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d243ad;Data kontaktů_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
Run by pc at 2016-01-01 22:19:29
Microsoft Windows 10 Home
System drive C: has 76 GB (26%) free of 292 GB
Total RAM: 3067 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:19:35, on 1.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\trend micro\pc.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11344 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Alwil Software\Avast5\afwServ.exe"
"C:\Program Files\LSI SoftModem\agr64svc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
C:\WINDOWS\system32\mqsvc.exe
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
sihost.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\Users\pc\Downloads\RSITx64 (1).exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe21_ Global\UsGthrCtrlFltPipeMssGthrPipe21 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 600 604 612 8192 608
"c:\program files (x86)\real\realplayer\RPDS\Bin\proclaunch.exe" --cmd="\"c:\program files (x86)\real\realplayer\RPDS\Tools\ffmpeg\ffprobe.exe\" -show_format -show_streams \"C:\Users\pc\Downloads\CCleaner Professional 4.14 Final\CCleaner Professional 4.14 Final\Klíč\CCleaner.dat\"" --log="\\.\pipe\rpdsvc_probe_ddc" --pid-log=\\.\pipe\rpdsvc_proclaunch_13 --lower-priority --wait=10000
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=17.0.8.22]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=17.0.8]
"Description"=RealPlayer Video Downloader (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for HTML5 (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for PepperFlash (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=17.0.8.22]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npMeetingJoinPluginOC.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
nprpplugin.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\extensions\
staged
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2014-03-15 589896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2015-11-30 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2009-10-28 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2009-10-28 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 2339032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18 153768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2015-11-30 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 1731800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2009-10-28 346736]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\pc\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-06 1268816]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2015-12-20 7021880]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-01 18:00:06 ----D---- C:\Program Files\CCleaner
2015-12-30 14:09:08 ----D---- C:\ProgramData\Pinnacle VideoSpin
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Pinnacle
2015-12-30 14:08:09 ----D---- C:\ProgramData\Pinnacle
2015-12-30 11:37:46 ----D---- C:\Users\pc\AppData\Roaming\Leawo
2015-12-30 11:37:00 ----A---- C:\WINDOWS\system32\xvidcore.dll
2015-12-30 11:36:55 ----D---- C:\Program Files\Leawo
2015-12-27 20:25:58 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-27 09:10:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-27 09:10:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-27 09:10:16 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-27 09:10:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-27 09:10:10 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-27 09:10:09 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-27 09:10:07 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-27 09:10:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-27 09:09:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-27 09:09:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-27 09:09:53 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-27 09:09:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-27 09:09:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-27 09:09:45 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-27 09:09:44 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-27 09:09:43 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-27 09:09:38 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-27 09:09:35 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-27 09:09:34 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-27 09:09:28 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-27 09:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-27 09:09:26 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-27 09:09:24 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\services.exe
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-27 09:09:05 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-27 09:08:55 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-27 09:08:50 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-27 09:08:39 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-27 09:08:24 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-27 09:08:18 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-27 09:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-27 09:08:06 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-27 09:08:05 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-27 09:08:02 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-27 09:08:02 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-27 09:07:58 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-27 09:07:57 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-27 09:07:55 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-27 09:07:37 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-27 09:07:34 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-27 09:07:32 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-27 09:07:30 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-26 13:07:33 ----SHDC---- C:\Recovery
2015-12-26 12:50:29 ----ASH---- C:\hiberfil.sys
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-12-26 12:35:11 ----SD---- C:\Users\pc\AppData\Roaming\Microsoft
2015-12-26 12:34:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-26 12:33:53 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-12-26 12:30:57 ----D---- C:\Program Files\LSI SoftModem
2015-12-26 12:30:32 ----D---- C:\Program Files\Realtek
2015-12-26 12:30:31 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-12-26 12:30:23 ----D---- C:\Program Files\Synaptics
2015-12-26 12:29:34 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-26 12:27:54 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-26 12:25:46 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-26 12:21:13 ----D---- C:\WINDOWS\Prefetch
2015-12-26 12:21:12 ----ASH---- C:\swapfile.sys
2015-12-26 12:21:11 ----ASH---- C:\pagefile.sys
2015-12-26 12:20:18 ----DC---- C:\WINDOWS\Panther
2015-12-26 12:12:38 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\msmq
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-12-26 12:07:43 ----D---- C:\Program Files\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files\MSBuild
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\MSBuild
2015-12-26 12:07:43 ----D---- C:\inetpub
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-26 12:06:19 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-20 21:18:06 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-12-20 21:17:34 ----A---- C:\WINDOWS\avastSS.scr
2015-12-20 21:17:06 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2015-12-20 10:45:54 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt(151).sys
======List of files/folders modified in the last 1 month======
2016-01-01 22:19:33 ----D---- C:\Program Files\trend micro
2016-01-01 22:18:49 ----D---- C:\WINDOWS\Temp
2016-01-01 21:36:00 ----D---- C:\WINDOWS\system32\sru
2016-01-01 20:33:44 ----DC---- C:\AdwCleaner
2016-01-01 18:38:22 ----D---- C:\Windows
2016-01-01 18:34:02 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-01 18:33:58 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-01 18:26:51 ----D---- C:\WINDOWS\debug
2016-01-01 18:21:21 ----D---- C:\Users\pc\AppData\Roaming\uTorrent
2016-01-01 18:11:26 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2016-01-01 18:11:21 ----D---- C:\WINDOWS\INF
2016-01-01 18:00:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-01 18:00:06 ----RD---- C:\Program Files
2016-01-01 17:58:35 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 17:56:39 ----D---- C:\Users\pc\AppData\Roaming\vlc
2016-01-01 14:28:08 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 18:55:15 ----D---- C:\WINDOWS\rescache
2015-12-31 18:50:37 ----D---- C:\WINDOWS\Logs
2015-12-31 17:33:50 ----D---- C:\WINDOWS\system32\config
2015-12-31 15:05:35 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-31 15:05:23 ----D---- C:\WINDOWS\WinSxS
2015-12-31 14:54:54 ----HD---- C:\Program Files\WindowsApps
2015-12-31 03:32:09 ----RD---- C:\WINDOWS\assembly
2015-12-30 14:10:36 ----SHD---- C:\WINDOWS\Installer
2015-12-30 14:10:34 ----D---- C:\Config.Msi
2015-12-30 14:09:29 ----RSD---- C:\WINDOWS\Fonts
2015-12-30 14:09:10 ----D---- C:\WINDOWS\SysWOW64
2015-12-30 14:09:08 ----RD---- C:\Program Files (x86)
2015-12-30 14:09:08 ----HD---- C:\ProgramData
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Common Files
2015-12-30 13:25:57 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 13:24:58 ----SHD---- C:\System Volume Information
2015-12-30 11:37:00 ----D---- C:\WINDOWS\System32
2015-12-30 11:23:37 ----D---- C:\WINDOWS\system32\WDI
2015-12-29 21:59:08 ----D---- C:\WINDOWS\system32\drivers
2015-12-29 21:48:44 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-28 17:46:21 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\oobe
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\migration
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\Dism
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\appraiser
2015-12-28 17:45:40 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-28 17:45:40 ----D---- C:\WINDOWS\Provisioning
2015-12-28 17:45:35 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-28 17:45:34 ----D---- C:\WINDOWS\bcastdvr
2015-12-28 17:45:34 ----D---- C:\WINDOWS\AppPatch
2015-12-28 17:45:33 ----D---- C:\Program Files\Internet Explorer
2015-12-28 17:45:33 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-28 17:42:29 ----D---- C:\WINDOWS\system32\catroot2
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-27 04:55:43 ----D---- C:\WINDOWS\appcompat
2015-12-26 13:40:45 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-26 13:22:12 ----RD---- C:\WINDOWS\PrintDialog
2015-12-26 13:22:10 ----RD---- C:\WINDOWS\MiracastView
2015-12-26 13:21:34 ----SD---- C:\ProgramData\Microsoft
2015-12-26 13:11:09 ----D---- C:\WINDOWS\system32\restore
2015-12-26 13:07:33 ----D---- C:\Program Files\Windows NT
2015-12-26 13:04:02 ----D---- C:\WINDOWS\Registration
2015-12-26 13:03:45 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-26 13:01:17 ----D---- C:\WINDOWS\Tasks
2015-12-26 13:00:42 ----RSD---- C:\WINDOWS\Media
2015-12-26 13:00:37 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-26 12:56:00 ----D---- C:\WINDOWS\system32\wbem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\oem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\OEM
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\NDF
2015-12-26 12:49:47 ----D---- C:\WINDOWS\ShellNew
2015-12-26 12:49:46 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-12-26 12:49:46 ----D---- C:\WINDOWS\cs
2015-12-26 12:49:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-26 12:42:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-12-26 12:42:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\wfp
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\SPReview
2015-12-26 12:42:26 ----D---- C:\WINDOWS\system32\spool
2015-12-26 12:42:23 ----D---- C:\WINDOWS\system32\MRT
2015-12-26 12:42:22 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\IME
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-12-26 12:42:19 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-26 12:42:17 ----D---- C:\WINDOWS\schemas
2015-12-26 12:42:17 ----D---- C:\WINDOWS\Resources
2015-12-26 12:42:16 ----D---- C:\WINDOWS\OCR
2015-12-26 12:42:00 ----D---- C:\WINDOWS\ehome
2015-12-26 12:41:58 ----RD---- C:\Users
2015-12-26 12:41:53 ----D---- C:\ProgramData\USOPrivate
2015-12-26 12:41:53 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-26 12:41:39 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-12-26 12:41:39 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-26 12:41:38 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-26 12:41:35 ----SHD---- C:\Program Files\Windows Sidebar
2015-12-26 12:41:35 ----D---- C:\Program Files\Windows Mail
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft.NET
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft Games
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\System
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files
2015-12-26 12:39:05 ----D---- C:\WINDOWS\system32\Recovery
2015-12-26 12:36:22 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-26 12:33:15 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-26 12:26:26 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\MUI
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-12-26 12:07:31 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-12-26 12:07:27 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-12-26 12:07:26 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-12-26 12:07:25 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-12-26 12:07:24 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-12-26 12:07:22 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-12-26 12:07:21 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-12-26 12:07:20 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-12-26 12:07:17 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-12-21 16:00:54 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-21 16:00:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-12-21 14:43:56 ----D---- C:\ProgramData\Microsoft Help
2015-12-21 14:41:53 ----A---- C:\WINDOWS\win.ini
2015-12-21 14:19:01 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-20 19:55:43 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;@oem34.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2015-12-20 466400]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-12-20 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-12-20 273784]
R0 iaStor;@oem39.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-05-20 557848]
R0 speedfan;speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2015-12-20 28144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-12-20 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-12-20 1055560]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-12-20 451040]
R1 dtsoftbus01;@oem37.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2013-05-27 283200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-12-20 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-12-20 97648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-12-20 155304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AgereSoftModem;@oem36.inf,%ServiceName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2009-06-11 1208320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 AtiHDAudioService;@oem28.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW76.sys [2013-02-14 96768]
R3 DKbFltr;@oem26.inf,%DKbFltr.SvcDesc%;Dritek Keyboard Filter Driver (64-bit); C:\WINDOWS\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2015-10-30 446464]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-26 175616]
R3 SynTP;@oem32.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-09-18 292912]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 dg_ssudbus;@oem21.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-11-26 108800]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 ssudmdm;@oem15.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-11-26 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-29 81088]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-03-27 16896]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2015-12-20 226440]
R2 avast! Firewall;Avast Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2015-12-20 109520]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-09-30 844320]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-26 26624]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-09-24 62720]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 OneSyncSvc_314d8;Hostitel synchronizace_314d8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-03-15 39568]
R2 RealPlayer Cloud Service;RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [2014-04-06 1141848]
R2 RealPlayerUpdateSvc;RealPlayer Update Service; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-03-20 23552]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_334f6;Hostitel synchronizace_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3606a;Hostitel synchronizace_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_484b8;Hostitel synchronizace_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_63962;Hostitel synchronizace_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6f8c3;Hostitel synchronizace_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d243ad;Hostitel synchronizace_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-28 182768]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_314d8;Služba zasílání zpráv_314d8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_334f6;Služba zasílání zpráv_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3606a;Služba zasílání zpráv_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_484b8;Služba zasílání zpráv_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_63962;Služba zasílání zpráv_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6f8c3;Služba zasílání zpráv_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d243ad;Služba zasílání zpráv_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-26 129976]
S3 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-11 305448]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_314d8;Data kontaktů_314d8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_334f6;Data kontaktů_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3606a;Data kontaktů_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_484b8;Data kontaktů_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_63962;Data kontaktů_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6f8c3;Data kontaktů_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d243ad;Data kontaktů_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\Program Files (x86)\Google\Google Toolbar
C:\Program Files\Google\GoogleToolbarNotifier
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
Logfile of random's system information tool 1.10 (written by random/random)
Run by pc at 2016-01-02 11:56:45
Microsoft Windows 10 Home
System drive C: has 76 GB (26%) free of 292 GB
Total RAM: 3067 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:56:56, on 2.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\trend micro\pc.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11344 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Alwil Software\Avast5\afwServ.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\LSI SoftModem\agr64svc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
sihost.exe
taskeng.exe {201F8394-B9E0-4BDD-A07D-2A4DF898B473}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\Explorer.EXE
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\01022016_114824.log
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 600 604 612 8192 608
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Users\pc\Downloads\RSITx64 (1).exe"
C:\WINDOWS\system32\usoclient.exe StartScan
\??\C:\WINDOWS\system32\conhost.exe 0x4
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=17.0.8.22]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=17.0.8]
"Description"=RealPlayer Video Downloader (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for HTML5 (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for PepperFlash (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=17.0.8.22]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npMeetingJoinPluginOC.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
nprpplugin.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\extensions\
staged
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2015-11-30 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 2339032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18 153768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2015-11-30 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 1731800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\pc\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-06 1268816]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2015-12-20 7021880]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-02 11:48:24 ----DC---- C:\_OTM
2016-01-01 18:00:06 ----D---- C:\Program Files\CCleaner
2015-12-30 14:09:08 ----D---- C:\ProgramData\Pinnacle VideoSpin
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Pinnacle
2015-12-30 14:08:09 ----D---- C:\ProgramData\Pinnacle
2015-12-30 11:37:46 ----D---- C:\Users\pc\AppData\Roaming\Leawo
2015-12-30 11:37:00 ----A---- C:\WINDOWS\system32\xvidcore.dll
2015-12-30 11:36:55 ----D---- C:\Program Files\Leawo
2015-12-27 20:25:58 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-27 09:10:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-27 09:10:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-27 09:10:16 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-27 09:10:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-27 09:10:10 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-27 09:10:09 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-27 09:10:07 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-27 09:10:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-27 09:09:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-27 09:09:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-27 09:09:53 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-27 09:09:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-27 09:09:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-27 09:09:45 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-27 09:09:44 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-27 09:09:43 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-27 09:09:38 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-27 09:09:35 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-27 09:09:34 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-27 09:09:28 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-27 09:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-27 09:09:26 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-27 09:09:24 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\services.exe
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-27 09:09:05 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-27 09:08:55 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-27 09:08:50 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-27 09:08:39 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-27 09:08:24 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-27 09:08:18 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-27 09:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-27 09:08:06 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-27 09:08:05 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-27 09:08:02 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-27 09:08:02 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-27 09:07:58 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-27 09:07:57 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-27 09:07:55 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-27 09:07:37 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-27 09:07:34 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-27 09:07:32 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-27 09:07:30 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-26 13:07:33 ----SHDC---- C:\Recovery
2015-12-26 12:50:29 ----ASH---- C:\hiberfil.sys
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-12-26 12:35:11 ----SD---- C:\Users\pc\AppData\Roaming\Microsoft
2015-12-26 12:34:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-26 12:33:53 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-12-26 12:30:57 ----D---- C:\Program Files\LSI SoftModem
2015-12-26 12:30:32 ----D---- C:\Program Files\Realtek
2015-12-26 12:30:31 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-12-26 12:30:23 ----D---- C:\Program Files\Synaptics
2015-12-26 12:29:34 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-26 12:27:54 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-26 12:25:46 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-26 12:21:13 ----D---- C:\WINDOWS\Prefetch
2015-12-26 12:21:12 ----ASH---- C:\swapfile.sys
2015-12-26 12:21:11 ----ASH---- C:\pagefile.sys
2015-12-26 12:20:18 ----DC---- C:\WINDOWS\Panther
2015-12-26 12:12:38 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\msmq
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-12-26 12:07:43 ----D---- C:\Program Files\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files\MSBuild
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\MSBuild
2015-12-26 12:07:43 ----D---- C:\inetpub
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-26 12:06:19 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-20 21:18:06 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-12-20 21:17:34 ----A---- C:\WINDOWS\avastSS.scr
2015-12-20 21:17:06 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2015-12-20 10:45:54 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt(151).sys
======List of files/folders modified in the last 1 month======
2016-01-02 11:56:55 ----D---- C:\Program Files\trend micro
2016-01-02 11:55:04 ----D---- C:\WINDOWS\Temp
2016-01-02 11:52:11 ----D---- C:\WINDOWS\system32\sru
2016-01-02 11:48:25 ----D---- C:\WINDOWS\Tasks
2016-01-02 11:48:25 ----D---- C:\Program Files\Google
2016-01-02 11:48:25 ----D---- C:\Program Files (x86)\Google
2016-01-01 20:33:44 ----DC---- C:\AdwCleaner
2016-01-01 18:38:22 ----D---- C:\Windows
2016-01-01 18:34:02 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-01 18:33:58 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-01 18:26:51 ----D---- C:\WINDOWS\debug
2016-01-01 18:21:21 ----D---- C:\Users\pc\AppData\Roaming\uTorrent
2016-01-01 18:11:26 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2016-01-01 18:11:21 ----D---- C:\WINDOWS\INF
2016-01-01 18:00:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-01 18:00:06 ----RD---- C:\Program Files
2016-01-01 17:58:35 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 17:56:39 ----D---- C:\Users\pc\AppData\Roaming\vlc
2016-01-01 14:28:08 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 18:55:15 ----D---- C:\WINDOWS\rescache
2015-12-31 18:50:37 ----D---- C:\WINDOWS\Logs
2015-12-31 17:33:50 ----D---- C:\WINDOWS\system32\config
2015-12-31 15:05:35 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-31 15:05:23 ----D---- C:\WINDOWS\WinSxS
2015-12-31 14:54:54 ----HD---- C:\Program Files\WindowsApps
2015-12-31 03:32:09 ----RD---- C:\WINDOWS\assembly
2015-12-30 14:10:36 ----SHD---- C:\WINDOWS\Installer
2015-12-30 14:10:34 ----D---- C:\Config.Msi
2015-12-30 14:09:29 ----RSD---- C:\WINDOWS\Fonts
2015-12-30 14:09:10 ----D---- C:\WINDOWS\SysWOW64
2015-12-30 14:09:08 ----RD---- C:\Program Files (x86)
2015-12-30 14:09:08 ----HD---- C:\ProgramData
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Common Files
2015-12-30 13:25:57 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 13:24:58 ----SHD---- C:\System Volume Information
2015-12-30 11:37:00 ----D---- C:\WINDOWS\System32
2015-12-30 11:23:37 ----D---- C:\WINDOWS\system32\WDI
2015-12-29 21:59:08 ----D---- C:\WINDOWS\system32\drivers
2015-12-29 21:48:44 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-28 17:46:21 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\oobe
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\migration
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\Dism
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\appraiser
2015-12-28 17:45:40 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-28 17:45:40 ----D---- C:\WINDOWS\Provisioning
2015-12-28 17:45:35 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-28 17:45:34 ----D---- C:\WINDOWS\bcastdvr
2015-12-28 17:45:34 ----D---- C:\WINDOWS\AppPatch
2015-12-28 17:45:33 ----D---- C:\Program Files\Internet Explorer
2015-12-28 17:45:33 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-28 17:42:29 ----D---- C:\WINDOWS\system32\catroot2
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-27 04:55:43 ----D---- C:\WINDOWS\appcompat
2015-12-26 13:40:45 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-26 13:22:12 ----RD---- C:\WINDOWS\PrintDialog
2015-12-26 13:22:10 ----RD---- C:\WINDOWS\MiracastView
2015-12-26 13:21:34 ----SD---- C:\ProgramData\Microsoft
2015-12-26 13:11:09 ----D---- C:\WINDOWS\system32\restore
2015-12-26 13:07:33 ----D---- C:\Program Files\Windows NT
2015-12-26 13:04:02 ----D---- C:\WINDOWS\Registration
2015-12-26 13:03:45 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-26 13:00:42 ----RSD---- C:\WINDOWS\Media
2015-12-26 13:00:37 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-26 12:56:00 ----D---- C:\WINDOWS\system32\wbem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\oem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\OEM
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\NDF
2015-12-26 12:49:47 ----D---- C:\WINDOWS\ShellNew
2015-12-26 12:49:46 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-12-26 12:49:46 ----D---- C:\WINDOWS\cs
2015-12-26 12:49:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-26 12:42:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-12-26 12:42:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\wfp
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\SPReview
2015-12-26 12:42:26 ----D---- C:\WINDOWS\system32\spool
2015-12-26 12:42:23 ----D---- C:\WINDOWS\system32\MRT
2015-12-26 12:42:22 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\IME
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-12-26 12:42:19 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-26 12:42:17 ----D---- C:\WINDOWS\schemas
2015-12-26 12:42:17 ----D---- C:\WINDOWS\Resources
2015-12-26 12:42:16 ----D---- C:\WINDOWS\OCR
2015-12-26 12:42:00 ----D---- C:\WINDOWS\ehome
2015-12-26 12:41:58 ----RD---- C:\Users
2015-12-26 12:41:53 ----D---- C:\ProgramData\USOPrivate
2015-12-26 12:41:53 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-26 12:41:39 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-12-26 12:41:39 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-26 12:41:38 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-26 12:41:35 ----SHD---- C:\Program Files\Windows Sidebar
2015-12-26 12:41:35 ----D---- C:\Program Files\Windows Mail
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft.NET
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft Games
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\System
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files
2015-12-26 12:39:05 ----D---- C:\WINDOWS\system32\Recovery
2015-12-26 12:36:22 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-26 12:33:15 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-26 12:26:26 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\MUI
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-12-26 12:07:31 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-12-26 12:07:27 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-12-26 12:07:26 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-12-26 12:07:25 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-12-26 12:07:24 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-12-26 12:07:22 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-12-26 12:07:21 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-12-26 12:07:20 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-12-26 12:07:17 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-12-21 16:00:54 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-21 16:00:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-12-21 14:43:56 ----D---- C:\ProgramData\Microsoft Help
2015-12-21 14:41:53 ----A---- C:\WINDOWS\win.ini
2015-12-21 14:19:01 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-20 19:55:43 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;@oem34.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2015-12-20 466400]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-12-20 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-12-20 273784]
R0 iaStor;@oem39.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-05-20 557848]
R0 speedfan;speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2015-12-20 28144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-12-20 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-12-20 1055560]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-12-20 451040]
R1 dtsoftbus01;@oem37.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2013-05-27 283200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-12-20 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-12-20 97648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-12-20 155304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AgereSoftModem;@oem36.inf,%ServiceName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2009-06-11 1208320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 AtiHDAudioService;@oem28.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW76.sys [2013-02-14 96768]
R3 DKbFltr;@oem26.inf,%DKbFltr.SvcDesc%;Dritek Keyboard Filter Driver (64-bit); C:\WINDOWS\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2015-10-30 446464]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-26 175616]
R3 SynTP;@oem32.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-09-18 292912]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 dg_ssudbus;@oem21.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-11-26 108800]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 ssudmdm;@oem15.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-11-26 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-29 81088]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-03-27 16896]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2015-12-20 226440]
R2 avast! Firewall;Avast Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2015-12-20 109520]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-09-30 844320]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-26 26624]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 OneSyncSvc_4ea83;Hostitel synchronizace_4ea83; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-03-15 39568]
R2 RealPlayer Cloud Service;RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [2014-04-06 1141848]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-09-24 62720]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_334f6;Hostitel synchronizace_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3606a;Hostitel synchronizace_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_484b8;Hostitel synchronizace_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_63962;Hostitel synchronizace_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6f8c3;Hostitel synchronizace_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d243ad;Hostitel synchronizace_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 RealPlayerUpdateSvc;RealPlayer Update Service; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-03-20 23552]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-28 182768]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_334f6;Služba zasílání zpráv_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3606a;Služba zasílání zpráv_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_484b8;Služba zasílání zpráv_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4ea83;Služba zasílání zpráv_4ea83; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_63962;Služba zasílání zpráv_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6f8c3;Služba zasílání zpráv_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d243ad;Služba zasílání zpráv_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-26 129976]
S3 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-11 305448]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_334f6;Data kontaktů_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3606a;Data kontaktů_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_484b8;Data kontaktů_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4ea83;Data kontaktů_4ea83; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_63962;Data kontaktů_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6f8c3;Data kontaktů_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d243ad;Data kontaktů_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
Run by pc at 2016-01-02 11:56:45
Microsoft Windows 10 Home
System drive C: has 76 GB (26%) free of 292 GB
Total RAM: 3067 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:56:56, on 2.1.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal
Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\trend micro\pc.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11344 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
atieclxx
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Alwil Software\Avast5\afwServ.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\LSI SoftModem\agr64svc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
"c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
sihost.exe
taskeng.exe {201F8394-B9E0-4BDD-A07D-2A4DF898B473}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.12.15004.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\Explorer.EXE
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\notepad.exe" C:\_OTM\MovedFiles\01022016_114824.log
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 600 604 612 8192 608
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Users\pc\Downloads\RSITx64 (1).exe"
C:\WINDOWS\system32\usoclient.exe StartScan
\??\C:\WINDOWS\system32\conhost.exe 0x4
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=17.0.8.22]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=17.0.8]
"Description"=RealPlayer Video Downloader (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for HTML5 (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=17.0.8]
"Description"=RealPlayer Video Downloader for PepperFlash (32-bit)
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files (x86)\Win7codecs\rm\browser\plugins\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=17.0.8.22]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npMeetingJoinPluginOC.dll
nppdf32.dll
nppl3260.dll
nppl3260.xpt
nprpplugin.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\extensions\
staged
C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\9iw5s03k.default\searchplugins\
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18 219304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll [2015-11-30 885152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 2339032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18 153768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2015-11-30 664184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL [2015-11-10 1731800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\pc\AppData\Roaming\uTorrent\uTorrent.exe [2014-04-06 1268816]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2015-12-20 7021880]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-01-02 11:48:24 ----DC---- C:\_OTM
2016-01-01 18:00:06 ----D---- C:\Program Files\CCleaner
2015-12-30 14:09:08 ----D---- C:\ProgramData\Pinnacle VideoSpin
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Pinnacle
2015-12-30 14:08:09 ----D---- C:\ProgramData\Pinnacle
2015-12-30 11:37:46 ----D---- C:\Users\pc\AppData\Roaming\Leawo
2015-12-30 11:37:00 ----A---- C:\WINDOWS\system32\xvidcore.dll
2015-12-30 11:36:55 ----D---- C:\Program Files\Leawo
2015-12-27 20:25:58 ----D---- C:\WINDOWS\system32\SleepStudy
2015-12-27 09:10:24 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-12-27 09:10:22 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-12-27 09:10:16 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-12-27 09:10:11 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-12-27 09:10:10 ----A---- C:\WINDOWS\system32\twinui.dll
2015-12-27 09:10:09 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-12-27 09:10:07 ----A---- C:\WINDOWS\system32\shell32.dll
2015-12-27 09:10:04 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-12-27 09:09:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-12-27 09:09:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-27 09:09:53 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-27 09:09:52 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-12-27 09:09:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-12-27 09:09:45 ----A---- C:\WINDOWS\system32\cdp.dll
2015-12-27 09:09:44 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-12-27 09:09:43 ----A---- C:\WINDOWS\SYSWOW64\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-27 09:09:43 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2015-12-27 09:09:40 ----A---- C:\WINDOWS\system32\InputService.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-12-27 09:09:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-12-27 09:09:38 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-12-27 09:09:37 ----A---- C:\WINDOWS\system32\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2015-12-27 09:09:36 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-12-27 09:09:35 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-12-27 09:09:34 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-12-27 09:09:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-12-27 09:09:32 ----A---- C:\WINDOWS\system32\comsvcs.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-12-27 09:09:31 ----A---- C:\WINDOWS\system32\wininet.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-27 09:09:30 ----A---- C:\WINDOWS\system32\mf.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-12-27 09:09:29 ----A---- C:\WINDOWS\system32\authui.dll
2015-12-27 09:09:28 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-12-27 09:09:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-12-27 09:09:26 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\usermgr.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-12-27 09:09:25 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-12-27 09:09:24 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-12-27 09:09:23 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-12-27 09:09:22 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-12-27 09:09:21 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-12-27 09:09:20 ----A---- C:\WINDOWS\system32\dcomp.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-12-27 09:09:19 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-12-27 09:09:18 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-12-27 09:09:17 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-12-27 09:09:16 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-12-27 09:09:15 ----A---- C:\WINDOWS\system32\services.exe
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-12-27 09:09:14 ----A---- C:\WINDOWS\system32\kerberos.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2015-12-27 09:09:13 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-12-27 09:09:12 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-12-27 09:09:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-12-27 09:09:10 ----A---- C:\WINDOWS\system32\jscript.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-12-27 09:09:08 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-12-27 09:09:07 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-12-27 09:09:06 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-12-27 09:09:05 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\user32.dll
2015-12-27 09:09:04 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-12-27 09:09:03 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-12-27 09:09:02 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-12-27 09:09:01 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-12-27 09:09:00 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2015-12-27 09:08:59 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\mfds.dll
2015-12-27 09:08:58 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-12-27 09:08:57 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-12-27 09:08:56 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-12-27 09:08:55 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-12-27 09:08:54 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\cryptngc.dll
2015-12-27 09:08:53 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-12-27 09:08:52 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-12-27 09:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-12-27 09:08:50 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-12-27 09:08:50 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\provengine.dll
2015-12-27 09:08:49 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:48 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\mfps.dll
2015-12-27 09:08:47 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\policymanager.dll
2015-12-27 09:08:42 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-12-27 09:08:41 ----A---- C:\WINDOWS\system32\MSFlacDecoder.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-27 09:08:40 ----A---- C:\WINDOWS\system32\catsrvut.dll
2015-12-27 09:08:39 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-12-27 09:08:38 ----A---- C:\WINDOWS\system32\dialserver.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-12-27 09:08:37 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-12-27 09:08:36 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\mssign32.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\SYSWOW64\MSMPEG2ENC.DLL
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\SRH.dll
2015-12-27 09:08:35 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\qdvd.dll
2015-12-27 09:08:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\SYSWOW64\catsrvut.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\mssign32.dll
2015-12-27 09:08:28 ----A---- C:\WINDOWS\system32\MDEServer.exe
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wwapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-12-27 09:08:27 ----A---- C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\EncDump.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-12-27 09:08:26 ----A---- C:\WINDOWS\system32\audiodg.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\wuauclt.exe
2015-12-27 09:08:25 ----A---- C:\WINDOWS\system32\mfpmp.exe
2015-12-27 09:08:24 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\wifitask.exe
2015-12-27 09:08:23 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\SYSWOW64\MSFlacDecoder.dll
2015-12-27 09:08:21 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2015-12-27 09:08:20 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\provdatastore.dll
2015-12-27 09:08:19 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2015-12-27 09:08:18 ----A---- C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\provtool.exe
2015-12-27 09:08:17 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-12-27 09:08:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\StorSvc.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-12-27 09:08:10 ----A---- C:\WINDOWS\system32\fveapi.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\moshost.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-12-27 09:08:09 ----A---- C:\WINDOWS\system32\fveapibase.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\moshostcore.dll
2015-12-27 09:08:07 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-12-27 09:08:06 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-12-27 09:08:05 ----A---- C:\WINDOWS\system32\mos.dll
2015-12-27 09:08:02 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-12-27 09:08:02 ----A---- C:\WINDOWS\system32\iesetup.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-12-27 09:08:01 ----A---- C:\WINDOWS\system32\iernonce.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-12-27 09:07:59 ----A---- C:\WINDOWS\system32\wshrm.dll
2015-12-27 09:07:58 ----A---- C:\WINDOWS\system32\win32k.sys
2015-12-27 09:07:57 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-12-27 09:07:56 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-12-27 09:07:55 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-12-27 09:07:54 ----A---- C:\WINDOWS\system32\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2015-12-27 09:07:53 ----A---- C:\WINDOWS\system32\AppCapture.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2015-12-27 09:07:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-12-27 09:07:49 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-12-27 09:07:48 ----A---- C:\WINDOWS\system32\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2015-12-27 09:07:47 ----A---- C:\WINDOWS\system32\NMAA.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\Wwanpref.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2015-12-27 09:07:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\wininetlui.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-27 09:07:45 ----A---- C:\WINDOWS\system32\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\SYSWOW64\dciman32.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\MosStorage.dll
2015-12-27 09:07:44 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\readingviewresources.dll
2015-12-27 09:07:43 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\provops.dll
2015-12-27 09:07:42 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\wups2.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2015-12-27 09:07:41 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2015-12-27 09:07:40 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\wsplib.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\rilproxy.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-27 09:07:39 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\nativemap.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2015-12-27 09:07:38 ----A---- C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-27 09:07:37 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.proxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\Windows.Networking.XboxLive.ProxyStub.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringconfigsp.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-27 09:07:36 ----A---- C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\SYSWOW64\BackgroundTransferHost.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\lpk.dll
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2015-12-27 09:07:35 ----A---- C:\WINDOWS\system32\BackgroundTransferHost.exe
2015-12-27 09:07:34 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-12-27 09:07:32 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-27 09:07:32 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-27 09:07:31 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2015-12-27 09:07:30 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCoreRes.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\MosResource.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-27 09:07:29 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-27 09:07:28 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-26 13:07:33 ----SHDC---- C:\Recovery
2015-12-26 12:50:29 ----ASH---- C:\hiberfil.sys
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-12-26 12:35:11 ----SD---- C:\Users\pc\AppData\Roaming\Microsoft
2015-12-26 12:34:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-26 12:33:53 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-12-26 12:30:57 ----D---- C:\Program Files\LSI SoftModem
2015-12-26 12:30:32 ----D---- C:\Program Files\Realtek
2015-12-26 12:30:31 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-12-26 12:30:23 ----D---- C:\Program Files\Synaptics
2015-12-26 12:29:34 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-12-26 12:27:54 ----AS---- C:\WINDOWS\bootstat.dat
2015-12-26 12:25:46 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-26 12:21:13 ----D---- C:\WINDOWS\Prefetch
2015-12-26 12:21:12 ----ASH---- C:\swapfile.sys
2015-12-26 12:21:11 ----ASH---- C:\pagefile.sys
2015-12-26 12:20:18 ----DC---- C:\WINDOWS\Panther
2015-12-26 12:12:38 ----D---- C:\WINDOWS\system32\Microsoft
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\msmq
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\BestPractices
2015-12-26 12:07:43 ----D---- C:\Program Files\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files\MSBuild
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-12-26 12:07:43 ----D---- C:\Program Files (x86)\MSBuild
2015-12-26 12:07:43 ----D---- C:\inetpub
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-12-26 12:06:26 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-12-26 12:06:20 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-12-26 12:06:19 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-12-20 21:18:06 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-12-20 21:17:34 ----A---- C:\WINDOWS\avastSS.scr
2015-12-20 21:17:06 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2015-12-20 10:45:54 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt(151).sys
======List of files/folders modified in the last 1 month======
2016-01-02 11:56:55 ----D---- C:\Program Files\trend micro
2016-01-02 11:55:04 ----D---- C:\WINDOWS\Temp
2016-01-02 11:52:11 ----D---- C:\WINDOWS\system32\sru
2016-01-02 11:48:25 ----D---- C:\WINDOWS\Tasks
2016-01-02 11:48:25 ----D---- C:\Program Files\Google
2016-01-02 11:48:25 ----D---- C:\Program Files (x86)\Google
2016-01-01 20:33:44 ----DC---- C:\AdwCleaner
2016-01-01 18:38:22 ----D---- C:\Windows
2016-01-01 18:34:02 ----D---- C:\WINDOWS\system32\LogFiles
2016-01-01 18:33:58 ----D---- C:\WINDOWS\SoftwareDistribution
2016-01-01 18:26:51 ----D---- C:\WINDOWS\debug
2016-01-01 18:21:21 ----D---- C:\Users\pc\AppData\Roaming\uTorrent
2016-01-01 18:11:26 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2016-01-01 18:11:21 ----D---- C:\WINDOWS\INF
2016-01-01 18:00:37 ----D---- C:\WINDOWS\system32\Tasks
2016-01-01 18:00:06 ----RD---- C:\Program Files
2016-01-01 17:58:35 ----D---- C:\WINDOWS\AppReadiness
2016-01-01 17:56:39 ----D---- C:\Users\pc\AppData\Roaming\vlc
2016-01-01 14:28:08 ----D---- C:\WINDOWS\Microsoft.NET
2015-12-31 18:55:15 ----D---- C:\WINDOWS\rescache
2015-12-31 18:50:37 ----D---- C:\WINDOWS\Logs
2015-12-31 17:33:50 ----D---- C:\WINDOWS\system32\config
2015-12-31 15:05:35 ----D---- C:\WINDOWS\system32\DriverStore
2015-12-31 15:05:23 ----D---- C:\WINDOWS\WinSxS
2015-12-31 14:54:54 ----HD---- C:\Program Files\WindowsApps
2015-12-31 03:32:09 ----RD---- C:\WINDOWS\assembly
2015-12-30 14:10:36 ----SHD---- C:\WINDOWS\Installer
2015-12-30 14:10:34 ----D---- C:\Config.Msi
2015-12-30 14:09:29 ----RSD---- C:\WINDOWS\Fonts
2015-12-30 14:09:10 ----D---- C:\WINDOWS\SysWOW64
2015-12-30 14:09:08 ----RD---- C:\Program Files (x86)
2015-12-30 14:09:08 ----HD---- C:\ProgramData
2015-12-30 14:09:08 ----D---- C:\Program Files (x86)\Common Files
2015-12-30 13:25:57 ----D---- C:\WINDOWS\CbsTemp
2015-12-30 13:24:58 ----SHD---- C:\System Volume Information
2015-12-30 11:37:00 ----D---- C:\WINDOWS\System32
2015-12-30 11:23:37 ----D---- C:\WINDOWS\system32\WDI
2015-12-29 21:59:08 ----D---- C:\WINDOWS\system32\drivers
2015-12-29 21:48:44 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-12-28 17:46:21 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-12-28 17:46:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-12-28 17:46:07 ----D---- C:\WINDOWS\system32\oobe
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\migration
2015-12-28 17:46:06 ----D---- C:\WINDOWS\system32\Dism
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\cs-CZ
2015-12-28 17:46:05 ----D---- C:\WINDOWS\system32\appraiser
2015-12-28 17:45:40 ----RD---- C:\WINDOWS\PurchaseDialog
2015-12-28 17:45:40 ----D---- C:\WINDOWS\Provisioning
2015-12-28 17:45:35 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-12-28 17:45:34 ----D---- C:\WINDOWS\bcastdvr
2015-12-28 17:45:34 ----D---- C:\WINDOWS\AppPatch
2015-12-28 17:45:33 ----D---- C:\Program Files\Internet Explorer
2015-12-28 17:45:33 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-28 17:42:29 ----D---- C:\WINDOWS\system32\catroot2
2015-12-27 22:10:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-12-27 04:55:43 ----D---- C:\WINDOWS\appcompat
2015-12-26 13:40:45 ----RD---- C:\WINDOWS\DevicesFlow
2015-12-26 13:22:12 ----RD---- C:\WINDOWS\PrintDialog
2015-12-26 13:22:10 ----RD---- C:\WINDOWS\MiracastView
2015-12-26 13:21:34 ----SD---- C:\ProgramData\Microsoft
2015-12-26 13:11:09 ----D---- C:\WINDOWS\system32\restore
2015-12-26 13:07:33 ----D---- C:\Program Files\Windows NT
2015-12-26 13:04:02 ----D---- C:\WINDOWS\Registration
2015-12-26 13:03:45 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-12-26 13:00:42 ----RSD---- C:\WINDOWS\Media
2015-12-26 13:00:37 ----D---- C:\WINDOWS\system32\drivers\etc
2015-12-26 12:56:00 ----D---- C:\WINDOWS\system32\wbem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\oem
2015-12-26 12:49:48 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\OEM
2015-12-26 12:49:48 ----D---- C:\WINDOWS\system32\NDF
2015-12-26 12:49:47 ----D---- C:\WINDOWS\ShellNew
2015-12-26 12:49:46 ----SD---- C:\WINDOWS\Downloaded Program Files
2015-12-26 12:49:46 ----D---- C:\WINDOWS\cs
2015-12-26 12:49:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-12-26 12:42:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-12-26 12:42:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\wfp
2015-12-26 12:42:27 ----D---- C:\WINDOWS\system32\SPReview
2015-12-26 12:42:26 ----D---- C:\WINDOWS\system32\spool
2015-12-26 12:42:23 ----D---- C:\WINDOWS\system32\MRT
2015-12-26 12:42:22 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\IME
2015-12-26 12:42:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-12-26 12:42:19 ----D---- C:\WINDOWS\system32\CatRoot
2015-12-26 12:42:17 ----D---- C:\WINDOWS\schemas
2015-12-26 12:42:17 ----D---- C:\WINDOWS\Resources
2015-12-26 12:42:16 ----D---- C:\WINDOWS\OCR
2015-12-26 12:42:00 ----D---- C:\WINDOWS\ehome
2015-12-26 12:41:58 ----RD---- C:\Users
2015-12-26 12:41:53 ----D---- C:\ProgramData\USOPrivate
2015-12-26 12:41:53 ----D---- C:\ProgramData\SoftwareDistribution
2015-12-26 12:41:39 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-12-26 12:41:39 ----D---- C:\Program Files (x86)\Windows Mail
2015-12-26 12:41:38 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-26 12:41:35 ----SHD---- C:\Program Files\Windows Sidebar
2015-12-26 12:41:35 ----D---- C:\Program Files\Windows Mail
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft.NET
2015-12-26 12:41:34 ----D---- C:\Program Files\Microsoft Games
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\System
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-26 12:41:34 ----D---- C:\Program Files\Common Files
2015-12-26 12:39:05 ----D---- C:\WINDOWS\system32\Recovery
2015-12-26 12:36:22 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-12-26 12:33:15 ----D---- C:\WINDOWS\system32\Sysprep
2015-12-26 12:26:26 ----D---- C:\WINDOWS\ServiceProfiles
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-12-26 12:07:46 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\MUI
2015-12-26 12:07:45 ----D---- C:\WINDOWS\system32\inetsrv
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-12-26 12:07:32 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-12-26 12:07:31 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-12-26 12:07:30 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-12-26 12:07:28 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-12-26 12:07:27 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-12-26 12:07:26 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-12-26 12:07:25 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-12-26 12:07:24 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-12-26 12:07:22 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-12-26 12:07:21 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-12-26 12:07:20 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-12-26 12:07:19 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-12-26 12:07:17 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-12-26 12:07:16 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-12-21 16:00:54 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-21 16:00:53 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-12-21 14:43:56 ----D---- C:\ProgramData\Microsoft Help
2015-12-21 14:41:53 ----A---- C:\WINDOWS\win.ini
2015-12-21 14:19:01 ----A---- C:\WINDOWS\system32\MRT.exe
2015-12-20 19:55:43 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswNdisFlt;@oem34.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2015-12-20 466400]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-12-20 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-12-20 273784]
R0 iaStor;@oem39.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-05-20 557848]
R0 speedfan;speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2015-12-20 28144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-12-20 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-12-20 1055560]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-12-20 451040]
R1 dtsoftbus01;@oem37.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2013-05-27 283200]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 mwlPSDFilter;mwlPSDFilter; C:\WINDOWS\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 22576]
R1 mwlPSDNServ;mwlPSDNServ; C:\WINDOWS\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 20016]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\WINDOWS\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60464]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-12-20 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-12-20 97648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-12-20 155304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 AgereSoftModem;@oem36.inf,%ServiceName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [2009-06-11 1208320]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-01-13 11922944]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-01-13 359936]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 AtiHDAudioService;@oem28.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW76.sys [2013-02-14 96768]
R3 DKbFltr;@oem26.inf,%DKbFltr.SvcDesc%;Dritek Keyboard Filter Driver (64-bit); C:\WINDOWS\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2009-08-06 1974944]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2015-10-30 446464]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-26 175616]
R3 SynTP;@oem32.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2009-09-18 292912]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-11-22 117248]
S3 dg_ssudbus;@oem21.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-11-26 108800]
S3 fssfltr;fssfltr; C:\WINDOWS\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 ssudmdm;@oem15.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-11-26 206080]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-29 81088]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-03-27 16896]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-01-13 238080]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2015-12-20 226440]
R2 avast! Firewall;Avast Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2015-12-20 109520]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-09-30 844320]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-26 26624]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 OneSyncSvc_4ea83;Hostitel synchronizace_4ea83; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2014-03-15 39568]
R2 RealPlayer Cloud Service;RealPlayer Cloud Service; c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [2014-04-06 1141848]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-09-24 62720]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_334f6;Hostitel synchronizace_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3606a;Hostitel synchronizace_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_484b8;Hostitel synchronizace_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_63962;Hostitel synchronizace_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6f8c3;Hostitel synchronizace_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_d243ad;Hostitel synchronizace_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 RealPlayerUpdateSvc;RealPlayer Update Service; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [2014-03-20 23552]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-28 182768]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_334f6;Služba zasílání zpráv_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3606a;Služba zasílání zpráv_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_484b8;Služba zasílání zpráv_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4ea83;Služba zasílání zpráv_4ea83; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_63962;Služba zasílání zpráv_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6f8c3;Služba zasílání zpráv_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_d243ad;Služba zasílání zpráv_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-26 129976]
S3 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-11 305448]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_334f6;Data kontaktů_334f6; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3606a;Data kontaktů_3606a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_484b8;Data kontaktů_484b8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4ea83;Data kontaktů_4ea83; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_63962;Data kontaktů_63962; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6f8c3;Data kontaktů_6f8c3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_d243ad;Data kontaktů_d243ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
restart do naběhnutí systemu trval 3min.. nefunguje v liště tlačítko start ani po druhém restartu.. prohlížeč se výrazně zrychlil..větrák běží naplno..
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosím o kontrolu.. pomalý nb.. možná něco s win10..
To desítky občas dělají a my nevíme proč. U jiných verzí se toto neděje. Zkuste obnovu systému k datu, kdy korektně fungoval.mipo píše:restart do naběhnutí systemu trval 3min.. nefunguje v liště tlačítko start ani po druhém restartu.. prohlížeč se výrazně zrychlil..větrák běží naplno..
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?