Prosím o kontrolu po instalaci W8 se objeví malware a nevím

Zpráva

Benovelitel · #1 Příspěvek od **Benovelitel** » 24 bře 2016 18:54

Logfile of random's system information tool 1.10 (written by random/random)
Run by Beno-1 at 2016-03-24 18:52:02
Microsoft Windows 8
System drive C: has 70 GB (61%) free of 116 GB
Total RAM: 6040 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:52:17, on 24. 3. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16453)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files\trend micro\Beno-1.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=HPNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll
O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - Global Startup: iSCTsysTray.lnk = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe
O8 - Extra context menu item: Odeslat do Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra 'Tools' menuitem: Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe
O9 - Extra button: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connected Remote Service (HPConnectedRemote) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem20.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: ISCT Always Updated Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 10699 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\IDT\WDM\STacSV64.exe"
atieclxx
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 801679098528
\??\C:\Windows\system32\conhost.exe 0x4
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskhostex.exe
"\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskeng.exe {7CF95B8C-6FDA-46F4-A0F2-384A6FA2C600}
C:\Windows\Explorer.EXE
ClassicStartMenu.exe -startup
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\Windows\SysWOW64\irstrtsv.exe
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Windows Defender\MsMpEng.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b52ff876-8450-4a2f-a516-4d8304f7bee1 -SystemEventPortName:HostProcess-a31c4aed-42fc-43d3-bcf7-0f32ed9e577c -IoCancelEventPortName:HostProcess-5f62b29e-2fd2-4e3d-a975-41c88c2f425c -NonStateChangingEventPortName:HostProcess-870dd024-bca7-4ef6-a0b4-9874be366cab -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:60cd6bc2-60f4-467e-a384-b2614d9eb77b -DeviceGroupId:WpdFsGroup
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17516_none_6276a5b950d43361\TiWorker.exe -Embedding
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
C:\Windows\system32\msiexec.exe /V
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" -byrunkey
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Absolute Software\Absolute Reminder\AbsoluteReminder.exe" -ShowOption -d
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --no-rate-limit "--database=C:\Users\Beno-1\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=49.0.2623.87 --handshake-handle=0xfc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2944.0.1096896259\1336415461" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=3,9,11,16,25,54 --gpu-vendor-id=0x1002 --gpu-device-id=0x0000 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=9.3.6.0 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2944.1.1368644940\1377474034" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2944.3.410347714\723760826" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2944.5.238420107\1667898926" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2944.6.454716697\109153326" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2944.7.892959136\1959872285" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding --disable-features=UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/IntelligentSessionRestore/Enabled2/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Stable_EthersuggestPrefix_A1/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*SpdyEnableDependencies/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_09/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_01/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebRTC-LocalIPPermissionCheck/Enabled/WebRTC-PeerConnectionDTLS1.2/Enabled/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="2944.8.776206454\81969926" /prefetch:1
rundll32.exe aeinv.dll,UpdateSoftwareInventory
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe

wmiadap.exe /F /T /R
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe" /taskrestart
"C:\Users\Beno-1\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20 483520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{449D0D6E-2412-4E61-B68F-1CB625CD9E52}]
ExplorerBHO Class - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2012-07-09 351136]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA801577-E6AD-4BD5-8F71-4BE0154331A4}]
ClassicIEBHO Class - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20 440512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20 803520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{553891B7-A0D5-4526-BE18-D3CE461D6310} - Classic Explorer Bar - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20 683200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-10-25 1664000]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2012-08-27 11577216]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-09-28 2950456]
"Classic Start Menu"=C:\Program Files\Classic Shell\ClassicStartMenu.exe [2014-04-20 161984]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-10-11 171040]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-10-11 399392]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-10-11 441888]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2012-07-13 93296]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-09-07 581024]
"HP CoolSense"=C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2012-09-14 1342008]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-05 642728]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
iSCTsysTray.lnk - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-10-11 441856]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-03-25 00:40:52 ----A---- C:\Recovery.txt
2016-03-24 18:52:12 ----D---- C:\Program Files\trend micro
2016-03-24 18:52:02 ----D---- C:\rsit
2016-03-24 18:49:00 ----D---- C:\Users\Beno-1\AppData\Roaming\MyPhoneExplorer
2016-03-24 18:48:47 ----D---- C:\Program Files (x86)\MyPhoneExplorer
2016-03-24 18:26:05 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2016-03-24 18:26:05 ----A---- C:\Windows\system32\TsWpfWrp.exe
2016-03-24 18:23:51 ----A---- C:\Windows\system32\WPRO_41_2001woem.tmp
2016-03-24 18:23:45 ----A---- C:\Windows\system32\FNTCACHE.DAT
2016-03-24 18:16:39 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2016-03-24 18:16:39 ----A---- C:\Windows\system32\Windows.Globalization.dll
2016-03-24 18:10:50 ----D---- C:\Program Files\DIFX
2016-03-24 18:10:50 ----A---- C:\Windows\SYSWOW64\drivers\adusbser.sys
2016-03-24 18:10:41 ----D---- C:\Program Files\AnyDATA
2016-03-24 18:10:39 ----D---- C:\Program Files (x86)\Wireless modem driver
2016-03-24 18:03:45 ----SD---- C:\Windows\system32\CompatTel
2016-03-24 18:03:45 ----D---- C:\Windows\system32\appraiser
2016-03-24 18:03:45 ----D---- C:\Windows\Migration
2016-03-24 17:57:56 ----D---- C:\Program Files (x86)\Cisco
2016-03-24 17:57:25 ----SHD---- C:\Config.Msi
2016-03-24 17:57:15 ----D---- C:\ProgramData\Package Cache
2016-03-24 17:51:54 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2016-03-24 17:51:54 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2016-03-24 17:51:54 ----A---- C:\Windows\system32\VSSVC.exe
2016-03-24 17:51:54 ----A---- C:\Windows\system32\vsstrace.dll
2016-03-24 17:51:54 ----A---- C:\Windows\system32\vssapi.dll
2016-03-24 17:43:06 ----D---- C:\Sensarea
2016-03-24 17:36:57 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-03-24 17:36:55 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-03-24 17:36:53 ----A---- C:\Windows\system32\mstscax.dll
2016-03-24 17:36:53 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2016-03-24 17:36:52 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2016-03-24 17:36:52 ----A---- C:\Windows\system32\wmpmde.dll
2016-03-24 17:36:52 ----A---- C:\Windows\system32\winmde.dll
2016-03-24 17:36:51 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2016-03-24 17:36:51 ----A---- C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2016-03-24 17:36:50 ----A---- C:\Windows\SYSWOW64\netcfgx.dll
2016-03-24 17:36:50 ----A---- C:\Windows\system32\TimeBrokerServer.dll
2016-03-24 17:36:50 ----A---- C:\Windows\system32\SystemEventsBrokerServer.dll
2016-03-24 17:36:50 ----A---- C:\Windows\system32\drivers\storport.sys
2016-03-24 17:36:50 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2016-03-24 17:36:49 ----A---- C:\Windows\SYSWOW64\winmde.dll
2016-03-24 17:36:49 ----A---- C:\Windows\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-03-24 17:36:49 ----A---- C:\Windows\SYSWOW64\drvstore.dll
2016-03-24 17:36:49 ----A---- C:\Windows\system32\wpdbusenum.dll
2016-03-24 17:36:49 ----A---- C:\Windows\system32\usbmon.dll
2016-03-24 17:36:49 ----A---- C:\Windows\system32\SettingSync.dll
2016-03-24 17:36:49 ----A---- C:\Windows\system32\netcfgx.dll
2016-03-24 17:36:49 ----A---- C:\Windows\system32\drivers\bthport.sys
2016-03-24 17:36:48 ----A---- C:\Windows\SYSWOW64\SettingSync.dll
2016-03-24 17:36:48 ----A---- C:\Windows\system32\drvstore.dll
2016-03-24 17:36:48 ----A---- C:\Windows\system32\drivers\rfcomm.sys
2016-03-24 17:36:48 ----A---- C:\Windows\system32\discan.dll
2016-03-24 17:36:47 ----A---- C:\Windows\SYSWOW64\SettingSyncInfo.dll
2016-03-24 17:36:47 ----A---- C:\Windows\SYSWOW64\DevDispItemProvider.dll
2016-03-24 17:36:47 ----A---- C:\Windows\system32\WSDPrintProxy.DLL
2016-03-24 17:36:47 ----A---- C:\Windows\system32\NdisImPlatform.dll
2016-03-24 17:36:47 ----A---- C:\Windows\system32\fsquirt.exe
2016-03-24 17:36:47 ----A---- C:\Windows\system32\drivers\tpm.sys
2016-03-24 17:36:47 ----A---- C:\Windows\system32\drivers\storahci.sys
2016-03-24 17:36:47 ----A---- C:\Windows\system32\drivers\sdbus.sys
2016-03-24 17:36:47 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2016-03-24 17:36:47 ----A---- C:\Windows\system32\DevDispItemProvider.dll
2016-03-24 17:36:46 ----A---- C:\Windows\system32\SettingSyncInfo.dll
2016-03-24 17:36:46 ----A---- C:\Windows\system32\drivers\mouhid.sys
2016-03-24 17:36:46 ----A---- C:\Windows\system32\drivers\monitor.sys
2016-03-24 17:36:39 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2016-03-24 17:36:38 ----A---- C:\Windows\system32\twinui.dll
2016-03-24 17:36:37 ----A---- C:\Windows\SYSWOW64\twinui.dll
2016-03-24 17:36:36 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2016-03-24 17:36:34 ----A---- C:\Windows\system32\sysmain.dll
2016-03-24 17:36:34 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2016-03-24 17:36:33 ----A---- C:\Windows\system32\ubpm.dll
2016-03-24 17:36:33 ----A---- C:\Windows\system32\drivers\rdbss.sys
2016-03-24 17:36:33 ----A---- C:\Windows\system32\BCP47Langs.dll
2016-03-24 17:36:32 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2016-03-24 17:36:32 ----A---- C:\Windows\system32\netprofmsvc.dll
2016-03-24 17:36:32 ----A---- C:\Windows\system32\authui.dll
2016-03-24 17:36:31 ----A---- C:\Windows\SYSWOW64\BCP47Langs.dll
2016-03-24 17:36:31 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-03-24 17:36:30 ----A---- C:\Windows\system32\stobject.dll
2016-03-24 17:36:30 ----A---- C:\Windows\system32\psmsrv.dll
2016-03-24 17:36:30 ----A---- C:\Windows\system32\netprofm.dll
2016-03-24 17:36:30 ----A---- C:\Windows\system32\netplwiz.dll
2016-03-24 17:36:30 ----A---- C:\Windows\system32\mfmp4srcsnk.dll
2016-03-24 17:36:30 ----A---- C:\Windows\system32\Magnify.exe
2016-03-24 17:36:30 ----A---- C:\Windows\system32\drivers\USBHUB3.SYS
2016-03-24 17:36:30 ----A---- C:\Windows\system32\drivers\UCX01000.SYS
2016-03-24 17:36:30 ----A---- C:\Windows\system32\drivers\hidclass.sys
2016-03-24 17:36:30 ----A---- C:\Windows\system32\AppXDeploymentExtensions.dll
2016-03-24 17:36:29 ----A---- C:\Windows\SYSWOW64\stobject.dll
2016-03-24 17:36:29 ----A---- C:\Windows\SYSWOW64\netplwiz.dll
2016-03-24 17:36:29 ----A---- C:\Windows\SYSWOW64\Magnify.exe
2016-03-24 17:36:29 ----A---- C:\Windows\system32\taskhost.exe
2016-03-24 17:36:29 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2016-03-24 17:36:29 ----A---- C:\Windows\system32\drivers\spaceport.sys
2016-03-24 17:36:29 ----A---- C:\Windows\system32\DevicePairing.dll
2016-03-24 17:36:29 ----A---- C:\Windows\system32\AuthHost.exe
2016-03-24 17:36:28 ----A---- C:\Windows\SYSWOW64\netprofm.dll
2016-03-24 17:36:28 ----A---- C:\Windows\SYSWOW64\DevicePairing.dll
2016-03-24 17:36:28 ----A---- C:\Windows\SYSWOW64\biwinrt.dll
2016-03-24 17:36:28 ----A---- C:\Windows\system32\taskhostex.exe
2016-03-24 17:36:28 ----A---- C:\Windows\system32\drivers\hidusb.sys
2016-03-24 17:36:28 ----A---- C:\Windows\system32\biwinrt.dll
2016-03-24 17:36:28 ----A---- C:\Windows\system32\bisrv.dll
2016-03-24 17:36:27 ----A---- C:\Windows\SYSWOW64\npmproxy.dll
2016-03-24 17:36:27 ----A---- C:\Windows\SYSWOW64\nlmproxy.dll
2016-03-24 17:36:27 ----A---- C:\Windows\SYSWOW64\muifontsetup.dll
2016-03-24 17:36:27 ----A---- C:\Windows\SYSWOW64\mfmp4srcsnk.dll
2016-03-24 17:36:27 ----A---- C:\Windows\system32\muifontsetup.dll
2016-03-24 17:36:26 ----A---- C:\Windows\SYSWOW64\nlmsprep.dll
2016-03-24 17:36:18 ----A---- C:\Windows\SYSWOW64\untfs.dll
2016-03-24 17:36:18 ----A---- C:\Windows\SYSWOW64\autochk.exe
2016-03-24 17:36:18 ----A---- C:\Windows\system32\untfs.dll
2016-03-24 17:36:18 ----A---- C:\Windows\system32\kernel32.dll
2016-03-24 17:36:18 ----A---- C:\Windows\system32\autochk.exe
2016-03-24 17:36:17 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-03-24 17:35:07 ----A---- C:\Windows\system32\wmp.dll
2016-03-24 17:35:07 ----A---- C:\Windows\system32\tquery.dll
2016-03-24 17:35:04 ----A---- C:\Windows\SYSWOW64\wmp.dll
2016-03-24 17:35:04 ----A---- C:\Windows\system32\mssrch.dll
2016-03-24 17:35:01 ----A---- C:\Windows\SYSWOW64\tquery.dll
2016-03-24 17:34:58 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2016-03-24 17:34:52 ----A---- C:\Windows\system32\ntdll.dll
2016-03-24 17:34:50 ----A---- C:\Windows\system32\MSAudDecMFT.dll
2016-03-24 17:34:50 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-03-24 17:34:49 ----A---- C:\Windows\SYSWOW64\MSAudDecMFT.dll
2016-03-24 17:34:48 ----A---- C:\Windows\system32\schedsvc.dll
2016-03-24 17:34:48 ----A---- C:\Windows\system32\kd_02_10ec.dll
2016-03-24 17:34:47 ----A---- C:\Windows\SYSWOW64\mssph.dll
2016-03-24 17:34:47 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2016-03-24 17:34:47 ----A---- C:\Windows\system32\SearchIndexer.exe
2016-03-24 17:34:47 ----A---- C:\Windows\system32\drivers\srv2.sys
2016-03-24 17:34:47 ----A---- C:\Windows\system32\audiosrv.dll
2016-03-24 17:34:46 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-03-24 17:34:46 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2016-03-24 17:34:46 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-03-24 17:34:46 ----A---- C:\Windows\system32\schannel.dll
2016-03-24 17:34:46 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2016-03-24 17:34:46 ----A---- C:\Windows\system32\rsaenh.dll
2016-03-24 17:34:46 ----A---- C:\Windows\system32\kerberos.dll
2016-03-24 17:34:46 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2016-03-24 17:34:46 ----A---- C:\Windows\system32\AudioSes.dll
2016-03-24 17:34:45 ----A---- C:\Windows\SYSWOW64\rsaenh.dll
2016-03-24 17:34:45 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2016-03-24 17:34:45 ----A---- C:\Windows\system32\Windows.Networking.dll
2016-03-24 17:34:45 ----A---- C:\Windows\system32\mssph.dll
2016-03-24 17:34:45 ----A---- C:\Windows\system32\dwmredir.dll
2016-03-24 17:34:45 ----A---- C:\Windows\system32\conhost.exe
2016-03-24 17:34:45 ----A---- C:\Windows\system32\AudioEng.dll
2016-03-24 17:34:45 ----A---- C:\Windows\system32\audiodg.exe
2016-03-24 17:34:44 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2016-03-24 17:34:44 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-03-24 17:34:44 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2016-03-24 17:34:44 ----A---- C:\Windows\system32\wpncore.dll
2016-03-24 17:34:44 ----A---- C:\Windows\system32\RecoveryDrive.exe
2016-03-24 17:34:44 ----A---- C:\Windows\system32\drivers\srvnet.sys
2016-03-24 17:34:43 ----D---- C:\ProgramData\ManyCam
2016-03-24 17:34:43 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2016-03-24 17:34:43 ----A---- C:\Windows\system32\winload.exe
2016-03-24 17:34:43 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-03-24 17:34:43 ----A---- C:\Windows\system32\MFMediaEngine.dll
2016-03-24 17:34:42 ----A---- C:\Windows\system32\winresume.exe
2016-03-24 17:34:42 ----A---- C:\Windows\system32\dmvdsitf.dll
2016-03-24 17:34:42 ----A---- C:\Windows\system32\ci.dll
2016-03-24 17:34:41 ----D---- C:\Users\Beno-1\AppData\Roaming\ManyCam
2016-03-24 17:34:41 ----A---- C:\Windows\SYSWOW64\Windows.Networking.dll
2016-03-24 17:34:41 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2016-03-24 17:34:41 ----A---- C:\Windows\SYSWOW64\MFMediaEngine.dll
2016-03-24 17:34:41 ----A---- C:\Windows\system32\XpsRasterService.dll
2016-03-24 17:34:41 ----A---- C:\Windows\system32\fhengine.dll
2016-03-24 17:34:41 ----A---- C:\Windows\system32\actxprxy.dll
2016-03-24 17:34:40 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2016-03-24 17:34:40 ----A---- C:\Windows\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-03-24 17:34:40 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2016-03-24 17:34:40 ----A---- C:\Windows\system32\SearchFilterHost.exe
2016-03-24 17:34:40 ----A---- C:\Windows\system32\Robocopy.exe
2016-03-24 17:34:40 ----A---- C:\Windows\system32\mfreadwrite.dll
2016-03-24 17:34:40 ----A---- C:\Windows\system32\kdvm.dll
2016-03-24 17:34:40 ----A---- C:\Windows\system32\drivers\pdc.sys
2016-03-24 17:34:40 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2016-03-24 17:34:39 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2016-03-24 17:34:39 ----A---- C:\Windows\SYSWOW64\Robocopy.exe
2016-03-24 17:34:39 ----A---- C:\Windows\SYSWOW64\dmvdsitf.dll
2016-03-24 17:34:39 ----A---- C:\Windows\system32\kdnet.dll
2016-03-24 17:34:39 ----A---- C:\Windows\system32\iuilp.dll
2016-03-24 17:34:39 ----A---- C:\Windows\system32\drivers\hidbth.sys
2016-03-24 17:34:38 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2016-03-24 17:34:38 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2016-03-24 17:34:38 ----A---- C:\Windows\system32\wscsvc.dll
2016-03-24 17:34:38 ----A---- C:\Windows\system32\mssvp.dll
2016-03-24 17:34:38 ----A---- C:\Windows\system32\GenuineCenter.dll
2016-03-24 17:34:38 ----A---- C:\Windows\system32\drivers\wanarp.sys
2016-03-24 17:34:38 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2016-03-24 17:34:38 ----A---- C:\Windows\system32\drivers\hidi2c.sys
2016-03-24 17:34:37 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2016-03-24 17:34:37 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2016-03-24 17:34:37 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2016-03-24 17:34:37 ----A---- C:\Windows\SYSWOW64\fmifs.dll
2016-03-24 17:34:37 ----A---- C:\Windows\system32\mssprxy.dll
2016-03-24 17:34:37 ----A---- C:\Windows\system32\msshooks.dll
2016-03-24 17:34:37 ----A---- C:\Windows\system32\fmifs.dll
2016-03-24 17:34:36 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-03-24 17:34:36 ----A---- C:\Windows\system32\tzres.dll
2016-03-24 17:34:36 ----A---- C:\Windows\system32\msscntrs.dll
2016-03-24 17:34:31 ----A---- C:\Windows\system32\drivers\mcvidrv_x64.sys
2016-03-24 17:34:22 ----D---- C:\Program Files (x86)\ManyCam
2016-03-24 17:34:00 ----D---- C:\Program Files (x86)\WinRAR
2016-03-24 17:32:28 ----D---- C:\Users\Beno-1\AppData\Roaming\FastStone
2016-03-24 17:32:06 ----D---- C:\Program Files\PhotoFiltre
2016-03-24 17:30:55 ----D---- C:\Program Files (x86)\FastStone Image Viewer
2016-03-24 17:25:41 ----N---- C:\Windows\system32\MpSigStub.exe
2016-03-24 17:24:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-03-24 17:23:59 ----A---- C:\Windows\system32\services.exe
2016-03-24 17:23:59 ----A---- C:\Windows\system32\localspl.dll
2016-03-24 17:23:59 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2016-03-24 17:23:58 ----A---- C:\Windows\system32\wuaext.dll
2016-03-24 17:23:58 ----A---- C:\Windows\system32\win32spl.dll
2016-03-24 17:23:47 ----A---- C:\Windows\system32\wuaueng.dll
2016-03-24 17:23:45 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2016-03-24 17:23:45 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2016-03-24 17:23:45 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2016-03-24 17:23:45 ----A---- C:\Windows\system32\wuwebv.dll
2016-03-24 17:23:45 ----A---- C:\Windows\system32\WUSettingsProvider.dll
2016-03-24 17:23:45 ----A---- C:\Windows\system32\wudriver.dll
2016-03-24 17:23:45 ----A---- C:\Windows\system32\wucltux.dll
2016-03-24 17:23:45 ----A---- C:\Windows\system32\wuauclt.exe
2016-03-24 17:23:45 ----A---- C:\Windows\system32\wuapp.exe
2016-03-24 17:23:45 ----A---- C:\Windows\system32\wuapi.dll
2016-03-24 17:23:45 ----A---- C:\Windows\system32\storewuauth.dll
2016-03-24 17:23:44 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2016-03-24 17:23:10 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2016-03-24 17:23:10 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2016-03-24 17:23:10 ----A---- C:\Windows\system32\dnsapi.dll
2016-03-24 17:23:09 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2016-03-24 17:23:09 ----A---- C:\Windows\system32\dnsrslvr.dll
2016-03-24 17:21:39 ----A---- C:\Windows\system32\cryptcatsvc.dll
2016-03-24 17:21:37 ----A---- C:\Windows\system32\sppobjs.dll
2016-03-24 17:21:34 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2016-03-24 17:21:34 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-24 17:21:34 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-03-24 17:21:34 ----A---- C:\Windows\system32\WSShared.dll
2016-03-24 17:21:34 ----A---- C:\Windows\system32\NotificationUI.exe
2016-03-24 17:21:33 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-24 17:21:29 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2016-03-24 17:21:28 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2016-03-24 17:21:19 ----A---- C:\Windows\system32\sppsvc.exe
2016-03-24 17:21:18 ----A---- C:\Windows\system32\WSService.dll
2016-03-24 17:21:16 ----A---- C:\Windows\SYSWOW64\sppc.dll
2016-03-24 17:21:16 ----A---- C:\Windows\system32\WinSetupUI.dll
2016-03-24 17:21:16 ----A---- C:\Windows\system32\sppwinob.dll
2016-03-24 17:21:16 ----A---- C:\Windows\system32\sppc.dll
2016-03-24 17:21:15 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2016-03-24 17:21:15 ----A---- C:\Windows\system32\WSSync.dll
2016-03-24 17:21:15 ----A---- C:\Windows\system32\WSClient.dll
2016-03-24 17:21:15 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-03-24 17:21:15 ----A---- C:\Windows\system32\drivers\dam.sys
2016-03-24 17:21:14 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2016-03-24 17:21:14 ----A---- C:\Windows\SYSWOW64\setupcln.dll
2016-03-24 17:21:14 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll
2016-03-24 17:21:14 ----A---- C:\Windows\system32\setupcln.dll
2016-03-24 17:20:58 ----A---- C:\Windows\SYSWOW64\msctf.dll
2016-03-24 17:20:58 ----A---- C:\Windows\system32\msctf.dll
2016-03-24 17:20:50 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-03-24 17:20:50 ----A---- C:\Windows\system32\gdi32.dll
2016-03-24 17:20:24 ----A---- C:\Windows\system32\win32k.sys
2016-03-24 17:19:13 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2016-03-24 17:19:13 ----A---- C:\Windows\system32\msxml6.dll
2016-03-24 17:19:13 ----A---- C:\Windows\system32\msxml3.dll
2016-03-24 17:19:12 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2016-03-24 17:19:12 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2016-03-24 17:19:12 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2016-03-24 17:19:12 ----A---- C:\Windows\system32\msxml6r.dll
2016-03-24 17:19:12 ----A---- C:\Windows\system32\msxml3r.dll
2016-03-24 17:18:55 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2016-03-24 17:18:55 ----A---- C:\Windows\system32\apphelp.dll
2016-03-24 17:18:55 ----A---- C:\Windows\system32\aelupsvc.dll
2016-03-24 17:18:54 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2016-03-24 17:18:54 ----A---- C:\Windows\system32\sdbinst.exe
2016-03-24 17:17:10 ----A---- C:\Windows\system32\invagent.dll
2016-03-24 17:17:10 ----A---- C:\Windows\system32\generaltel.dll
2016-03-24 17:17:10 ----A---- C:\Windows\system32\devinv.dll
2016-03-24 17:17:10 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-03-24 17:17:10 ----A---- C:\Windows\system32\appraiser.dll
2016-03-24 17:17:10 ----A---- C:\Windows\system32\aepic.dll
2016-03-24 17:17:10 ----A---- C:\Windows\system32\aeinv.dll
2016-03-24 17:17:10 ----A---- C:\Windows\system32\acmigration.dll
2016-03-24 17:16:18 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2016-03-24 17:16:18 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2016-03-24 17:16:18 ----A---- C:\Windows\system32\wpdshext.dll
2016-03-24 17:15:37 ----A---- C:\Windows\system32\shell32.dll
2016-03-24 17:15:36 ----A---- C:\Windows\SYSWOW64\shell32.dll
2016-03-24 17:15:32 ----A---- C:\Windows\system32\SHCore.dll
2016-03-24 17:15:31 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2016-03-24 17:15:31 ----A---- C:\Windows\system32\profsvc.dll
2016-03-24 17:15:27 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2016-03-24 17:15:27 ----A---- C:\Windows\SYSWOW64\ReAgentc.exe
2016-03-24 17:15:27 ----A---- C:\Windows\system32\ReAgentc.exe
2016-03-24 17:15:26 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2016-03-24 17:15:26 ----A---- C:\Windows\system32\WMPhoto.dll
2016-03-24 17:15:26 ----A---- C:\Windows\system32\msdrm.dll
2016-03-24 17:15:21 ----A---- C:\Windows\system32\tssdisai.dll
2016-03-24 17:15:19 ----A---- C:\Windows\system32\RDWebAI.dll
2016-03-24 17:15:19 ----A---- C:\Windows\system32\poqexec.exe
2016-03-24 17:15:18 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2016-03-24 17:15:18 ----A---- C:\Windows\system32\VmHostAI.dll
2016-03-24 17:15:18 ----A---- C:\Windows\system32\appserverai.dll
2016-03-24 17:06:11 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2016-03-24 17:06:11 ----A---- C:\Windows\system32\shdocvw.dll
2016-03-24 17:06:11 ----A---- C:\Windows\system32\consent.exe
2016-03-24 17:06:11 ----A---- C:\Windows\system32\appinfo.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\ucrtbase.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-24 16:48:55 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-24 16:48:54 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2016-03-24 16:48:54 ----A---- C:\Windows\SYSWOW64\PhotoMetadataHandler.dll
2016-03-24 16:48:54 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-24 16:48:54 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2016-03-24 16:46:51 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2016-03-24 16:46:51 ----A---- C:\Windows\system32\msieftp.dll
2016-03-24 16:46:50 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-03-24 16:46:50 ----A---- C:\Windows\system32\crypt32.dll
2016-03-24 16:37:35 ----A---- C:\Windows\SYSWOW64\wups.dll
2016-03-24 16:37:34 ----A---- C:\Windows\system32\wups2.dll
2016-03-24 16:37:34 ----A---- C:\Windows\system32\wups.dll
2016-03-24 16:24:18 ----A---- C:\Windows\SYSWOW64\mmc.exe
2016-03-24 16:24:18 ----A---- C:\Windows\system32\wlidsvc.dll
2016-03-24 16:24:18 ----A---- C:\Windows\system32\mmc.exe
2016-03-24 16:24:16 ----A---- C:\Windows\system32\setupapi.dll
2016-03-24 16:24:14 ----A---- C:\Windows\SYSWOW64\setupapi.dll
2016-03-24 16:24:14 ----A---- C:\Windows\system32\Windows.Media.dll
2016-03-24 16:24:14 ----A---- C:\Windows\system32\lsm.dll
2016-03-24 16:24:14 ----A---- C:\Windows\system32\drivers\msgpiowin32.sys
2016-03-24 16:24:14 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2016-03-24 16:24:13 ----A---- C:\Windows\system32\iphlpsvc.dll
2016-03-24 16:24:13 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2016-03-24 16:24:13 ----A---- C:\Windows\system32\drivers\partmgr.sys
2016-03-24 16:24:12 ----A---- C:\Windows\SYSWOW64\Windows.Media.dll
2016-03-24 16:24:12 ----A---- C:\Windows\SYSWOW64\wiaacmgr.exe
2016-03-24 16:24:12 ----A---- C:\Windows\SYSWOW64\MP4SDECD.DLL
2016-03-24 16:24:12 ----A---- C:\Windows\system32\WSDMon.dll
2016-03-24 16:24:12 ----A---- C:\Windows\system32\wiaacmgr.exe
2016-03-24 16:24:12 ----A---- C:\Windows\system32\samsrv.dll
2016-03-24 16:24:12 ----A---- C:\Windows\system32\ncbservice.dll
2016-03-24 16:24:12 ----A---- C:\Windows\system32\MP4SDECD.DLL
2016-03-24 16:24:12 ----A---- C:\Windows\system32\inetpp.dll
2016-03-24 16:24:12 ----A---- C:\Windows\system32\httpprxm.dll
2016-03-24 16:24:12 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-03-24 16:24:12 ----A---- C:\Windows\system32\adhsvc.dll
2016-03-24 16:24:11 ----A---- C:\Windows\SYSWOW64\samlib.dll
2016-03-24 16:24:11 ----A---- C:\Windows\system32\keepaliveprovider.dll
2016-03-24 16:24:11 ----A---- C:\Windows\system32\httpprxp.dll
2016-03-24 16:24:11 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2016-03-24 16:24:11 ----A---- C:\Windows\system32\drivers\bthenum.sys
2016-03-24 16:24:11 ----A---- C:\Windows\system32\adhapi.dll
2016-03-24 16:23:40 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2016-03-24 16:23:40 ----A---- C:\Windows\SYSWOW64\msvcp120_clr0400.dll
2016-03-24 16:23:40 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
2016-03-24 16:23:39 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2016-03-24 16:23:30 ----A---- C:\Windows\system32\drivers\tcpip.sys
2016-03-24 16:23:26 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2016-03-24 16:23:26 ----A---- C:\Windows\system32\WsmSvc.dll
2016-03-24 16:23:26 ----A---- C:\Windows\system32\drivers\Classpnp.sys
2016-03-24 16:23:25 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2016-03-24 16:23:25 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-03-24 16:23:25 ----A---- C:\Windows\system32\WsmWmiPl.dll
2016-03-24 16:23:25 ----A---- C:\Windows\system32\rpchttp.dll
2016-03-24 16:23:24 ----A---- C:\Windows\SYSWOW64\FXSCOMEX.dll
2016-03-24 16:23:24 ----A---- C:\Windows\SYSWOW64\FXSAPI.dll
2016-03-24 16:23:24 ----A---- C:\Windows\system32\FXSTIFF.dll
2016-03-24 16:23:24 ----A---- C:\Windows\system32\FXST30.dll
2016-03-24 16:23:24 ----A---- C:\Windows\system32\FXSCOMEX.dll
2016-03-24 16:23:24 ----A---- C:\Windows\system32\FXSAPI.dll
2016-03-24 16:23:01 ----A---- C:\Windows\system32\wevtsvc.dll
2016-03-24 16:22:39 ----A---- C:\Windows\SYSWOW64\duser.dll
2016-03-24 16:22:39 ----A---- C:\Windows\system32\wlroamextension.dll
2016-03-24 16:22:39 ----A---- C:\Windows\system32\duser.dll
2016-03-24 16:22:39 ----A---- C:\Windows\system32\drivers\ndis.sys
2016-03-24 16:22:38 ----A---- C:\Windows\system32\WWanAPI.dll
2016-03-24 16:22:38 ----A---- C:\Windows\system32\Windows.Networking.Connectivity.dll
2016-03-24 16:22:38 ----A---- C:\Windows\system32\ncsi.dll
2016-03-24 16:22:38 ----A---- C:\Windows\system32\hotspotauth.dll
2016-03-24 16:22:38 ----A---- C:\Windows\system32\drivers\usbhub.sys
2016-03-24 16:22:38 ----A---- C:\Windows\system32\drivers\ntfs.sys
2016-03-24 16:22:38 ----A---- C:\Windows\system32\drivers\BthAvrcpTg.sys
2016-03-24 16:22:37 ----A---- C:\Windows\SYSWOW64\WWanAPI.dll
2016-03-24 16:22:37 ----A---- C:\Windows\SYSWOW64\wlroamextension.dll
2016-03-24 16:22:37 ----A---- C:\Windows\SYSWOW64\Windows.Networking.Connectivity.dll
2016-03-24 16:22:37 ----A---- C:\Windows\SYSWOW64\taskkill.exe
2016-03-24 16:22:37 ----A---- C:\Windows\SYSWOW64\mbsmsapi.dll
2016-03-24 16:22:37 ----A---- C:\Windows\system32\tasklist.exe
2016-03-24 16:22:37 ----A---- C:\Windows\system32\taskkill.exe
2016-03-24 16:22:37 ----A---- C:\Windows\system32\mbsmsapi.dll
2016-03-24 16:22:37 ----A---- C:\Windows\system32\drivers\ks.sys
2016-03-24 16:22:37 ----A---- C:\Windows\system32\drivers\crashdmp.sys
2016-03-24 16:22:36 ----A---- C:\Windows\SYSWOW64\tasklist.exe
2016-03-24 16:22:36 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2016-03-24 16:22:36 ----A---- C:\Windows\system32\wpd_ci.dll
2016-03-24 16:22:36 ----A---- C:\Windows\system32\wersvc.dll
2016-03-24 16:22:36 ----A---- C:\Windows\system32\drivers\usbohci.sys
2016-03-24 16:22:36 ----A---- C:\Windows\system32\drivers\BthhfHid.sys
2016-03-24 16:22:36 ----A---- C:\Windows\system32\drivers\BtaMPM.sys
2016-03-24 16:22:28 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-03-24 16:22:28 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-03-24 16:22:21 ----A---- C:\Windows\system32\GdiPlus.dll
2016-03-24 16:22:20 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2016-03-24 16:22:09 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2016-03-24 16:22:09 ----A---- C:\Windows\system32\cryptdlg.dll
2016-03-24 16:21:37 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2016-03-24 16:21:37 ----A---- C:\Windows\system32\d3d11.dll
2016-03-24 16:21:32 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2016-03-24 16:21:32 ----A---- C:\Windows\system32\oleaut32.dll
2016-03-24 16:21:17 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-03-24 16:21:17 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-03-24 16:21:12 ----A---- C:\Windows\SYSWOW64\ReAgent.dll
2016-03-24 16:21:11 ----A---- C:\Windows\SYSWOW64\esent.dll
2016-03-24 16:21:11 ----A---- C:\Windows\system32\reseteng.dll
2016-03-24 16:21:11 ----A---- C:\Windows\system32\ReAgent.dll
2016-03-24 16:21:10 ----A---- C:\Windows\system32\esent.dll
2016-03-24 16:10:24 ----D---- C:\Program Files (x86)\Google
2016-03-24 16:07:24 ----D---- C:\ProgramData\ATI
2016-03-24 16:07:04 ----D---- C:\Program Files\ATI Technologies
2016-03-24 15:49:55 ----D---- C:\Users\Beno-1\AppData\Roaming\hpqlog
2016-03-24 15:49:41 ----D---- C:\Program Files\CCleaner
2016-03-24 15:48:54 ----D---- C:\Users\Beno-1\AppData\Roaming\ClassicShell
2016-03-24 15:48:21 ----D---- C:\Program Files\Classic Shell
2016-03-24 15:48:05 ----D---- C:\Users\Beno-1\AppData\Roaming\Hewlett-Packard
2016-03-24 15:46:43 ----D---- C:\Users\Beno-1\AppData\Roaming\CyberLink
2016-03-24 15:46:10 ----D---- C:\Users\Beno-1\AppData\Roaming\ATI
2016-03-24 15:45:42 ----D---- C:\Users\Beno-1\AppData\Roaming\Adobe
2016-03-24 15:45:18 ----D---- C:\Users\Beno-1\AppData\Roaming\Synaptics
2016-03-24 15:45:11 ----D---- C:\Users\Beno-1\AppData\Roaming\Intel
2016-03-24 15:45:10 ----SD---- C:\Users\Beno-1\AppData\Roaming\Microsoft
2016-03-24 15:45:07 ----D---- C:\Windows\SoftwareDistribution
2016-03-24 15:43:43 ----SHD---- C:\ProgramData\Šablony
2016-03-24 15:43:43 ----SHD---- C:\ProgramData\Plocha
2016-03-24 15:43:43 ----SHD---- C:\ProgramData\Nabídka Start
2016-03-24 15:43:43 ----SHD---- C:\ProgramData\Dokumenty
2016-03-24 15:43:43 ----SHD---- C:\ProgramData\Data aplikací
2016-03-24 15:43:28 ----ASH---- C:\hiberfil.sys
2016-03-24 15:41:21 ----ASH---- C:\swapfile.sys
2016-03-24 15:41:21 ----ASH---- C:\pagefile.sys
2016-03-24 15:41:18 ----SHD---- C:\System Volume Information

======List of files/folders modified in the last 1 month======

2016-03-24 18:52:12 ----RD---- C:\Program Files
2016-03-24 18:52:10 ----D---- C:\Windows\Prefetch
2016-03-24 18:51:44 ----D---- C:\Windows\system32\catroot2
2016-03-24 18:51:40 ----D---- C:\Windows\WinSxS
2016-03-24 18:51:38 ----D---- C:\Windows\Temp
2016-03-24 18:49:50 ----A---- C:\Windows\SYSWOW64\log.txt
2016-03-24 18:48:49 ----D---- C:\Windows\SysWOW64
2016-03-24 18:48:47 ----RD---- C:\Program Files (x86)
2016-03-24 18:47:53 ----D---- C:\Windows\CbsTemp
2016-03-24 18:47:50 ----D---- C:\Windows\system32\config
2016-03-24 18:47:37 ----RD---- C:\Windows\System32
2016-03-24 18:47:29 ----D---- C:\Windows\system32\Drivers
2016-03-24 18:40:58 ----D---- C:\Windows
2016-03-24 18:39:59 ----D---- C:\Windows\Microsoft.NET
2016-03-24 18:30:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-03-24 18:30:10 ----D---- C:\Windows\Inf
2016-03-24 18:26:59 ----D---- C:\Windows\SYSWOW64\en-US
2016-03-24 18:26:59 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-03-24 18:26:59 ----D---- C:\Windows\system32\en-US
2016-03-24 18:26:59 ----D---- C:\Windows\system32\cs-CZ
2016-03-24 18:23:12 ----D---- C:\Windows\servicing
2016-03-24 18:22:09 ----D---- C:\Windows\system32\AdvancedInstallers
2016-03-24 18:22:09 ----D---- C:\Windows\apppatch
2016-03-24 18:22:08 ----D---- C:\Program Files\Windows Defender
2016-03-24 18:22:08 ----D---- C:\Program Files (x86)\Windows Defender
2016-03-24 18:22:07 ----RSD---- C:\Windows\Fonts
2016-03-24 18:22:07 ----D---- C:\Windows\system32\sk-SK
2016-03-24 18:22:07 ----D---- C:\Windows\system32\en-GB
2016-03-24 18:22:06 ----RD---- C:\Windows\ToastData
2016-03-24 18:22:06 ----D---- C:\Windows\WinStore
2016-03-24 18:22:06 ----D---- C:\Windows\SYSWOW64\sk-SK
2016-03-24 18:22:06 ----D---- C:\Windows\SYSWOW64\en-GB
2016-03-24 18:22:05 ----D---- C:\Windows\system32\DriverStore
2016-03-24 18:10:50 ----D---- C:\Windows\SYSWOW64\drivers
2016-03-24 18:10:49 ----D---- C:\Windows\system32\catroot
2016-03-24 18:03:54 ----D---- C:\Windows\system32\migration
2016-03-24 18:03:54 ----D---- C:\Windows\PolicyDefinitions
2016-03-24 18:03:51 ----D---- C:\Windows\system32\wbem
2016-03-24 18:03:50 ----D---- C:\Windows\SYSWOW64\wbem
2016-03-24 18:03:47 ----D---- C:\Program Files\Windows Photo Viewer
2016-03-24 18:03:46 ----D---- C:\Windows\SYSWOW64\Dism
2016-03-24 18:03:46 ----D---- C:\Windows\system32\Dism
2016-03-24 18:03:46 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-03-24 18:03:45 ----SD---- C:\ProgramData\Microsoft
2016-03-24 18:03:41 ----D---- C:\Windows\system32\Boot
2016-03-24 18:03:39 ----D---- C:\Windows\system32\oobe
2016-03-24 18:02:01 ----D---- C:\Windows\system32\sru
2016-03-24 17:58:29 ----SHD---- C:\Windows\Installer
2016-03-24 17:58:29 ----D---- C:\ProgramData\Intel
2016-03-24 17:57:56 ----D---- C:\Program Files\Common Files\Intel
2016-03-24 17:57:56 ----D---- C:\Program Files (x86)\Intel
2016-03-24 17:57:54 ----D---- C:\ProgramData\Intel.sav
2016-03-24 17:57:52 ----D---- C:\Program Files\Intel
2016-03-24 17:57:15 ----HD---- C:\ProgramData
2016-03-24 17:57:06 ----D---- C:\Intel
2016-03-24 17:34:22 ----D---- C:\ProgramData\Temp
2016-03-24 17:31:28 ----D---- C:\Windows\system32\wdi
2016-03-24 17:27:52 ----D---- C:\Windows\SYSWOW64\migration
2016-03-24 17:27:50 ----D---- C:\Windows\system32\drivers\UMDF
2016-03-24 17:19:02 ----D---- C:\Program Files\Common Files\microsoft shared
2016-03-24 16:44:25 ----D---- C:\Windows\system32\Tasks
2016-03-24 16:29:23 ----D---- C:\Windows\Panther
2016-03-24 16:12:00 ----D---- C:\Windows\Logs
2016-03-24 16:10:27 ----D---- C:\Windows\Tasks
2016-03-24 16:03:20 ----D---- C:\Program Files (x86)\ATI Technologies
2016-03-24 16:02:58 ----SHD---- C:\$Recycle.Bin
2016-03-24 15:57:48 ----D---- C:\SWSetup
2016-03-24 15:52:29 ----D---- C:\ProgramData\Norton
2016-03-24 15:51:55 ----D---- C:\Program Files\Common Files
2016-03-24 15:50:14 ----D---- C:\Windows\debug
2016-03-24 15:47:54 ----D---- C:\Windows\system32\restore
2016-03-24 15:46:59 ----D---- C:\ProgramData\Hewlett-Packard
2016-03-24 15:46:48 ----D---- C:\ProgramData\CyberLink
2016-03-24 15:45:41 ----RD---- C:\Program Files (x86)\Online Services
2016-03-24 15:45:35 ----AHD---- C:\SYSTEM.SAV
2016-03-24 15:45:10 ----RD---- C:\Users
2016-03-24 15:43:43 ----D---- C:\Program Files\Windows NT
2016-03-24 15:42:56 ----D---- C:\Windows\system32\Recovery

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem4.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\Windows\System32\drivers\amdkmpfd.sys [2012-09-13 36520]
R0 hpdskflt;@oem20.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-08-23 29600]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2012-09-29 650808]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R3 Accelerometer;@oem20.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-08-23 42400]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-05 10699264]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-05 459776]
R3 AMPPAL;@oem16.inf,%AMPPAL.SVCDESC%;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® + High Speed; C:\Windows\System32\drivers\AMPPAL.sys [2012-09-13 162344]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\Windows\System32\drivers\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 btmaux;@oem22.inf,%BTMAUX.ServiceDesc%;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2012-08-27 121728]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2012-08-29 857472]
R3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-08-06 68136]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2012-08-16 20968]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2012-08-16 19944]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys [2012-10-11 5343584]
R3 irstrtdv;@oem9.inf,%Irstrt.DispName%;Intel(R) Rapid Start Technology Driver; C:\Windows\System32\drivers\irstrtdv.sys [2012-07-21 43800]
R3 ISCT;@oem7.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\Windows\System32\drivers\ISCTD64.sys [2012-08-16 46016]
R3 iwdbus;@oem24.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2012-08-09 25568]
R3 ManyCam;@oem28.inf,%ManyCam.DeviceDesc%;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [2013-01-15 44544]
R3 mcaudrv_simple;@oem29.inf,%mcaudrv_simple.SvcDesc%;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2013-01-31 28160]
R3 MEIx64;@oem8.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2012-07-03 62784]
R3 NETwNe64;@oem30.inf,%NIC_Service_DispName_WIN8_64%;Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\Windows\system32\DRIVERS\NETwew00.sys [2013-10-08 3345376]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\System32\drivers\rfcomm.sys [2013-03-01 156672]
R3 RSBASTOR;@oem13.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\Windows\system32\DRIVERS\RtsBaStor.sys [2012-09-19 298128]
R3 RTL8168;@oem12.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-08-01 690832]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-09-28 44344]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-10-25 543744]
R3 SynTP;@oem11.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-09-28 458040]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
S3 AMPPALP;@oem17.inf,%AMPPALP_Desc%;Protokol Intel® Centrino® Wireless Bluetooth® + High Speed; C:\Windows\system32\DRIVERS\amppal.sys [2012-09-13 162344]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-10-11 5343584]
S3 intaud_WaveExtensible;@oem23.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2012-08-09 35296]
S3 SmbDrv;SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [2012-09-28 41272]
S3 usb3Hub;@oem25.inf,%usb3Hub.SVCDESC%;USB-IF USB 3.0 Hub; C:\Windows\System32\drivers\usb3Hub.sys [2012-08-09 48096]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2012-12-18 210304]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-05 239616]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-09-13 731688]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2012-12-18 29696]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-08-27 1112000]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-09-06 1124288]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-08-15 135984]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-08-28 626416]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPConnectedRemote;HP Connected Remote Service; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [2012-10-12 35744]
R2 hpsrv;@oem20.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2012-08-23 29600]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-09-07 35232]
R2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-09-29 14904]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-09-13 2466448]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 irstrtsv;Intel(R) Rapid Start Technology Service; C:\Windows\SysWOW64\irstrtsv.exe [2012-07-20 193576]
R2 ISCTAgent;ISCT Always Updated Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2012-08-16 149032]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-08-28 149744]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-10-25 327680]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-27 43616]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-09-07 1001376]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-24 154440]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-12 51648]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-10-11 277024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-24 154440]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-08-28 273136]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2012-12-18 29696]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 24 bře 2016 19:56

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

VIRY.CZ

Prosím o kontrolu po instalaci W8 se objeví malware a nevím

Prosím o kontrolu po instalaci W8 se objeví malware a nevím

Re: Prosím o kontrolu po instalaci W8 se objeví malware a ne