Logfile of random's system information tool 1.10 (written by random/random)
Run by Patrik at 2016-06-17 12:19:46
Microsoft Windows 10 Home
System drive C: has 52 GB (11%) free of 459 GB
Total RAM: 3986 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:19:58, on 17. 6. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0420)
Boot mode: Normal
Running processes:
C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyCrashService.exe
C:\Users\Patrik\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\trend micro\Patrik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: ::1 localhost
O2 - BHO: CrossriderApp0061855 - {11111111-1111-1111-1111-110611181155} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: (no name) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Patrik\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Patrik\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: Dropbox.lnk = Patrik\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: Lingea Update Center.lnk = C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe
O4 - Startup: Monitor Ink Alerts - HP Deskjet 2050 J510 series.lnk = ?
O4 - Startup: Orezávač obrazovky a spúšťač programu OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: TotalVPN.lnk = Patrik\AppData\Local\TotalVPN\TotalVPN.exe
O4 - Global Startup: AutorunsDisabled
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Windows\System32\GFNEXSrv.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: OpenVPN Manager Service (OVPNService) - Unknown owner - C:\Users\Patrik\AppData\Local\TotalVPN\OVPN.Service.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16384 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
dashost.exe {61e73591-af6c-4c6f-92399db0613766da}
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\GFNEXSrv.exe
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
C:\windows\system32\TODDSrv.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"
"C:\Program Files\TOSHIBA\TECO\TecoService.exe"
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe"
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
"C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe"
"C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe"
"C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe"
"C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
"C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyCrashService.exe"
"C:\Users\Patrik\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE" /tsr
"fontdrvhost.exe"
"C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe" --type=gpu-process --channel="10592.0.26451467\2070878146" --no-sandbox --disable-d3d11 --enable-crash-reporter --lang=en-US --log-file="C:\Users\Patrik\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.29.92 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,23,51 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.4229 --enable-crash-reporter --lang=en-US --log-file="C:\Users\Patrik\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.29.92 /prefetch:822062411
"C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe" --type=renderer --disable-pinch --no-sandbox --lang=en-US --enable-crash-reporter --lang=en-US --log-file="C:\Users\Patrik\AppData\Roaming\Spotify\debug.log" --log-severity=disable --product-version=Spotify/1.0.29.92 --disable-extensions --disable-spell-checking --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="10592.1.2054005996\1253597029" /prefetch:673131151
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.49020.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.20961.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\LockAppHost.exe -Embedding
"C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
taskeng.exe {B89D3D81-86F5-4831-9ECA-E7C5382EB793}
"C:\Users\Patrik\Downloads\RSITx64.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2370796447-4283009116-356483575-100078_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2370796447-4283009116-356483575-100078 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 628 632 640 8192 636
======Scheduled tasks folder======
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-1.job - C:\Program Files (x86)\TheTorntv V10\TheTorntv V10-codedownloader.exe /DhLutSr /CQunBqq=task /hdiaC='TheTorntv V10' /bDjaQPWG=61855 /GshHoh='001823' /nPRSF='0' /kCgjl='0' /hvSbiA=03FE12CA98F54EA18315FA707693135EIE /aVxHCw=c9f977e62c48a21bf3269e0fc1da680d /QBvboUVo=1_34_07_29 /tNwoNcP=1.34.7.29 /URdcIxKJ=1407061652 /aZUPSsR=http://stats.infogenservice.com /Skaqk=http://errors.infogenservice.com /HLANOpM=http://cr.install-daddy.com /hFXuC=ch /CsFWUqs='TheTorntv V10' /tEBKp=http://cr.install-daddy.com /uplKW /JifQZhZQy='{"asw":[2, -2147483643, 0]}' /JXIAdYO='http://update.infogenservice.com/ie_cod ... pdate.json' /CQunBqq='task' /ZTAyAHQ=''
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-11.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-11.exe /HdBXdl=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
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-2.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-2.exe /ePZSpy /hdiaC='TheTorntv V10' /bDjaQPWG=61855 /GshHoh='001823' /nPRSF='0' /kCgjl='0' /hvSbiA=03FE12CA98F54EA18315FA707693135EIE /aVxHCw=c9f977e62c48a21bf3269e0fc1da680d /QBvboUVo=1_34_07_29 /URdcIxKJ=1407061652 /aZUPSsR=http://stats.infogenservice.com /Skaqk=http://errors.infogenservice.com /hDlXcLe=11111111-1111-1111-1111-110611181155 /hFXuC=ch /uplKW /JXIAdYO='http://update.infogenservice.com/ie_ena ... pdate.json' /CQunBqq='task' /ZTAyAHQ=''
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-3.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-3.exe /HdBXdl=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
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-4.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-4.exe /ytIcaVuk /hdiaC='TheTorntv V10' /OyROGGJ='C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8.xpi' /bDjaQPWG=61855 /GshHoh='001823' /nPRSF='0' /kCgjl='0' /hvSbiA=03FE12CA98F54EA18315FA707693135EIE /aVxHCw=c9f977e62c48a21bf3269e0fc1da680d /QBvboUVo=1_34_07_29 /tNwoNcP=1.34.7.29 /URdcIxKJ=1407061652 /aZUPSsR=http://stats.infogenservice.com /Skaqk=http://errors.infogenservice.com /Khhudv=300 /aNzODm=44e4876d5886435183fea8e@44f892d6c2ac4a44858c85e3636.com /kFZdKjCLZ=0.95 /oDpqZ=a44e4876d5886435183fea8e44f892d6c2ac4a44858c85e3636com61855 /XQbaqBYaC=https://w9u6a2p6.ssl.hwcdn.net/plugin/f ... /61855.rdf /wsOYO='TheTorntv V10' /hsYaQb='The must-have App extensions for Television fans! Watch free TV channels, live sports and more' /wtWSSVLw='esc' /hFXuC=ch /JifQZhZQy='{"asw":[2, -2147483643, 0]}' /uplKW /NbpTo /YmMweS /JXIAdYO='http://update.infogenservice.com/ff_age ... pdate.json' /CQunBqq='task' /ZTAyAHQ=''
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-5.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-5.exe /KygFEL /hdiaC='TheTorntv V10' /bDjaQPWG=61855 /GshHoh='001823' /nPRSF='0' /kCgjl='0' /hvSbiA=03FE12CA98F54EA18315FA707693135EIE /aVxHCw=c9f977e62c48a21bf3269e0fc1da680d /QBvboUVo=1_34_07_29 /URdcIxKJ=1407061652 /aZUPSsR=http://stats.infogenservice.com /Skaqk=http://errors.infogenservice.com /piakQyo=http://ipgeoapi.com/ /gqmfSwCqW=http://update.infogenservice.com /czjxmm=2 /DIPQvM=http://logs.infogenservice.com /JXIAdYO='http://update.infogenservice.com/update ... pdate.json' /CQunBqq='task' /ZTAyAHQ=''
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-5_user.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-5.exe /KygFEL /hdiaC='TheTorntv V10' /bDjaQPWG=61855 /GshHoh='001823' /nPRSF='0' /kCgjl='0' /hvSbiA=03FE12CA98F54EA18315FA707693135EIE /aVxHCw=c9f977e62c48a21bf3269e0fc1da680d /QBvboUVo=1_34_07_29 /URdcIxKJ=1407061652 /aZUPSsR=http://stats.infogenservice.com /Skaqk=http://errors.infogenservice.com /piakQyo=http://ipgeoapi.com/ /gqmfSwCqW=http://update.infogenservice.com /czjxmm=2 /DIPQvM=http://logs.infogenservice.com /JXIAdYO='http://update.infogenservice.com/update ... pdate.json' /njyFF /CQunBqq='task' /ZTAyAHQ=''
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-6.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-6.exe /hdiaC='TheTorntv V10' /bDjaQPWG=61855 /GshHoh='001823' /nPRSF='0' /kCgjl='0' /hvSbiA=03FE12CA98F54EA18315FA707693135EIE /aVxHCw=c9f977e62c48a21bf3269e0fc1da680d /QBvboUVo=1_34_07_29 /tNwoNcP=1.34.7.29 /URdcIxKJ=1407061652 /aZUPSsR=http://stats.infogenservice.com /Skaqk=http://errors.infogenservice.com /HLANOpM=http://cr.install-daddy.com /hFXuC=ch /fXeeQcRh /CsFWUqs=TheTorntv V10 /ytaihaN1cf591f6-46a0-4588-8ade-70a6e9d1be2d.dll /bPcJJ24831f60-df13-433d-ba65-b2c3f1a31c71.dll /SyidorGA17e26686-620a-4d06-9220-22b8b3c078a8-64.exe /xFqIDuwCL='nova' /tEBKp=http://cr.install-daddy.com /JifQZhZQy='{"asw":[2, -2147483643, 0]}' /JXIAdYO='http://update.infogenservice.com/novaru ... pdate.json' /CQunBqq='task' /ZTAyAHQ=''
C:\WINDOWS\tasks\17e26686-620a-4d06-9220-22b8b3c078a8-7.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-7.exe /ReEdPC /hdiaC='TheTorntv V10' /bDjaQPWG=61855 /GshHoh='001823' /nPRSF='0' /kCgjl='0' /hvSbiA=03FE12CA98F54EA18315FA707693135EIE /aVxHCw=c9f977e62c48a21bf3269e0fc1da680d /QBvboUVo=1_34_07_29 /tNwoNcP=1.34.7.29 /URdcIxKJ=1407061652 /aZUPSsR=http://stats.infogenservice.com /Skaqk=http://errors.infogenservice.com /HLANOpM=http://cr.install-daddy.com /hFXuC=ch /fXeeQcRh /CsFWUqs=TheTorntv V10 /ytaihaN1cf591f6-46a0-4588-8ade-70a6e9d1be2d.dll /bPcJJ24831f60-df13-433d-ba65-b2c3f1a31c71.dll /SyidorGA17e26686-620a-4d06-9220-22b8b3c078a8-64.exe /xFqIDuwCL='nova' /tEBKp=http://cr.install-daddy.com /JifQZhZQy='{"asw":[2, -2147483643, 0]}' /CQunBqq=task /JXIAdYO='http://update.infogenservice.com/novaco ... pdate.json' /CQunBqq='task' /ZTAyAHQ=''
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\caed23e3-c6f3-451c-bee4-fe1eda4871a2.job - C:\Program Files (x86)\TheTorntv V10\17e26686-620a-4d06-9220-22b8b3c078a8-4.exe /HdBXdl=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
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2370796447-4283009116-356483575-1000Core.job - C:\Users\Patrik\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2370796447-4283009116-356483575-1000UA.job - C:\Users\Patrik\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2370796447-4283009116-356483575-1000Core.job - C:\Users\Patrik\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-2370796447-4283009116-356483575-1000UA.job - C:\Users\Patrik\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\ukloug46.default
prefs.js - "browser.startup.homepage" - "about:home"
prefs.js - "keyword.URL" - "https://www.google.com/search"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll
C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\ukloug46.default\searchplugins\
Google.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611181155}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-06-11 231104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-02 662672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-06-11 586528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-11 2095920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]
TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\x64\TOSHIBAMediaControllerIE.dll [2011-11-03 700800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611181155}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-06-11 170696]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-07-11 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-02 565304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-06-11 1538352]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-07-11 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]
TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2011-11-03 534400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 453552]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-09-27 13196432]
"SRS Premium Sound HD"=C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe [2012-02-06 2165120]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2011-09-23 590256]
"TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2011-12-14 989056]
"TosWaitSrv"=C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [2011-12-15 712096]
"TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2011-11-26 710560]
"TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376]
"VDownloader"=C:\Program Files (x86)\VDownloader\VDownloader4.exe [2014-10-23 3017216]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-10-08 3954880]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Patrik\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-12-20 138096]
"Dropbox Update"=C:\Users\Patrik\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16 134512]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-01-15 4177784]
"Spotify Web Helper"=C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2016-05-30 1554032]
"Spotify"=C:\Users\Patrik\AppData\Roaming\Spotify\Spotify.exe [2016-05-30 6859888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Patrik\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64"=C:\WINDOWS\system32\cmd.exe [2015-10-30 233984]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-05 291608]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"TkBellExe"=C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [2014-02-26 295512]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-11 256896]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-07-02 5515496]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AutorunsDisabled
C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Patrik\AppData\Roaming\Dropbox\bin\Dropbox.exe
Lingea Update Center.lnk - C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe
Monitor Ink Alerts - HP Deskjet 2050 J510 series.lnk - C:\windows\system32\RunDll32.exe
Orezávač obrazovky a spúšťač programu OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
TotalVPN.lnk - C:\Users\Patrik\AppData\Local\TotalVPN\TotalVPN.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 451584]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"DSCAutomationHostEnabled"=2
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-06-17 12:19:49 ----D---- C:\Program Files\trend micro
2016-06-16 15:41:33 ----SHD---- C:\found.003
2016-06-14 21:35:39 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-06-14 21:35:37 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-06-14 21:35:33 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-06-14 21:35:33 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-06-14 21:35:33 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-06-14 21:35:33 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-06-14 21:35:32 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-06-14 21:35:31 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-06-14 21:35:31 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-06-14 21:35:30 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-06-14 21:35:29 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-06-14 21:35:29 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-06-14 21:35:28 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-06-14 21:35:27 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-06-14 21:35:25 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-06-14 21:35:23 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-06-14 21:35:19 ----A---- C:\WINDOWS\system32\mos.dll
2016-06-14 21:35:17 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-06-14 21:35:17 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-06-14 21:35:17 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-14 21:35:15 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-14 21:35:15 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-06-14 21:35:02 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-06-14 21:35:01 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-14 21:34:59 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-14 21:34:59 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-06-14 21:34:58 ----A---- C:\WINDOWS\system32\tdlrecover.exe
2016-06-14 21:34:58 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-14 21:34:56 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-06-14 21:34:56 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-06-14 21:34:56 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-06-14 21:34:55 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-06-14 21:34:55 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-06-14 21:34:55 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-06-14 21:34:52 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-06-14 21:34:50 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-14 21:34:48 ----A---- C:\WINDOWS\system32\twinui.dll
2016-06-14 21:34:45 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-06-14 21:34:42 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-06-14 21:34:40 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-06-14 21:34:39 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-06-14 21:34:35 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-14 21:34:34 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-14 21:34:32 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-06-14 21:34:31 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-06-14 21:34:28 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-14 21:34:23 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-06-14 21:34:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-06-14 21:34:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-06-14 21:34:18 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-06-14 21:34:17 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-14 21:34:17 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-14 21:34:16 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-06-14 21:34:16 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-06-14 21:34:16 ----A---- C:\WINDOWS\system32\moshost.dll
2016-06-14 21:34:16 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-06-14 21:34:15 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-06-14 21:34:14 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-06-14 21:34:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-06-14 21:34:11 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-06-14 21:34:10 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-06-14 21:34:09 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-14 21:34:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-06-14 21:34:07 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-06-14 21:34:06 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-06-14 21:34:05 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-06-14 21:34:05 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-06-14 21:34:02 ----A---- C:\WINDOWS\system32\ole32.dll
2016-06-14 21:34:01 ----A---- C:\WINDOWS\SYSWOW64\LocationFramework.dll
2016-06-14 21:34:01 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-06-14 21:34:00 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-06-14 21:34:00 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-14 21:33:59 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-06-14 21:33:58 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-06-14 21:33:58 ----A---- C:\WINDOWS\system32\drivers\dumpsdport.sys
2016-06-14 21:33:56 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-06-14 21:33:55 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-06-14 21:33:55 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-06-14 21:33:54 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-06-14 21:33:54 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-06-14 21:33:53 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-06-14 21:33:52 ----A---- C:\WINDOWS\system32\invagent.dll
2016-06-14 21:33:51 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-06-14 21:33:51 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-14 21:33:50 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-06-14 21:33:49 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-06-14 21:33:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-06-14 21:33:48 ----A---- C:\WINDOWS\SYSWOW64\tdlrecover.exe
2016-06-14 21:33:48 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-06-14 21:33:47 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-06-14 21:33:46 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-06-14 21:33:45 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-06-14 21:33:44 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-14 21:33:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-06-14 21:33:43 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-14 21:33:42 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-06-14 21:33:41 ----A---- C:\WINDOWS\explorer.exe
2016-06-14 21:33:40 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-06-14 21:33:40 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-06-14 21:33:39 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-06-14 21:33:38 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-06-14 21:33:36 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2016-06-14 21:33:35 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-06-14 21:33:35 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-06-14 21:33:34 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2016-06-14 21:33:34 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-14 21:33:34 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-14 21:33:32 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-06-14 21:33:32 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-14 21:33:32 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-06-14 21:33:31 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-06-14 21:33:31 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-06-14 21:33:30 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-06-14 21:33:28 ----A---- C:\WINDOWS\system32\rastls.dll
2016-06-14 21:33:27 ----A---- C:\WINDOWS\system32\usocore.dll
2016-06-14 21:33:27 ----A---- C:\WINDOWS\system32\SRH.dll
2016-06-14 21:33:27 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-06-14 21:33:27 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-14 21:33:26 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-06-14 21:33:26 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-06-14 21:33:25 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-06-14 21:33:24 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-06-14 21:33:24 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-06-14 21:33:23 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2016-06-14 21:33:19 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-06-14 21:33:19 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-06-14 21:33:18 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-06-14 21:33:18 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-06-14 21:33:18 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-06-14 21:33:17 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2016-06-14 21:33:16 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-06-14 21:33:16 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-06-14 21:33:16 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-06-14 21:33:15 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-06-14 21:33:14 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-06-14 21:33:13 ----A---- C:\WINDOWS\system32\shell32.dll
2016-06-14 21:33:09 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-06-14 21:33:09 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-06-14 21:33:08 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-06-14 21:33:08 ----A---- C:\WINDOWS\system32\vpnike.dll
2016-06-14 21:33:08 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-14 21:33:05 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-06-14 21:33:05 ----A---- C:\WINDOWS\system32\wininet.dll
2016-06-14 21:33:04 ----A---- C:\WINDOWS\system32\hal.dll
2016-06-14 21:33:03 ----A---- C:\WINDOWS\system32\mswsock.dll
2016-06-14 21:33:03 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-06-14 21:33:02 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-06-14 21:33:02 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2016-06-14 21:33:02 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-06-14 21:33:01 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-06-14 21:33:01 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-06-14 21:33:00 ----A---- C:\WINDOWS\system32\polstore.dll
2016-06-14 21:32:54 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-06-14 21:32:52 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-14 21:32:52 ----A---- C:\WINDOWS\system32\gpapi.dll
2016-06-14 21:32:52 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-06-14 21:32:51 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-06-14 21:32:51 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-06-14 21:32:51 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-14 21:32:49 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-06-14 21:32:49 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-14 21:32:49 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2016-06-14 21:32:48 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-06-14 21:32:48 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-06-14 21:32:47 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-06-14 21:32:47 ----A---- C:\WINDOWS\system32\internetmail.dll
2016-06-14 21:32:47 ----A---- C:\WINDOWS\system32\GnssAdapter.dll
2016-06-14 21:32:46 ----A---- C:\WINDOWS\system32\devinv.dll
2016-06-14 21:32:45 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-06-14 21:32:45 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-06-14 21:32:44 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-06-14 21:32:44 ----A---- C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-14 21:32:44 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-06-14 21:32:43 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-06-14 21:32:42 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-06-14 21:32:42 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-06-14 21:32:41 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2016-06-14 21:32:41 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-06-14 21:32:40 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2016-06-14 21:32:40 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-06-14 21:32:39 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-06-14 21:32:39 ----A---- C:\WINDOWS\system32\newdev.dll
2016-06-14 21:32:39 ----A---- C:\WINDOWS\system32\cdd.dll
2016-06-14 21:32:38 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-14 21:32:38 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2016-06-14 21:32:37 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-06-14 21:32:37 ----A---- C:\WINDOWS\system32\drivers\Ndu.sys
2016-06-14 21:32:37 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-06-14 21:32:36 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-06-14 21:32:36 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-06-14 21:32:33 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-06-14 21:32:32 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-06-14 21:32:31 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2016-06-14 21:32:31 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-14 21:32:30 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2016-06-14 21:32:30 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-14 21:32:29 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-14 21:32:29 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-14 21:32:29 ----A---- C:\WINDOWS\system32\httpprxp.dll
2016-06-14 21:32:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-06-14 21:32:27 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2016-06-14 21:32:27 ----A---- C:\WINDOWS\system32\adhsvc.dll
2016-06-14 21:32:26 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2016-06-14 21:32:26 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-06-14 21:32:26 ----A---- C:\WINDOWS\system32\httpprxm.dll
2016-06-14 21:32:25 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-14 21:32:25 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-06-14 21:32:24 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-06-14 21:32:24 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-06-14 21:32:24 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-06-14 21:32:21 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-06-14 21:32:20 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-06-14 21:32:20 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-06-14 21:32:19 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-06-14 21:32:19 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-14 21:32:19 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-06-14 21:32:19 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-06-14 21:32:19 ----A---- C:\WINDOWS\system32\AppCapture.dll
======List of files/folders modified in the last 1 month======
2016-06-17 12:19:49 ----RD---- C:\Program Files
2016-06-17 12:18:08 ----D---- C:\Users\Patrik\AppData\Roaming\Skype
2016-06-17 12:17:00 ----D---- C:\WINDOWS\Prefetch
2016-06-17 11:58:18 ----D---- C:\WINDOWS\Temp
2016-06-17 11:44:46 ----D---- C:\WINDOWS\system32\sru
2016-06-17 11:44:03 ----D---- C:\Users\Patrik\AppData\Roaming\Spotify
2016-06-17 10:58:50 ----HD---- C:\Program Files\WindowsApps
2016-06-17 10:55:34 ----D---- C:\WINDOWS\system32\Tasks
2016-06-17 10:52:01 ----D---- C:\WINDOWS\INF
2016-06-17 10:50:37 ----D---- C:\WINDOWS\AppReadiness
2016-06-16 19:54:11 ----D---- C:\WINDOWS\system32\config
2016-06-16 19:46:11 ----D---- C:\WINDOWS\System32
2016-06-16 19:46:11 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-16 19:44:19 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-06-16 19:42:04 ----D---- C:\Windows
2016-06-16 19:42:01 ----D---- C:\WINDOWS\WinSxS
2016-06-16 19:40:29 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-16 19:38:52 ----D---- C:\WINDOWS\system32\drivers
2016-06-16 19:12:46 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2016-06-16 19:12:46 ----D---- C:\WINDOWS\SysWOW64
2016-06-16 19:12:27 ----D---- C:\WINDOWS\system32\wbem
2016-06-16 19:12:27 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-06-16 19:12:25 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-06-16 19:12:25 ----D---- C:\WINDOWS\system32\sk-SK
2016-06-16 19:12:11 ----D---- C:\WINDOWS\bcastdvr
2016-06-16 19:12:11 ----D---- C:\WINDOWS\AppPatch
2016-06-16 19:12:11 ----D---- C:\Program Files\Internet Explorer
2016-06-16 19:12:11 ----D---- C:\Program Files (x86)\Internet Explorer
2016-06-16 19:12:09 ----D---- C:\WINDOWS\system32\migration
2016-06-16 16:01:09 ----D---- C:\WINDOWS\CbsTemp
2016-06-16 16:00:10 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-16 15:44:22 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-06-16 15:04:56 ----SHD---- C:\System Volume Information
2016-06-15 19:47:40 ----SHD---- C:\WINDOWS\Installer
2016-06-15 19:47:38 ----SHD---- C:\Config.Msi
2016-06-15 19:47:38 ----D---- C:\ProgramData\Microsoft Help
2016-06-15 01:35:03 ----D---- C:\WINDOWS\system32\MRT
2016-06-15 00:54:53 ----A---- C:\WINDOWS\system32\MRT.exe
2016-06-14 20:56:22 ----D---- C:\WINDOWS\system32\catroot2
2016-06-13 01:36:23 ----D---- C:\Program Files (x86)\Steam
2016-06-12 11:14:24 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-06-12 11:08:35 ----AD---- C:\Program Files (x86)\Microsoft Office
2016-06-06 14:22:45 ----D---- C:\ProgramData\Skype
2016-06-06 14:22:34 ----RD---- C:\Program Files (x86)\Skype
2016-06-03 21:08:07 ----D---- C:\Users\Patrik\AppData\Roaming\Dropbox
2016-05-28 07:55:39 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-07-02 65736]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-07-02 272248]
R0 iaStor;@oem12.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-11-30 568600]
R0 iusb3hcs;@oem10.inf,%XHCI_svcdesc%;Ovládač prepínača hostiteľského radiča Intel(R) USB 3.0; C:\WINDOWS\System32\drivers\iusb3hcs.sys [2012-01-05 16152]
R0 NBVol;Nero Backup Volume Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVol.sys [2011-12-01 72240]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\WINDOWS\system32\DRIVERS\NBVolUp.sys [2011-12-01 15920]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-07-02 93528]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-07-02 442264]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-07-02 29168]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-07-02 89944]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-07-02 137288]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2014-08-30 314016]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2014-08-30 43680]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 npf;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2010-01-27 47632]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-05-28 112640]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-05-28 84992]
R3 dtlitescsibus;@oem46.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-02-08 30264]
R3 dtliteusbbus;@oem4.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-02-08 47672]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-09-27 4155536]
R3 IntcDAud;@oem20.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 MEIx64;@oem59.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-17 62784]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-04-09 175616]
R3 PGEffect;Pangu effect driver; C:\WINDOWS\system32\DRIVERS\pgeffect.sys [2011-02-09 38096]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 181248]
R3 RSUSBSTOR;@oem14.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2011-08-17 251496]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-07-02 1047320]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-05-28 954368]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-13 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-07-02 343336]
R2 ClickToRunSvc;Služba Klikni a spusti balíka Microsoft Office; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-05-29 2855152]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2015-03-18 822496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 GFNEXSrv;GFNEX Service; C:\Windows\System32\GFNEXSrv.exe [2010-09-10 162824]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-01-21 277784]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-04-09 26624]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-04 687400]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 OneSyncSvc_12d96cc;Sync Host_12d96cc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2016-01-15 1369464]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1057bee;Sync Host_1057bee; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_142d69b;Sync Host_142d69b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1673f0c;Sync Host_1673f0c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1a51aab;Sync Host_1a51aab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1fb4f4e;Sync Host_1fb4f4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_207e654;Sync Host_207e654; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_222ae6b;Sync Host_222ae6b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_224634e;Sync Host_224634e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_24f05ee;Sync Host_24f05ee; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_252a07d;Sync Host_252a07d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2674783;Sync Host_2674783; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_26d62;Sync Host_26d62; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_303a8;Sync Host_303a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_30a5dfa;Sync Host_30a5dfa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_344e9;Sync Host_344e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_34dbe;Sync Host_34dbe; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_34dce;Sync Host_34dce; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3542273;Sync Host_3542273; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_361e5;Sync Host_361e5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3656c4;Sync Host_3656c4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_378da;Sync Host_378da; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3a7a3;Sync Host_3a7a3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3fd2b0a;Sync Host_3fd2b0a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4534d;Sync Host_4534d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_47a03;Sync Host_47a03; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_53edb16;Sync Host_53edb16; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_5cf38c7;Sync Host_5cf38c7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6609e0b;Sync Host_6609e0b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_68dab;Sync Host_68dab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6e12846;Sync Host_6e12846; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_844d9;Sync Host_844d9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12 269504]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1057bee;MessagingService_1057bee; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_12d96cc;MessagingService_12d96cc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_142d69b;MessagingService_142d69b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1673f0c;MessagingService_1673f0c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1a51aab;MessagingService_1a51aab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1fb4f4e;MessagingService_1fb4f4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_207e654;MessagingService_207e654; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_222ae6b;MessagingService_222ae6b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_224634e;MessagingService_224634e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_24f05ee;MessagingService_24f05ee; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_252a07d;MessagingService_252a07d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2674783;MessagingService_2674783; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_26d62;MessagingService_26d62; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_303a8;MessagingService_303a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_30a5dfa;MessagingService_30a5dfa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_344e9;MessagingService_344e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_34dbe;MessagingService_34dbe; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_34dce;MessagingService_34dce; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3542273;MessagingService_3542273; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_361e5;MessagingService_361e5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3656c4;MessagingService_3656c4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_378da;MessagingService_378da; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3a7a3;MessagingService_3a7a3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3fd2b0a;MessagingService_3fd2b0a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_47a03;MessagingService_47a03; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_53edb16;MessagingService_53edb16; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_5cf38c7;MessagingService_5cf38c7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6609e0b;MessagingService_6609e0b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_68dab;MessagingService_68dab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6e12846;MessagingService_6e12846; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_844d9;MessagingService_844d9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-12 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-01-02 2104840]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-05-30 212184]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2015-06-11 5132888]
S3 OVPNService;OpenVPN Manager Service; C:\Users\Patrik\AppData\Local\TotalVPN\OVPN.Service.exe [2016-05-19 20080]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1057bee;Kontaktné údaje_1057bee; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_12d96cc;Kontaktné údaje_12d96cc; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_142d69b;Kontaktné údaje_142d69b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1673f0c;Kontaktné údaje_1673f0c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1a51aab;Kontaktné údaje_1a51aab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1fb4f4e;Kontaktné údaje_1fb4f4e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_207e654;Kontaktné údaje_207e654; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_222ae6b;Kontaktné údaje_222ae6b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_224634e;Kontaktné údaje_224634e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_24f05ee;Kontaktné údaje_24f05ee; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_252a07d;Kontaktné údaje_252a07d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2674783;Kontaktné údaje_2674783; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_26d62;Kontaktné údaje_26d62; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_303a8;Kontaktné údaje_303a8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_30a5dfa;Kontaktné údaje_30a5dfa; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_344e9;Kontaktné údaje_344e9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_34dbe;Kontaktné údaje_34dbe; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_34dce;Kontaktné údaje_34dce; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3542273;Kontaktné údaje_3542273; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_361e5;Kontaktné údaje_361e5; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3656c4;Kontaktné údaje_3656c4; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_378da;Kontaktné údaje_378da; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3a7a3;Kontaktné údaje_3a7a3; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3fd2b0a;Kontaktné údaje_3fd2b0a; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_47a03;Kontaktné údaje_47a03; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_53edb16;Kontaktné údaje_53edb16; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_5cf38c7;Kontaktné údaje_5cf38c7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6609e0b;Kontaktné údaje_6609e0b; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_68dab;Kontaktné údaje_68dab; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6e12846;Kontaktné údaje_6e12846; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_844d9;Kontaktné údaje_844d9; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
-----------------EOF-----------------
Přispějete na provoz fóra?