Logfile of random's system information tool 1.10 (written by random/random)
Run by Othala at 2016-12-17 09:24:11
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 180 GB (19%) free of 953 GB
Total RAM: 8146 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:24:11, on 17.12.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe
C:\Program Files (x86)\IObit\Driver Booster\4.1.0\UninstMon\PubMonitor.exe
C:\Program Files\trend micro\Othala.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'Default user')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{BAD7C907-AA16-484C-9964-C366A22BB577}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 8800 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {67C10955-86E4-4098-BF9B-2F87111D1E03}
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000007ac
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe" /scheduler
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe"
C:\Windows\system32\CompatTelRunner.exe
\??\C:\Windows\system32\conhost.exe "-203899784110982434461507418512-21224200631810068621-2047462760953933941-69918600
C:\Windows\system32\CompatTelRunner.exe -m:appraiser.dll -f:DoScheduledTelemetryRun -cv:lTdzKpGRcUSTbVeX.1
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
taskeng.exe {AEADAFF4-7FF1-40A4-B40C-70C238DA4DBB}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\msiexec.exe /V
"C:\Program Files (x86)\IObit\Driver Booster\4.1.0\UninstMon\PubMonitor.exe" /DB
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Othala\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Driver Booster Scheduler.job - C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe /scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-10-18 229064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 2351920]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27 163528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 1743664]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Avira SystrayStartTrigger]
C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-11-15 60136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DLLSuite2016]
C:\Program Files (x86)\DLL Suite\DLLSuite.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\Program Files\OO Software\Defrag\oodtray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-12-13 9181696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Dell Display Manager.lnk]
C:\PROGRA~2\Dell\DELLDI~1\ddm.exe [2016-06-02 733888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
C:\Windows\Installer\{A2D1D1B3-2C94-4E3A-BCD3-268F93010169}\app_icon.ico []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-12-17 09:21:38 ----D---- C:\rsit
2016-12-16 18:05:54 ----D---- C:\Program Files (x86)\Steam
2016-12-15 08:54:57 ----A---- C:\Windows\system32\mshtml.dll
2016-12-15 08:54:55 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-12-15 08:54:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\jscript9.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\ieframe.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wintrust.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\winload.exe
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\win32k.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\usp10.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\user32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\drivers\cng.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\clfs.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcrypt.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcdedit.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\usp10.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msiexec.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieui.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\consent.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64win.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64cpu.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\winsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspisrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srcore.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\smss.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\secur32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rstrui.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ntvdm64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsass.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsasrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ie4uinit.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\appid.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\csrsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptbase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\credssp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\conhost.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appinfo.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\advapi32.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\user.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\adtschema.dll
2016-12-13 16:55:07 ----D---- C:\Windows\SoftwareDistribution
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX3
2016-12-13 16:50:58 ----D---- C:\ProgramData\Audyssey Labs
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE3.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE2.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SEHDHF32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SECOMN32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\RltkAPO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\WavesGUILib64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaemaxapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\toseaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosasfapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosade.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tepeqapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tbb_waves.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo264.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSWOW64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSX64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSH64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSHP64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRRPTR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sltech64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slprp64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slcnt64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sl3apo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFSS_APO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFNHK64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDRA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDHF64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SECOMN64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCfg64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkApi64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEP64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEL64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEG64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEED64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtDataProc64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DHT64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DAA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RltkAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RCoInstII64.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEP64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEL64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEG64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EED64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEA64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV3apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV2apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NahimicAPONSControl.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MISS_APO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRender64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioCapture64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO7064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\KAAPORT64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\IntelSstCApoPropPage.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\IntelSSTAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMUI.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMLimiter.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMHVS.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ_Voice.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMClariFi.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2APIPCLL.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2API.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HarmanAudioInterface.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\FMAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOvlldp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv211.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv201.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64F3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOv251.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64Proxy.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64APO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CAF64APO2.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\Caf64api.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AudysseyEfx.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\audioLibVc.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAR64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAC64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2016-12-13 16:49:37 ----A---- C:\Windows\system32\drivers\rtkSSTsetting.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\RCoRes64.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RtNicProp64.dll
2016-12-13 16:48:17 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2016-12-12 19:49:13 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2016-11-30 12:42:52 ----D---- C:\Users\Othala\AppData\Roaming\dll-files.com
2016-11-30 12:39:33 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2016-11-30 12:16:29 ----D---- C:\Program Files (x86)\DLL Suite
2016-11-30 12:05:15 ----D---- C:\ProgramData\TEMP
2016-11-30 11:33:25 ----D---- C:\Program Files\AMD
2016-11-30 11:33:05 ----D---- C:\Program Files (x86)\AMD APP
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\aspnet_counters.dll
2016-11-28 15:59:06 ----D---- C:\Program Files (x86)\Moje cukrarna 3
2016-11-25 15:52:04 ----D---- C:\Users\Othala\AppData\Roaming\EleFun Games
2016-11-25 15:51:54 ----D---- C:\Users\Othala\AppData\Roaming\spidla
2016-11-25 15:51:33 ----D---- C:\Users\Othala\AppData\Roaming\Špidla Data Processing, s.r.o
2016-11-25 15:51:33 ----D---- C:\ProgramData\Špidla Data Processing, s.r.o
2016-11-25 15:51:20 ----D---- C:\Program Files (x86)\Moje cukrárna 2
2016-11-25 15:19:22 ----D---- C:\Spidla
2016-11-21 15:59:44 ----D---- C:\Users\Othala\AppData\Roaming\AMD
2016-11-18 19:10:17 ----D---- C:\Windows\system32\oodag
2016-11-18 19:10:14 ----D---- C:\Program Files\OO Software
2016-11-18 19:09:43 ----D---- C:\ProgramData\OO Software
2016-11-18 18:41:00 ----D---- C:\##HRY
======List of files/folders modified in the last 1 month======
2016-12-17 09:24:11 ----D---- C:\Windows\Temp
2016-12-17 09:24:11 ----D---- C:\Program Files\trend micro
2016-12-17 09:24:04 ----D---- C:\Windows\Prefetch
2016-12-17 09:21:52 ----D---- C:\Windows\System32
2016-12-17 09:21:52 ----D---- C:\Windows\inf
2016-12-17 09:21:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-12-17 09:21:49 ----SHD---- C:\Windows\Installer
2016-12-17 09:20:09 ----D---- C:\Windows\system32\Tasks
2016-12-17 09:19:39 ----D---- C:\Users\Othala\AppData\Roaming\MPC-HC
2016-12-17 09:19:18 ----D---- C:\Windows\Logs
2016-12-17 09:19:18 ----D---- C:\Windows\debug
2016-12-17 09:19:18 ----D---- C:\Windows
2016-12-17 09:18:25 ----D---- C:\Windows\system32\config
2016-12-17 09:16:45 ----RD---- C:\Program Files (x86)
2016-12-17 09:16:06 ----D---- C:\ProgramData\ProductData
2016-12-16 22:02:38 ----D---- C:\Users\Othala\AppData\Roaming\uTorrent
2016-12-16 20:07:00 ----D---- C:\## Torrent
2016-12-16 18:39:51 ----D---- C:\Windows\SysWOW64
2016-12-16 18:39:45 ----RSD---- C:\Windows\assembly
2016-12-16 18:38:49 ----SHD---- C:\System Volume Information
2016-12-15 21:31:09 ----D---- C:\Windows\Microsoft.NET
2016-12-15 20:13:14 ----D---- C:\Windows\winsxs
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\en-US
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-12-15 20:10:26 ----D---- C:\Program Files\Internet Explorer
2016-12-15 20:10:26 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-15 20:10:25 ----D---- C:\Windows\system32\en-US
2016-12-15 20:10:25 ----D---- C:\Windows\system32\drivers
2016-12-15 20:10:25 ----D---- C:\Windows\system32\cs-CZ
2016-12-15 20:10:21 ----D---- C:\Windows\AppPatch
2016-12-15 20:10:20 ----D---- C:\Windows\system32\Boot
2016-12-15 19:14:48 ----D---- C:\ProgramData\Microsoft Help
2016-12-15 19:13:47 ----A---- C:\Windows\win.ini
2016-12-15 19:12:49 ----D---- C:\Windows\system32\MRT
2016-12-15 19:10:27 ----AC---- C:\Windows\system32\MRT.exe
2016-12-15 19:06:01 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-12-15 19:03:54 ----D---- C:\Windows\system32\catroot2
2016-12-13 17:08:55 ----D---- C:\Windows\pss
2016-12-13 17:02:00 ----D---- C:\Windows\Tasks
2016-12-13 16:55:25 ----D---- C:\Windows\system32\catroot
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX2
2016-12-13 16:50:58 ----AHD---- C:\ProgramData
2016-12-13 16:50:27 ----D---- C:\Windows\SYSWOW64\RTCOM
2016-12-13 16:50:11 ----D---- C:\Windows\system32\DriverStore
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RTNUninst64.dll
2016-12-13 16:30:38 ----RD---- C:\Program Files
2016-12-13 16:30:30 ----D---- C:\Program Files\Windows Media Player
2016-12-13 16:30:30 ----D---- C:\Program Files\DVD Maker
2016-12-13 16:30:25 ----SD---- C:\ProgramData\Microsoft
2016-12-13 16:30:25 ----D---- C:\Windows\system32\wbem
2016-12-13 16:30:25 ----D---- C:\Windows\PolicyDefinitions
2016-12-12 19:49:14 ----D---- C:\Program Files (x86)\ffdshow
2016-12-12 19:49:12 ----D---- C:\ProgramData\IObit
2016-12-12 19:49:12 ----D---- C:\Program Files (x86)\IObit
2016-12-10 18:35:11 ----D---- C:\Windows\system32\NDF
2016-12-10 17:46:49 ----D---- C:\ProgramData\Package Cache
2016-12-09 19:47:22 ----D---- C:\Users\Othala\AppData\Roaming\vlc
2016-12-06 13:54:49 ----D---- C:\ProgramData\CanonIJPLM
2016-12-06 13:34:24 ----D---- C:\Windows\system32\LogFiles
2016-12-05 15:32:08 ----D---- C:\Windows\system32\wdi
2016-11-29 15:55:33 ----D---- C:\Windows\Panther
2016-11-29 15:51:12 ----D---- C:\Windows\registration
2016-11-29 15:44:03 ----D---- C:\Program Files (x86)\Ze zivota hmyzu
2016-11-28 19:49:54 ----D---- C:\##FILMY
2016-11-23 15:44:54 ----D---- C:\Users\Othala\AppData\Roaming\IObit
2016-11-18 19:01:09 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-11-18 19:01:04 ----D---- C:\Windows\system32\Macromed
2016-11-18 19:01:03 ----D---- C:\Windows\SYSWOW64\Macromed
2016-11-18 18:57:38 ----D---- C:\##POHÁDKY
2016-11-18 18:45:23 ----D---- C:\##HUDBA
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2016-06-13 85704]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2016-06-13 43720]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2016-12-15 35864]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2016-12-15 148032]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2016-09-27 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2016-06-13 26528]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2010-01-29 115600]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-19 59648]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2016-12-15 176464]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2016-09-27 79696]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2016-10-23 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2016-10-23 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-10-23 96256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2016-12-13 5523456]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-12-13 1037832]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-01-13 56448]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 GeneStor;Genesys Logic Storage Driver; C:\Windows\system32\DRIVERS\GeneStor.sys [2016-09-03 60928]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-12-15 192216]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 64896]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2016-10-23 246784]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-12-06 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2016-12-15 476736]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2016-12-15 476736]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-11-24 350528]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2016-12-15 1089592]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2016-12-15 1490296]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-07-29 3046688]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-18 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-07-23 837312]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-15 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu, PC dlouho přemýšlí
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, PC dlouho přemýšlí
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, PC dlouho přemýšlí
Děkuji zde je log:
# AdwCleaner v6.041 - Log vytvořen 18/12/2016 v 11:31:39
# Aktualizováno dne 16/12/2016 z Malwarebytes
# Databáze : 2016-12-18.1 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Othala - OTHALA-PC
# Spuštěno z : C:\Users\Othala\Desktop\adwcleaner_6.041.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\Users\Othala\AppData\Local\eSupport.com
[-] Složka smazána: C:\Users\Public\Documents\Downloaded Installers
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKU\S-1-5-21-356554100-59139773-4143874188-1000\Software\eSupport.com
[#] Klíč smazán po restartu: HKCU\Software\eSupport.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\eSupport.com
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1166 Bajty] - [18/12/2016 11:31:39]
C:\AdwCleaner\AdwCleaner[S0].txt - [1595 Bajty] - [18/12/2016 11:30:09]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1312 Bajty] ##########
# AdwCleaner v6.041 - Log vytvořen 18/12/2016 v 11:31:39
# Aktualizováno dne 16/12/2016 z Malwarebytes
# Databáze : 2016-12-18.1 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Othala - OTHALA-PC
# Spuštěno z : C:\Users\Othala\Desktop\adwcleaner_6.041.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\Users\Othala\AppData\Local\eSupport.com
[-] Složka smazána: C:\Users\Public\Documents\Downloaded Installers
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKU\S-1-5-21-356554100-59139773-4143874188-1000\Software\eSupport.com
[#] Klíč smazán po restartu: HKCU\Software\eSupport.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\eSupport.com
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1166 Bajty] - [18/12/2016 11:31:39]
C:\AdwCleaner\AdwCleaner[S0].txt - [1595 Bajty] - [18/12/2016 11:30:09]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1312 Bajty] ##########
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, PC dlouho přemýšlí
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, PC dlouho přemýšlí
Nový log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Othala at 2016-12-18 15:20:50
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 179 GB (19%) free of 953 GB
Total RAM: 8146 MB (82% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:20:53, on 18.12.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe
C:\Program Files\trend micro\Othala.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'Default user')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{BAD7C907-AA16-484C-9964-C366A22BB577}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 8725 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
taskeng.exe {8DCE10E9-75A0-40A4-BE42-1EE17B17E629}
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {153B8D2C-F928-4516-A270-CE0A2FD8665A}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000005b8
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe" /scheduler
C:\Windows\system32\sppsvc.exe
taskhost.exe $(Arg0)
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Othala\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Driver Booster Scheduler.job - C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe /scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-10-18 229064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 2351920]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27 163528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 1743664]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Avira SystrayStartTrigger]
C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-11-15 60136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DLLSuite2016]
C:\Program Files (x86)\DLL Suite\DLLSuite.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\Program Files\OO Software\Defrag\oodtray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-12-13 9181696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Dell Display Manager.lnk]
C:\PROGRA~2\Dell\DELLDI~1\ddm.exe [2016-06-02 733888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
C:\Windows\Installer\{A2D1D1B3-2C94-4E3A-BCD3-268F93010169}\app_icon.ico []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-12-18 11:28:22 ----D---- C:\AdwCleaner
2016-12-18 11:23:44 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2016-12-18 10:48:27 ----D---- C:\Program Files (x86)\FinalWire
2016-12-17 09:21:38 ----D---- C:\rsit
2016-12-16 18:05:54 ----D---- C:\Program Files (x86)\Steam
2016-12-15 08:54:57 ----A---- C:\Windows\system32\mshtml.dll
2016-12-15 08:54:55 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-12-15 08:54:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\jscript9.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\ieframe.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wintrust.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\winload.exe
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\win32k.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\usp10.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\user32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\drivers\cng.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\clfs.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcrypt.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcdedit.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\usp10.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msiexec.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieui.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\consent.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64win.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64cpu.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\winsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspisrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srcore.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\smss.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\secur32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rstrui.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ntvdm64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsass.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsasrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ie4uinit.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\appid.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\csrsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptbase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\credssp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\conhost.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appinfo.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\advapi32.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\user.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\adtschema.dll
2016-12-13 16:55:07 ----D---- C:\Windows\SoftwareDistribution
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX3
2016-12-13 16:50:58 ----D---- C:\ProgramData\Audyssey Labs
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE3.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE2.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SEHDHF32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SECOMN32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\RltkAPO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\WavesGUILib64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaemaxapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\toseaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosasfapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosade.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tepeqapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tbb_waves.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo264.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSWOW64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSX64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSH64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSHP64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRRPTR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sltech64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slprp64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slcnt64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sl3apo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFSS_APO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFNHK64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDRA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDHF64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SECOMN64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCfg64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkApi64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEP64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEL64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEG64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEED64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtDataProc64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DHT64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DAA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RltkAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RCoInstII64.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEP64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEL64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEG64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EED64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEA64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV3apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV2apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NahimicAPONSControl.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MISS_APO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRender64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioCapture64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO7064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\KAAPORT64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\IntelSstCApoPropPage.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\IntelSSTAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMUI.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMLimiter.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMHVS.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ_Voice.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMClariFi.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2APIPCLL.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2API.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HarmanAudioInterface.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\FMAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOvlldp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv211.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv201.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64F3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOv251.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64Proxy.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64APO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CAF64APO2.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\Caf64api.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AudysseyEfx.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\audioLibVc.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAR64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAC64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2016-12-13 16:49:37 ----A---- C:\Windows\system32\drivers\rtkSSTsetting.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\RCoRes64.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RtNicProp64.dll
2016-12-13 16:48:17 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2016-12-12 19:49:13 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2016-11-30 12:42:52 ----D---- C:\Users\Othala\AppData\Roaming\dll-files.com
2016-11-30 12:39:33 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2016-11-30 12:16:29 ----D---- C:\Program Files (x86)\DLL Suite
2016-11-30 12:05:15 ----D---- C:\ProgramData\TEMP
2016-11-30 11:33:25 ----D---- C:\Program Files\AMD
2016-11-30 11:33:05 ----D---- C:\Program Files (x86)\AMD APP
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\aspnet_counters.dll
2016-11-28 15:59:06 ----D---- C:\Program Files (x86)\Moje cukrarna 3
2016-11-25 15:52:04 ----D---- C:\Users\Othala\AppData\Roaming\EleFun Games
2016-11-25 15:51:54 ----D---- C:\Users\Othala\AppData\Roaming\spidla
2016-11-25 15:51:33 ----D---- C:\Users\Othala\AppData\Roaming\Špidla Data Processing, s.r.o
2016-11-25 15:51:33 ----D---- C:\ProgramData\Špidla Data Processing, s.r.o
2016-11-25 15:51:20 ----D---- C:\Program Files (x86)\Moje cukrárna 2
2016-11-25 15:19:22 ----D---- C:\Spidla
2016-11-21 15:59:44 ----D---- C:\Users\Othala\AppData\Roaming\AMD
======List of files/folders modified in the last 1 month======
2016-12-18 15:20:52 ----D---- C:\Program Files\trend micro
2016-12-18 15:20:51 ----D---- C:\Windows\Temp
2016-12-18 15:18:46 ----D---- C:\ProgramData\ProductData
2016-12-18 12:27:45 ----D---- C:\Windows\system32\config
2016-12-18 12:27:39 ----D---- C:\Users\Othala\AppData\Roaming\uTorrent
2016-12-18 11:53:01 ----D---- C:\Windows\system32\Tasks
2016-12-18 11:37:53 ----D---- C:\Windows\System32
2016-12-18 11:37:53 ----D---- C:\Windows\inf
2016-12-18 11:37:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-12-18 11:35:10 ----D---- C:\Windows\Prefetch
2016-12-18 11:26:25 ----D---- C:\## Torrent
2016-12-18 11:23:44 ----D---- C:\Windows\SYSWOW64\drivers
2016-12-18 10:48:27 ----RD---- C:\Program Files (x86)
2016-12-17 20:24:37 ----D---- C:\Users\Othala\AppData\Roaming\MPC-HC
2016-12-17 15:44:43 ----D---- C:\Windows\rescache
2016-12-17 14:24:20 ----D---- C:\Windows
2016-12-17 09:21:49 ----SHD---- C:\Windows\Installer
2016-12-17 09:19:18 ----D---- C:\Windows\Logs
2016-12-17 09:19:18 ----D---- C:\Windows\debug
2016-12-16 18:39:51 ----D---- C:\Windows\SysWOW64
2016-12-16 18:39:45 ----RSD---- C:\Windows\assembly
2016-12-16 18:38:49 ----SHD---- C:\System Volume Information
2016-12-15 21:31:09 ----D---- C:\Windows\Microsoft.NET
2016-12-15 20:13:14 ----D---- C:\Windows\winsxs
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\en-US
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-12-15 20:10:26 ----D---- C:\Program Files\Internet Explorer
2016-12-15 20:10:26 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-15 20:10:25 ----D---- C:\Windows\system32\en-US
2016-12-15 20:10:25 ----D---- C:\Windows\system32\drivers
2016-12-15 20:10:25 ----D---- C:\Windows\system32\cs-CZ
2016-12-15 20:10:21 ----D---- C:\Windows\AppPatch
2016-12-15 20:10:20 ----D---- C:\Windows\system32\Boot
2016-12-15 19:14:48 ----D---- C:\ProgramData\Microsoft Help
2016-12-15 19:13:47 ----A---- C:\Windows\win.ini
2016-12-15 19:12:49 ----D---- C:\Windows\system32\MRT
2016-12-15 19:10:27 ----AC---- C:\Windows\system32\MRT.exe
2016-12-15 19:06:01 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-12-15 19:03:54 ----D---- C:\Windows\system32\catroot2
2016-12-13 17:08:55 ----D---- C:\Windows\pss
2016-12-13 17:02:00 ----D---- C:\Windows\Tasks
2016-12-13 16:55:25 ----D---- C:\Windows\system32\catroot
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX2
2016-12-13 16:50:58 ----AHD---- C:\ProgramData
2016-12-13 16:50:27 ----D---- C:\Windows\SYSWOW64\RTCOM
2016-12-13 16:50:11 ----D---- C:\Windows\system32\DriverStore
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RTNUninst64.dll
2016-12-13 16:30:38 ----RD---- C:\Program Files
2016-12-13 16:30:30 ----D---- C:\Program Files\Windows Media Player
2016-12-13 16:30:30 ----D---- C:\Program Files\DVD Maker
2016-12-13 16:30:25 ----SD---- C:\ProgramData\Microsoft
2016-12-13 16:30:25 ----D---- C:\Windows\system32\wbem
2016-12-13 16:30:25 ----D---- C:\Windows\PolicyDefinitions
2016-12-12 19:49:14 ----D---- C:\Program Files (x86)\ffdshow
2016-12-12 19:49:12 ----D---- C:\ProgramData\IObit
2016-12-12 19:49:12 ----D---- C:\Program Files (x86)\IObit
2016-12-10 18:35:11 ----D---- C:\Windows\system32\NDF
2016-12-10 17:46:49 ----D---- C:\ProgramData\Package Cache
2016-12-09 19:47:22 ----D---- C:\Users\Othala\AppData\Roaming\vlc
2016-12-06 13:54:49 ----D---- C:\ProgramData\CanonIJPLM
2016-12-06 13:34:24 ----D---- C:\Windows\system32\LogFiles
2016-12-05 15:32:08 ----D---- C:\Windows\system32\wdi
2016-11-29 15:55:33 ----D---- C:\Windows\Panther
2016-11-29 15:51:12 ----D---- C:\Windows\registration
2016-11-29 15:44:03 ----D---- C:\Program Files (x86)\Ze zivota hmyzu
2016-11-28 19:49:54 ----D---- C:\##FILMY
2016-11-23 15:44:54 ----D---- C:\Users\Othala\AppData\Roaming\IObit
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2016-06-13 85704]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2016-06-13 43720]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2016-12-15 35864]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2016-12-15 148032]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2016-09-27 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2016-06-13 26528]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2010-01-29 115600]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-19 59648]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2016-12-15 176464]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2016-09-27 79696]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2016-10-23 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2016-10-23 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-10-23 96256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2016-12-13 5523456]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-12-13 1037832]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-01-13 56448]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2016-12-18 22200]
S3 GeneStor;Genesys Logic Storage Driver; C:\Windows\system32\DRIVERS\GeneStor.sys [2016-09-03 60928]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-12-15 192216]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 64896]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2016-10-23 246784]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-12-06 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2016-12-15 476736]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2016-12-15 476736]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-11-24 350528]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2016-12-15 1089592]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2016-12-15 1490296]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-07-29 3046688]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-18 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-12-09 1467168]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-15 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Othala at 2016-12-18 15:20:50
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 179 GB (19%) free of 953 GB
Total RAM: 8146 MB (82% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:20:53, on 18.12.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe
C:\Program Files\trend micro\Othala.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'Default user')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{BAD7C907-AA16-484C-9964-C366A22BB577}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 8725 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
taskeng.exe {8DCE10E9-75A0-40A4-BE42-1EE17B17E629}
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {153B8D2C-F928-4516-A270-CE0A2FD8665A}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000005b8
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe" /scheduler
C:\Windows\system32\sppsvc.exe
taskhost.exe $(Arg0)
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Othala\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Driver Booster Scheduler.job - C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe /scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-10-18 229064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 2351920]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27 163528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 1743664]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Avira SystrayStartTrigger]
C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-11-15 60136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DLLSuite2016]
C:\Program Files (x86)\DLL Suite\DLLSuite.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\Program Files\OO Software\Defrag\oodtray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-12-13 9181696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Dell Display Manager.lnk]
C:\PROGRA~2\Dell\DELLDI~1\ddm.exe [2016-06-02 733888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
C:\Windows\Installer\{A2D1D1B3-2C94-4E3A-BCD3-268F93010169}\app_icon.ico []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-12-18 11:28:22 ----D---- C:\AdwCleaner
2016-12-18 11:23:44 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2016-12-18 10:48:27 ----D---- C:\Program Files (x86)\FinalWire
2016-12-17 09:21:38 ----D---- C:\rsit
2016-12-16 18:05:54 ----D---- C:\Program Files (x86)\Steam
2016-12-15 08:54:57 ----A---- C:\Windows\system32\mshtml.dll
2016-12-15 08:54:55 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-12-15 08:54:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\jscript9.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\ieframe.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wintrust.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\winload.exe
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\win32k.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\usp10.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\user32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\drivers\cng.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\clfs.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcrypt.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcdedit.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\usp10.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msiexec.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieui.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\consent.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64win.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64cpu.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\winsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspisrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srcore.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\smss.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\secur32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rstrui.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ntvdm64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsass.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsasrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ie4uinit.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\appid.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\csrsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptbase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\credssp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\conhost.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appinfo.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\advapi32.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\user.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\adtschema.dll
2016-12-13 16:55:07 ----D---- C:\Windows\SoftwareDistribution
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX3
2016-12-13 16:50:58 ----D---- C:\ProgramData\Audyssey Labs
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE3.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE2.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SEHDHF32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SECOMN32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\RltkAPO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\WavesGUILib64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaemaxapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\toseaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosasfapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosade.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tepeqapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tbb_waves.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo264.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSWOW64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSX64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSH64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSHP64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRRPTR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sltech64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slprp64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slcnt64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sl3apo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFSS_APO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFNHK64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDRA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDHF64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SECOMN64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCfg64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkApi64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEP64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEL64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEG64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEED64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtDataProc64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DHT64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DAA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RltkAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RCoInstII64.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEP64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEL64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEG64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EED64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEA64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV3apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV2apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NahimicAPONSControl.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MISS_APO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRender64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioCapture64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO7064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\KAAPORT64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\IntelSstCApoPropPage.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\IntelSSTAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMUI.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMLimiter.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMHVS.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ_Voice.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMClariFi.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2APIPCLL.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2API.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HarmanAudioInterface.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\FMAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOvlldp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv211.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv201.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64F3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOv251.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64Proxy.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64APO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CAF64APO2.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\Caf64api.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AudysseyEfx.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\audioLibVc.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAR64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAC64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2016-12-13 16:49:37 ----A---- C:\Windows\system32\drivers\rtkSSTsetting.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\RCoRes64.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RtNicProp64.dll
2016-12-13 16:48:17 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2016-12-12 19:49:13 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2016-11-30 12:42:52 ----D---- C:\Users\Othala\AppData\Roaming\dll-files.com
2016-11-30 12:39:33 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2016-11-30 12:16:29 ----D---- C:\Program Files (x86)\DLL Suite
2016-11-30 12:05:15 ----D---- C:\ProgramData\TEMP
2016-11-30 11:33:25 ----D---- C:\Program Files\AMD
2016-11-30 11:33:05 ----D---- C:\Program Files (x86)\AMD APP
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\aspnet_counters.dll
2016-11-28 15:59:06 ----D---- C:\Program Files (x86)\Moje cukrarna 3
2016-11-25 15:52:04 ----D---- C:\Users\Othala\AppData\Roaming\EleFun Games
2016-11-25 15:51:54 ----D---- C:\Users\Othala\AppData\Roaming\spidla
2016-11-25 15:51:33 ----D---- C:\Users\Othala\AppData\Roaming\Špidla Data Processing, s.r.o
2016-11-25 15:51:33 ----D---- C:\ProgramData\Špidla Data Processing, s.r.o
2016-11-25 15:51:20 ----D---- C:\Program Files (x86)\Moje cukrárna 2
2016-11-25 15:19:22 ----D---- C:\Spidla
2016-11-21 15:59:44 ----D---- C:\Users\Othala\AppData\Roaming\AMD
======List of files/folders modified in the last 1 month======
2016-12-18 15:20:52 ----D---- C:\Program Files\trend micro
2016-12-18 15:20:51 ----D---- C:\Windows\Temp
2016-12-18 15:18:46 ----D---- C:\ProgramData\ProductData
2016-12-18 12:27:45 ----D---- C:\Windows\system32\config
2016-12-18 12:27:39 ----D---- C:\Users\Othala\AppData\Roaming\uTorrent
2016-12-18 11:53:01 ----D---- C:\Windows\system32\Tasks
2016-12-18 11:37:53 ----D---- C:\Windows\System32
2016-12-18 11:37:53 ----D---- C:\Windows\inf
2016-12-18 11:37:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-12-18 11:35:10 ----D---- C:\Windows\Prefetch
2016-12-18 11:26:25 ----D---- C:\## Torrent
2016-12-18 11:23:44 ----D---- C:\Windows\SYSWOW64\drivers
2016-12-18 10:48:27 ----RD---- C:\Program Files (x86)
2016-12-17 20:24:37 ----D---- C:\Users\Othala\AppData\Roaming\MPC-HC
2016-12-17 15:44:43 ----D---- C:\Windows\rescache
2016-12-17 14:24:20 ----D---- C:\Windows
2016-12-17 09:21:49 ----SHD---- C:\Windows\Installer
2016-12-17 09:19:18 ----D---- C:\Windows\Logs
2016-12-17 09:19:18 ----D---- C:\Windows\debug
2016-12-16 18:39:51 ----D---- C:\Windows\SysWOW64
2016-12-16 18:39:45 ----RSD---- C:\Windows\assembly
2016-12-16 18:38:49 ----SHD---- C:\System Volume Information
2016-12-15 21:31:09 ----D---- C:\Windows\Microsoft.NET
2016-12-15 20:13:14 ----D---- C:\Windows\winsxs
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\en-US
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-12-15 20:10:26 ----D---- C:\Program Files\Internet Explorer
2016-12-15 20:10:26 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-15 20:10:25 ----D---- C:\Windows\system32\en-US
2016-12-15 20:10:25 ----D---- C:\Windows\system32\drivers
2016-12-15 20:10:25 ----D---- C:\Windows\system32\cs-CZ
2016-12-15 20:10:21 ----D---- C:\Windows\AppPatch
2016-12-15 20:10:20 ----D---- C:\Windows\system32\Boot
2016-12-15 19:14:48 ----D---- C:\ProgramData\Microsoft Help
2016-12-15 19:13:47 ----A---- C:\Windows\win.ini
2016-12-15 19:12:49 ----D---- C:\Windows\system32\MRT
2016-12-15 19:10:27 ----AC---- C:\Windows\system32\MRT.exe
2016-12-15 19:06:01 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-12-15 19:03:54 ----D---- C:\Windows\system32\catroot2
2016-12-13 17:08:55 ----D---- C:\Windows\pss
2016-12-13 17:02:00 ----D---- C:\Windows\Tasks
2016-12-13 16:55:25 ----D---- C:\Windows\system32\catroot
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX2
2016-12-13 16:50:58 ----AHD---- C:\ProgramData
2016-12-13 16:50:27 ----D---- C:\Windows\SYSWOW64\RTCOM
2016-12-13 16:50:11 ----D---- C:\Windows\system32\DriverStore
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RTNUninst64.dll
2016-12-13 16:30:38 ----RD---- C:\Program Files
2016-12-13 16:30:30 ----D---- C:\Program Files\Windows Media Player
2016-12-13 16:30:30 ----D---- C:\Program Files\DVD Maker
2016-12-13 16:30:25 ----SD---- C:\ProgramData\Microsoft
2016-12-13 16:30:25 ----D---- C:\Windows\system32\wbem
2016-12-13 16:30:25 ----D---- C:\Windows\PolicyDefinitions
2016-12-12 19:49:14 ----D---- C:\Program Files (x86)\ffdshow
2016-12-12 19:49:12 ----D---- C:\ProgramData\IObit
2016-12-12 19:49:12 ----D---- C:\Program Files (x86)\IObit
2016-12-10 18:35:11 ----D---- C:\Windows\system32\NDF
2016-12-10 17:46:49 ----D---- C:\ProgramData\Package Cache
2016-12-09 19:47:22 ----D---- C:\Users\Othala\AppData\Roaming\vlc
2016-12-06 13:54:49 ----D---- C:\ProgramData\CanonIJPLM
2016-12-06 13:34:24 ----D---- C:\Windows\system32\LogFiles
2016-12-05 15:32:08 ----D---- C:\Windows\system32\wdi
2016-11-29 15:55:33 ----D---- C:\Windows\Panther
2016-11-29 15:51:12 ----D---- C:\Windows\registration
2016-11-29 15:44:03 ----D---- C:\Program Files (x86)\Ze zivota hmyzu
2016-11-28 19:49:54 ----D---- C:\##FILMY
2016-11-23 15:44:54 ----D---- C:\Users\Othala\AppData\Roaming\IObit
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2016-06-13 85704]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2016-06-13 43720]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2016-12-15 35864]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2016-12-15 148032]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2016-09-27 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2016-06-13 26528]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2010-01-29 115600]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-19 59648]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2016-12-15 176464]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2016-09-27 79696]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2016-10-23 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2016-10-23 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-10-23 96256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2016-12-13 5523456]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-12-13 1037832]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-01-13 56448]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2016-12-18 22200]
S3 GeneStor;Genesys Logic Storage Driver; C:\Windows\system32\DRIVERS\GeneStor.sys [2016-09-03 60928]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-12-15 192216]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 64896]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2016-10-23 246784]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-12-06 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2016-12-15 476736]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2016-12-15 476736]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-11-24 350528]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2016-12-15 1089592]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2016-12-15 1490296]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-07-29 3046688]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-18 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-12-09 1467168]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-15 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, PC dlouho přemýšlí
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, PC dlouho přemýšlí
jeden log:
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Othala
->Temp folder emptied: 4347579 bytes
->Temporary Internet Files folder emptied: 1574192 bytes
->FireFox cache emptied: 5724510 bytes
->Google Chrome cache emptied: 231112912 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 290977 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 10394232 bytes
Total Files Cleaned = 242,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Othala
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 12182016_164003
Files moved on Reboot...
File C:\Users\Othala\AppData\Local\Temp\etilqs_4gXmIcwVZ3QXlNm not found!
File C:\Users\Othala\AppData\Local\Temp\etilqs_VLITFZZ54k48WtK not found!
File C:\Users\Othala\AppData\Local\Temp\etilqs_vnqQWQTs09f7AYl not found!
C:\Users\Othala\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Othala\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully.
Registry entries deleted on Reboot...
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Othala
->Temp folder emptied: 4347579 bytes
->Temporary Internet Files folder emptied: 1574192 bytes
->FireFox cache emptied: 5724510 bytes
->Google Chrome cache emptied: 231112912 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 290977 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 10394232 bytes
Total Files Cleaned = 242,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Othala
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 12182016_164003
Files moved on Reboot...
File C:\Users\Othala\AppData\Local\Temp\etilqs_4gXmIcwVZ3QXlNm not found!
File C:\Users\Othala\AppData\Local\Temp\etilqs_VLITFZZ54k48WtK not found!
File C:\Users\Othala\AppData\Local\Temp\etilqs_vnqQWQTs09f7AYl not found!
C:\Users\Othala\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Othala\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully.
Registry entries deleted on Reboot...
Re: Prosím o kontrolu, PC dlouho přemýšlí
A log RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Othala at 2016-12-18 16:45:51
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 179 GB (19%) free of 953 GB
Total RAM: 8146 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:45:54, on 18.12.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe
C:\Program Files\trend micro\Othala.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'Default user')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{BAD7C907-AA16-484C-9964-C366A22BB577}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 8725 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
taskeng.exe {7CE801DF-7B4A-462B-8DF8-4A118FB5EEEC}
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
taskeng.exe {72157144-0563-4CD2-89E9-1E67013E0C55}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00000174
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe" /scheduler
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Othala\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0x88
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=3568 --on-initialized-event-handle=316 --parent-handle=320 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled6_Zero_RTT/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/Html5ByDefault/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Enabled/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/StrictSecureCookies/Default/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_18/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,16,17,18,21,24,37,65 --gpu-vendor-id=0x1002 --gpu-device-id=0x6719 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.200.1062.1004 --gpu-driver-date=8-3-2015 --service-request-channel-token=9B14FBE9F632EB67F32E8A66A33FC762 --mojo-platform-channel-handle=1040 --ignored=" --type=renderer " /prefetch:2
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled6_Zero_RTT/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/*Html5ByDefault/Default/*InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Enabled/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_18/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=78A04C5E164BBE4C13E3BD65617888B3 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=78A04C5E164BBE4C13E3BD65617888B3 --mojo-platform-channel-handle=3304 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-356554100-59139773-4143874188-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-356554100-59139773-4143874188-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
wmiadap.exe /F /T /R
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Othala\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Driver Booster Scheduler.job - C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe /scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-10-18 229064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 2351920]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27 163528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 1743664]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Avira SystrayStartTrigger]
C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-11-15 60136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DLLSuite2016]
C:\Program Files (x86)\DLL Suite\DLLSuite.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\Program Files\OO Software\Defrag\oodtray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-12-13 9181696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Dell Display Manager.lnk]
C:\PROGRA~2\Dell\DELLDI~1\ddm.exe [2016-06-02 733888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
C:\Windows\Installer\{A2D1D1B3-2C94-4E3A-BCD3-268F93010169}\app_icon.ico []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-12-18 16:40:03 ----D---- C:\_OTM
2016-12-18 11:28:22 ----D---- C:\AdwCleaner
2016-12-18 11:23:44 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2016-12-18 10:48:27 ----D---- C:\Program Files (x86)\FinalWire
2016-12-17 09:21:38 ----D---- C:\rsit
2016-12-16 18:05:54 ----D---- C:\Program Files (x86)\Steam
2016-12-15 08:54:57 ----A---- C:\Windows\system32\mshtml.dll
2016-12-15 08:54:55 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-12-15 08:54:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\jscript9.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\ieframe.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wintrust.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\winload.exe
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\win32k.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\usp10.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\user32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\drivers\cng.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\clfs.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcrypt.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcdedit.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\usp10.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msiexec.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieui.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\consent.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64win.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64cpu.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\winsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspisrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srcore.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\smss.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\secur32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rstrui.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ntvdm64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsass.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsasrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ie4uinit.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\appid.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\csrsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptbase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\credssp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\conhost.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appinfo.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\advapi32.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\user.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\adtschema.dll
2016-12-13 16:55:07 ----D---- C:\Windows\SoftwareDistribution
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX3
2016-12-13 16:50:58 ----D---- C:\ProgramData\Audyssey Labs
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE3.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE2.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SEHDHF32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SECOMN32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\RltkAPO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\WavesGUILib64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaemaxapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\toseaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosasfapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosade.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tepeqapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tbb_waves.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo264.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSWOW64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSX64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSH64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSHP64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRRPTR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sltech64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slprp64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slcnt64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sl3apo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFSS_APO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFNHK64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDRA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDHF64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SECOMN64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCfg64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkApi64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEP64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEL64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEG64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEED64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtDataProc64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DHT64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DAA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RltkAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RCoInstII64.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEP64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEL64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEG64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EED64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEA64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV3apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV2apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NahimicAPONSControl.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MISS_APO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRender64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioCapture64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO7064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\KAAPORT64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\IntelSstCApoPropPage.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\IntelSSTAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMUI.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMLimiter.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMHVS.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ_Voice.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMClariFi.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2APIPCLL.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2API.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HarmanAudioInterface.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\FMAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOvlldp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv211.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv201.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64F3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOv251.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64Proxy.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64APO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CAF64APO2.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\Caf64api.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AudysseyEfx.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\audioLibVc.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAR64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAC64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2016-12-13 16:49:37 ----A---- C:\Windows\system32\drivers\rtkSSTsetting.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\RCoRes64.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RtNicProp64.dll
2016-12-13 16:48:17 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2016-12-12 19:49:13 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2016-11-30 12:42:52 ----D---- C:\Users\Othala\AppData\Roaming\dll-files.com
2016-11-30 12:39:33 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2016-11-30 12:16:29 ----D---- C:\Program Files (x86)\DLL Suite
2016-11-30 12:05:15 ----D---- C:\ProgramData\TEMP
2016-11-30 11:33:25 ----D---- C:\Program Files\AMD
2016-11-30 11:33:05 ----D---- C:\Program Files (x86)\AMD APP
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\aspnet_counters.dll
2016-11-28 15:59:06 ----D---- C:\Program Files (x86)\Moje cukrarna 3
2016-11-25 15:52:04 ----D---- C:\Users\Othala\AppData\Roaming\EleFun Games
2016-11-25 15:51:54 ----D---- C:\Users\Othala\AppData\Roaming\spidla
2016-11-25 15:51:33 ----D---- C:\Users\Othala\AppData\Roaming\Špidla Data Processing, s.r.o
2016-11-25 15:51:33 ----D---- C:\ProgramData\Špidla Data Processing, s.r.o
2016-11-25 15:51:20 ----D---- C:\Program Files (x86)\Moje cukrárna 2
2016-11-25 15:19:22 ----D---- C:\Spidla
2016-11-21 15:59:44 ----D---- C:\Users\Othala\AppData\Roaming\AMD
======List of files/folders modified in the last 1 month======
2016-12-18 16:45:53 ----D---- C:\Windows\Temp
2016-12-18 16:45:53 ----D---- C:\Program Files\trend micro
2016-12-18 16:42:44 ----D---- C:\ProgramData\ProductData
2016-12-18 16:42:26 ----D---- C:\Windows\Prefetch
2016-12-18 16:40:53 ----D---- C:\Windows\system32\config
2016-12-18 15:37:43 ----D---- C:\Windows\system32\Tasks
2016-12-18 15:23:51 ----D---- C:\Windows\System32
2016-12-18 15:23:51 ----D---- C:\Windows\inf
2016-12-18 15:23:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-12-18 12:27:39 ----D---- C:\Users\Othala\AppData\Roaming\uTorrent
2016-12-18 11:26:25 ----D---- C:\## Torrent
2016-12-18 11:23:44 ----D---- C:\Windows\SYSWOW64\drivers
2016-12-18 10:48:27 ----RD---- C:\Program Files (x86)
2016-12-17 20:24:37 ----D---- C:\Users\Othala\AppData\Roaming\MPC-HC
2016-12-17 15:44:43 ----D---- C:\Windows\rescache
2016-12-17 14:24:20 ----D---- C:\Windows
2016-12-17 09:21:49 ----SHD---- C:\Windows\Installer
2016-12-17 09:19:18 ----D---- C:\Windows\Logs
2016-12-17 09:19:18 ----D---- C:\Windows\debug
2016-12-16 18:39:51 ----D---- C:\Windows\SysWOW64
2016-12-16 18:39:45 ----RSD---- C:\Windows\assembly
2016-12-16 18:38:49 ----SHD---- C:\System Volume Information
2016-12-15 21:31:09 ----D---- C:\Windows\Microsoft.NET
2016-12-15 20:13:14 ----D---- C:\Windows\winsxs
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\en-US
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-12-15 20:10:26 ----D---- C:\Program Files\Internet Explorer
2016-12-15 20:10:26 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-15 20:10:25 ----D---- C:\Windows\system32\en-US
2016-12-15 20:10:25 ----D---- C:\Windows\system32\drivers
2016-12-15 20:10:25 ----D---- C:\Windows\system32\cs-CZ
2016-12-15 20:10:21 ----D---- C:\Windows\AppPatch
2016-12-15 20:10:20 ----D---- C:\Windows\system32\Boot
2016-12-15 19:14:48 ----D---- C:\ProgramData\Microsoft Help
2016-12-15 19:13:47 ----A---- C:\Windows\win.ini
2016-12-15 19:12:49 ----D---- C:\Windows\system32\MRT
2016-12-15 19:10:27 ----AC---- C:\Windows\system32\MRT.exe
2016-12-15 19:06:01 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-12-15 19:03:54 ----D---- C:\Windows\system32\catroot2
2016-12-13 17:08:55 ----D---- C:\Windows\pss
2016-12-13 17:02:00 ----D---- C:\Windows\Tasks
2016-12-13 16:55:25 ----D---- C:\Windows\system32\catroot
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX2
2016-12-13 16:50:58 ----AHD---- C:\ProgramData
2016-12-13 16:50:27 ----D---- C:\Windows\SYSWOW64\RTCOM
2016-12-13 16:50:11 ----D---- C:\Windows\system32\DriverStore
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RTNUninst64.dll
2016-12-13 16:30:38 ----RD---- C:\Program Files
2016-12-13 16:30:30 ----D---- C:\Program Files\Windows Media Player
2016-12-13 16:30:30 ----D---- C:\Program Files\DVD Maker
2016-12-13 16:30:25 ----SD---- C:\ProgramData\Microsoft
2016-12-13 16:30:25 ----D---- C:\Windows\system32\wbem
2016-12-13 16:30:25 ----D---- C:\Windows\PolicyDefinitions
2016-12-12 19:49:14 ----D---- C:\Program Files (x86)\ffdshow
2016-12-12 19:49:12 ----D---- C:\ProgramData\IObit
2016-12-12 19:49:12 ----D---- C:\Program Files (x86)\IObit
2016-12-10 18:35:11 ----D---- C:\Windows\system32\NDF
2016-12-10 17:46:49 ----D---- C:\ProgramData\Package Cache
2016-12-09 19:47:22 ----D---- C:\Users\Othala\AppData\Roaming\vlc
2016-12-06 13:54:49 ----D---- C:\ProgramData\CanonIJPLM
2016-12-06 13:34:24 ----D---- C:\Windows\system32\LogFiles
2016-12-05 15:32:08 ----D---- C:\Windows\system32\wdi
2016-11-29 15:55:33 ----D---- C:\Windows\Panther
2016-11-29 15:51:12 ----D---- C:\Windows\registration
2016-11-29 15:44:03 ----D---- C:\Program Files (x86)\Ze zivota hmyzu
2016-11-28 19:49:54 ----D---- C:\##FILMY
2016-11-23 15:44:54 ----D---- C:\Users\Othala\AppData\Roaming\IObit
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2016-06-13 85704]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2016-06-13 43720]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2016-12-15 35864]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2016-12-15 148032]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2016-09-27 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2016-06-13 26528]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2010-01-29 115600]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-19 59648]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2016-12-15 176464]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2016-09-27 79696]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2016-10-23 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2016-10-23 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-10-23 96256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2016-12-13 5523456]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-12-13 1037832]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-01-13 56448]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2016-12-18 22200]
S3 GeneStor;Genesys Logic Storage Driver; C:\Windows\system32\DRIVERS\GeneStor.sys [2016-09-03 60928]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-12-15 192216]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 64896]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2016-10-23 246784]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-12-06 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2016-12-15 476736]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2016-12-15 476736]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-11-24 350528]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2016-12-15 1089592]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2016-12-15 1490296]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-07-29 3046688]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-18 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-12-09 1467168]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-15 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by Othala at 2016-12-18 16:45:51
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 179 GB (19%) free of 953 GB
Total RAM: 8146 MB (80% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:45:54, on 18.12.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe
C:\Program Files\trend micro\Othala.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [AOD] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe AutoTune (User 'Default user')
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.0.1
O15 - ESC Trusted IP range: http://192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{BAD7C907-AA16-484C-9964-C366A22BB577}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 8725 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
taskeng.exe {7CE801DF-7B4A-462B-8DF8-4A118FB5EEEC}
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
taskeng.exe {72157144-0563-4CD2-89E9-1E67013E0C55}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00000174
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe" /scheduler
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Othala\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Othala\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0x88
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=3568 --on-initialized-event-handle=316 --parent-handle=320 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled6_Zero_RTT/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/Html5ByDefault/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Enabled/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/StrictSecureCookies/Default/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_18/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=6,16,17,18,21,24,37,65 --gpu-vendor-id=0x1002 --gpu-device-id=0x6719 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.200.1062.1004 --gpu-driver-date=8-3-2015 --service-request-channel-token=9B14FBE9F632EB67F32E8A66A33FC762 --mojo-platform-channel-handle=1040 --ignored=" --type=renderer " /prefetch:2
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled6_Zero_RTT/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/*Html5ByDefault/Default/*InstanceID/Enabled/MaterialDesignDownloads/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SecurityWarningIconUpdate/Enabled/SignInPasswordPromo/Default/*SiteIsolationExtensions/Control/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Control/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_18/*UMA-Uniformity-Trial-10-Percent/group_08/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_06/*UMA-Uniformity-Trial-50-Percent/group_01/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=78A04C5E164BBE4C13E3BD65617888B3 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=78A04C5E164BBE4C13E3BD65617888B3 --mojo-platform-channel-handle=3304 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-356554100-59139773-4143874188-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-356554100-59139773-4143874188-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
wmiadap.exe /F /T /R
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Othala\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\Driver Booster Scheduler.job - C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe /scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-10-18 229064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2014-01-23 881880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 2351920]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27 163528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2014-01-22 707800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2016-11-15 1743664]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Avira SystrayStartTrigger]
C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-11-15 60136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DLLSuite2016]
C:\Program Files (x86)\DLL Suite\DLLSuite.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\Program Files\OO Software\Defrag\oodtray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-12-13 9181696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2016-12-09 2876704]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Dell Display Manager.lnk]
C:\PROGRA~2\Dell\DELLDI~1\ddm.exe [2016-06-02 733888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^O&O Defrag Tray.lnk]
C:\Windows\Installer\{A2D1D1B3-2C94-4E3A-BCD3-268F93010169}\app_icon.ico []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-12-15 917576]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-12-18 16:40:03 ----D---- C:\_OTM
2016-12-18 11:28:22 ----D---- C:\AdwCleaner
2016-12-18 11:23:44 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2016-12-18 10:48:27 ----D---- C:\Program Files (x86)\FinalWire
2016-12-17 09:21:38 ----D---- C:\rsit
2016-12-16 18:05:54 ----D---- C:\Program Files (x86)\Steam
2016-12-15 08:54:57 ----A---- C:\Windows\system32\mshtml.dll
2016-12-15 08:54:55 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-12-15 08:54:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\jscript9.dll
2016-12-15 08:54:54 ----A---- C:\Windows\system32\ieframe.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-12-15 08:54:53 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wintrust.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\winload.exe
2016-12-15 08:54:53 ----A---- C:\Windows\system32\wininet.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\win32k.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\usp10.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\user32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\msi.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\drivers\cng.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\crypt32.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\clfs.sys
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcrypt.dll
2016-12-15 08:54:53 ----A---- C:\Windows\system32\bcdedit.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\usp10.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\user32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\vbscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\urlmon.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\rpcrt4.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ntdll.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\nlsbres.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msiexec.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\msfeeds.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\jscript.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieui.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iertutil.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\iedkcs32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\ieapfltr.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\hlink.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\gdi32.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-12-15 08:54:52 ----A---- C:\Windows\system32\consent.exe
2016-12-15 08:54:52 ----A---- C:\Windows\system32\certcli.dll
2016-12-15 08:54:52 ----A---- C:\Windows\system32\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64win.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64cpu.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wow64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\winsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\webcheck.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\wdigest.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\TSpkg.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspisrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\sspicli.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srcore.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\srclient.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\smss.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\schannel.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\secur32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rstrui.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\rpchttp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\occache.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ntvdm64.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ncrypt.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msv1_0.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msrating.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\msihnd.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\mshtmled.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsass.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\lsasrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\KernelBase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kernel32.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\kerberos.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jsproxy.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\jscript9diag.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\inseng.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieUnatt.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iesetup.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\iernonce.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\ie4uinit.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtrans.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\dxtmsft.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\drivers\appid.sys
2016-12-15 08:54:51 ----A---- C:\Windows\system32\csrsrv.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptnet.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\cryptbase.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\credssp.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\conhost.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appinfo.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidsvc.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-12-15 08:54:51 ----A---- C:\Windows\system32\appidapi.dll
2016-12-15 08:54:51 ----A---- C:\Windows\system32\advapi32.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-12-15 08:54:50 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\user.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\tzres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msobjs.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msimsg.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\msaudite.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\auditpol.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-12-15 08:54:50 ----A---- C:\Windows\system32\apisetschema.dll
2016-12-15 08:54:50 ----A---- C:\Windows\system32\adtschema.dll
2016-12-13 16:55:07 ----D---- C:\Windows\SoftwareDistribution
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX3
2016-12-13 16:50:58 ----D---- C:\ProgramData\Audyssey Labs
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE3.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE2.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\YamahaAE.dll
2016-12-13 16:49:45 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SEHDHF32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\SECOMN32.dll
2016-12-13 16:49:44 ----A---- C:\Windows\SYSWOW64\RltkAPO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\WavesGUILib64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaemaxapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tossaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\toseaeapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosasfapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tosade.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tepeqapo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tbb_waves.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo264.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\tadefxapo.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSWOW64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSX64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSTSH64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRSHP64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRRPTR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRCOM.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SRAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sltech64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slprp64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\slcnt64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\sl3apo64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFSS_APO.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFNHK64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SFAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDRA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEHDHF64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SECOMN64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\SEAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkCfg64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtkApi64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEP64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEL64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEEG64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTEED64A.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RtDataProc64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RTCOM64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DHT64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RP3DAA64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RltkAPO64.dll
2016-12-13 16:49:44 ----A---- C:\Windows\system32\RCoInstII64.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEP64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEL64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEG64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EED64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\R4EEA64A.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV3apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICV2apo.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NahimicAPONSControl.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MISS_APO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-12-13 16:49:43 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-12-13 16:49:42 ----A---- C:\Windows\system32\MaxxAudioRender64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioCapture64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO7064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\KAAPORT64.dll
2016-12-13 16:49:41 ----A---- C:\Windows\system32\IntelSstCApoPropPage.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\IntelSSTAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMUI.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMLimiter.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMHVS.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ_Voice.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMEQ.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMClariFi.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HMAPO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2APIPCLL.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HiFiDAX2API.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\HarmanAudioInterface.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\FMAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOvlldp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv211.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOv201.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DolbyDAX2APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPP64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPO64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64AF3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPD64A.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64F3.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DDPA64.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOv251.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\DAX3APOProp.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64Proxy.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CX64APO.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\CAF64APO2.dll
2016-12-13 16:49:40 ----A---- C:\Windows\system32\Caf64api.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AudysseyEfx.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\audioLibVc.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAR64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AERTAC64.dll
2016-12-13 16:49:39 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2016-12-13 16:49:37 ----A---- C:\Windows\system32\drivers\rtkSSTsetting.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\RCoRes64.dat
2016-12-13 16:49:36 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RtNicProp64.dll
2016-12-13 16:48:17 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2016-12-12 19:49:13 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2016-11-30 12:42:52 ----D---- C:\Users\Othala\AppData\Roaming\dll-files.com
2016-11-30 12:39:33 ----D---- C:\Program Files (x86)\Dll-Files.com Fixer
2016-11-30 12:16:29 ----D---- C:\Program Files (x86)\DLL Suite
2016-11-30 12:05:15 ----D---- C:\ProgramData\TEMP
2016-11-30 11:33:25 ----D---- C:\Program Files\AMD
2016-11-30 11:33:05 ----D---- C:\Program Files (x86)\AMD APP
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2016-11-29 22:34:16 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2016-11-29 22:27:48 ----A---- C:\Windows\system32\aspnet_counters.dll
2016-11-28 15:59:06 ----D---- C:\Program Files (x86)\Moje cukrarna 3
2016-11-25 15:52:04 ----D---- C:\Users\Othala\AppData\Roaming\EleFun Games
2016-11-25 15:51:54 ----D---- C:\Users\Othala\AppData\Roaming\spidla
2016-11-25 15:51:33 ----D---- C:\Users\Othala\AppData\Roaming\Špidla Data Processing, s.r.o
2016-11-25 15:51:33 ----D---- C:\ProgramData\Špidla Data Processing, s.r.o
2016-11-25 15:51:20 ----D---- C:\Program Files (x86)\Moje cukrárna 2
2016-11-25 15:19:22 ----D---- C:\Spidla
2016-11-21 15:59:44 ----D---- C:\Users\Othala\AppData\Roaming\AMD
======List of files/folders modified in the last 1 month======
2016-12-18 16:45:53 ----D---- C:\Windows\Temp
2016-12-18 16:45:53 ----D---- C:\Program Files\trend micro
2016-12-18 16:42:44 ----D---- C:\ProgramData\ProductData
2016-12-18 16:42:26 ----D---- C:\Windows\Prefetch
2016-12-18 16:40:53 ----D---- C:\Windows\system32\config
2016-12-18 15:37:43 ----D---- C:\Windows\system32\Tasks
2016-12-18 15:23:51 ----D---- C:\Windows\System32
2016-12-18 15:23:51 ----D---- C:\Windows\inf
2016-12-18 15:23:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-12-18 12:27:39 ----D---- C:\Users\Othala\AppData\Roaming\uTorrent
2016-12-18 11:26:25 ----D---- C:\## Torrent
2016-12-18 11:23:44 ----D---- C:\Windows\SYSWOW64\drivers
2016-12-18 10:48:27 ----RD---- C:\Program Files (x86)
2016-12-17 20:24:37 ----D---- C:\Users\Othala\AppData\Roaming\MPC-HC
2016-12-17 15:44:43 ----D---- C:\Windows\rescache
2016-12-17 14:24:20 ----D---- C:\Windows
2016-12-17 09:21:49 ----SHD---- C:\Windows\Installer
2016-12-17 09:19:18 ----D---- C:\Windows\Logs
2016-12-17 09:19:18 ----D---- C:\Windows\debug
2016-12-16 18:39:51 ----D---- C:\Windows\SysWOW64
2016-12-16 18:39:45 ----RSD---- C:\Windows\assembly
2016-12-16 18:38:49 ----SHD---- C:\System Volume Information
2016-12-15 21:31:09 ----D---- C:\Windows\Microsoft.NET
2016-12-15 20:13:14 ----D---- C:\Windows\winsxs
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\en-US
2016-12-15 20:10:26 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-12-15 20:10:26 ----D---- C:\Program Files\Internet Explorer
2016-12-15 20:10:26 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-15 20:10:25 ----D---- C:\Windows\system32\en-US
2016-12-15 20:10:25 ----D---- C:\Windows\system32\drivers
2016-12-15 20:10:25 ----D---- C:\Windows\system32\cs-CZ
2016-12-15 20:10:21 ----D---- C:\Windows\AppPatch
2016-12-15 20:10:20 ----D---- C:\Windows\system32\Boot
2016-12-15 19:14:48 ----D---- C:\ProgramData\Microsoft Help
2016-12-15 19:13:47 ----A---- C:\Windows\win.ini
2016-12-15 19:12:49 ----D---- C:\Windows\system32\MRT
2016-12-15 19:10:27 ----AC---- C:\Windows\system32\MRT.exe
2016-12-15 19:06:01 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-12-15 19:03:54 ----D---- C:\Windows\system32\catroot2
2016-12-13 17:08:55 ----D---- C:\Windows\pss
2016-12-13 17:02:00 ----D---- C:\Windows\Tasks
2016-12-13 16:55:25 ----D---- C:\Windows\system32\catroot
2016-12-13 16:50:58 ----D---- C:\Windows\system32\DAX2
2016-12-13 16:50:58 ----AHD---- C:\ProgramData
2016-12-13 16:50:27 ----D---- C:\Windows\SYSWOW64\RTCOM
2016-12-13 16:50:11 ----D---- C:\Windows\system32\DriverStore
2016-12-13 16:48:17 ----A---- C:\Windows\system32\RTNUninst64.dll
2016-12-13 16:30:38 ----RD---- C:\Program Files
2016-12-13 16:30:30 ----D---- C:\Program Files\Windows Media Player
2016-12-13 16:30:30 ----D---- C:\Program Files\DVD Maker
2016-12-13 16:30:25 ----SD---- C:\ProgramData\Microsoft
2016-12-13 16:30:25 ----D---- C:\Windows\system32\wbem
2016-12-13 16:30:25 ----D---- C:\Windows\PolicyDefinitions
2016-12-12 19:49:14 ----D---- C:\Program Files (x86)\ffdshow
2016-12-12 19:49:12 ----D---- C:\ProgramData\IObit
2016-12-12 19:49:12 ----D---- C:\Program Files (x86)\IObit
2016-12-10 18:35:11 ----D---- C:\Windows\system32\NDF
2016-12-10 17:46:49 ----D---- C:\ProgramData\Package Cache
2016-12-09 19:47:22 ----D---- C:\Users\Othala\AppData\Roaming\vlc
2016-12-06 13:54:49 ----D---- C:\ProgramData\CanonIJPLM
2016-12-06 13:34:24 ----D---- C:\Windows\system32\LogFiles
2016-12-05 15:32:08 ----D---- C:\Windows\system32\wdi
2016-11-29 15:55:33 ----D---- C:\Windows\Panther
2016-11-29 15:51:12 ----D---- C:\Windows\registration
2016-11-29 15:44:03 ----D---- C:\Program Files (x86)\Ze zivota hmyzu
2016-11-28 19:49:54 ----D---- C:\##FILMY
2016-11-23 15:44:54 ----D---- C:\Users\Othala\AppData\Roaming\IObit
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2016-06-13 85704]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2016-06-13 43720]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2016-12-15 35864]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2016-12-15 148032]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2016-09-27 28600]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2016-06-13 26528]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2010-01-29 115600]
R2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-09-19 59648]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2016-12-15 176464]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2016-09-27 79696]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2016-10-23 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2016-10-23 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-10-23 96256]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2016-12-13 5523456]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2016-03-10 27008]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-12-13 1037832]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-01-13 56448]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2016-12-18 22200]
S3 GeneStor;Genesys Logic Storage Driver; C:\Windows\system32\DRIVERS\GeneStor.sys [2016-09-03 60928]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2016-12-15 192216]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2016-03-10 64896]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2016-10-23 246784]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-12-06 344064]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2016-12-15 476736]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2016-12-15 476736]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-11-24 350528]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2013-06-28 84616]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2016-12-15 1089592]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2016-12-15 1490296]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2016-07-29 3046688]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-18 270016]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-13 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-12-09 1467168]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-15 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, PC dlouho přemýšlí
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu, PC dlouho přemýšlí
Děkuji za pomoc, myslím, že je to lepší. Ještě bych se rád zeptal, mám možnost mít placenou verzi AVG busines edice od kamaráde, který pracuje v AVG. Mám si AVG dát místo Avira free?
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, PC dlouho přemýšlí
Osobně bych vám to neradil, AVG tu nepovažujeme za dobrý AV. Je to ale vaše volba.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu, PC dlouho přemýšlí
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?