dobry den, prosim o kontrolu pc, avast vypina náhodile behavioralni štit.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mich-Much at 2018-08-28 16:59:14
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 3 GB (6%) free of 61 GB
Total RAM: 4094 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:59:21, on 28.8.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19101)
Boot mode: Normal
Running processes:
C:\Windows\vsnpstd3.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
D:\Programy\AVAST Software\Avast\AvastUI.exe
D:\Programy\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\trend micro\Mich-Much.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Programy\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StartCCC] "D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [CCleaner Monitoring] "D:\Programy\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk = ?
O4 - Global Startup: CodecPackUpdateChecker.lnk = C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: aswbIDSAgent - AVAST Software - D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - D:\Programy\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - D:\Programy\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13737 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"D:\Programy\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\vsnpstd3.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BG2BJ3405XK;CONNECTION=USB;MONITOR=1;
"D:\Programy\PowerISO\PWRISOVM.EXE"
"C:\Genius\ioCentre\gTaskBar.exe"
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"D:\Programy\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Genius\ioCentre\gMouseTask
C:\Genius\ioCentre\gKbdTask
C:\Genius\ioCentre\gIoCentreFunMgm
D:\Programy\CCleaner\CCleaner.exe /MONITOR /uac
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Genius\ioCentre\GMouseService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"D:\Programy\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3660
"D:\Programy\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /c
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=68.0.3440.106 --initial-client-data=0x88,0x8c,0x90,0x84,0x94,0x7fef53124d0,0x7fef53124e0,0x7fef53124f0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6632 --on-initialized-event-handle=352 --parent-handle=356 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1100,15700778811908326980,8846776508239099040,131072 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=5F4DBE5B7B232FF1C9ECFA834D730453 --mojo-platform-channel-handle=1108 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1100,15700778811908326980,8846776508239099040,131072 --service-pipe-token=3D215BD8A804B11EC453B42B88F6FFF9 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=3D215BD8A804B11EC453B42B88F6FFF9 --renderer-client-id=3 --mojo-platform-channel-handle=2308 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1100,15700778811908326980,8846776508239099040,131072 --service-pipe-token=5AB9F14DAD10203C241A49F23C1A5B94 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=5AB9F14DAD10203C241A49F23C1A5B94 --renderer-client-id=4 --mojo-platform-channel-handle=2592 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1100,15700778811908326980,8846776508239099040,131072 --service-pipe-token=EA7C1AAD8621EA48B694E0004904A2FE --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=EA7C1AAD8621EA48B694E0004904A2FE --renderer-client-id=5 --mojo-platform-channel-handle=2688 /prefetch:1
"D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1100,15700778811908326980,8846776508239099040,131072 --service-pipe-token=4BD56CAEB718276110F1974CCA18C5FB --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=4BD56CAEB718276110F1974CCA18C5FB --renderer-client-id=36 --mojo-platform-channel-handle=6396 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe114_ Global\UsGthrCtrlFltPipeMssGthrPipe114 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1100,15700778811908326980,8846776508239099040,131072 --service-pipe-token=44BC000CF3746881DD77F0559A73959C --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=44BC000CF3746881DD77F0559A73959C --renderer-client-id=44 --mojo-platform-channel-handle=3744 /prefetch:1
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1100,15700778811908326980,8846776508239099040,131072 --service-pipe-token=87BF451B29A6789EA7389C87165F39DD --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=87BF451B29A6789EA7389C87165F39DD --renderer-client-id=48 --mojo-platform-channel-handle=3736 /prefetch:1
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"D:\WinFast WorkArea\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Mich-Much\AppData\Roaming\Mozilla\Firefox\Profiles\l4ftsdsf.default-1456252396109
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13 81024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2018-08-12 1026224]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-06-01 149168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13 69760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-15 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2018-08-12 692912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-15 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"snpstd3"=C:\Windows\vsnpstd3.exe [2006-09-18 843776]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"AvastUI.exe"=D:\Programy\AVAST Software\Avast\AvLaunch.exe [2018-08-26 242392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
""= []
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
"CCleaner Monitoring"=D:\Programy\CCleaner\CCleaner64.exe [2018-06-24 18385368]
"AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8"=C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2018-08-13 1727312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
D:\Hry\Electronic Arts\EADM\EADMUI.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Mich-Much\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp]
D:\Programy\Garmin\Express Tray\ExpressTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
D:\Programy\iTunes\iTunesHelper.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyGarminAgent]
C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe [2010-03-16 337256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Programy\QuickTime\QTTask.exe -atboottime []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe [2010-07-04 17408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2009-06-17 85160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinFast Schedule]
C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2010-03-25 2924544]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Mich-Much^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk]
C:\Users\MICH-M~1\AppData\Local\Facebook\Games\FACEBO~2.EXE [2018-05-03 570232]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"=D:\Programy\PowerISO\PWRISOVM.EXE [2010-04-12 180224]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2012-04-23 61440]
"Raptr"=C:\Program Files (x86)\Raptr\raptrstub.exe [2015-10-01 56080]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StartCCC"=D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-07-28 767176]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CodecPackUpdateChecker.lnk - C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
C:\Users\Mich-Much\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-08-26 15:12:26 ----A---- C:\Windows\system32\aswBoot.exe
2018-08-26 07:52:11 ----ASH---- C:\pagefile.sys
2018-08-25 13:25:43 ----D---- C:\Windows\rescache
2018-08-25 09:19:55 ----SHD---- C:\Config.Msi
2018-08-25 09:14:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscsvc.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscdll.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscapi.dll
2018-08-25 09:14:28 ----A---- C:\Windows\system32\ieframe.dll
2018-08-25 09:14:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\jscript9.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\urlmon.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\processr.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\csc.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-08-25 09:14:24 ----A---- C:\Windows\system32\win32k.sys
2018-08-25 09:14:24 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\iertutil.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msiexec.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\hal.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\fontsub.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-08-25 09:14:22 ----A---- C:\Windows\system32\CscMig.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\hlink.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\netio.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\hlink.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ieapfltr.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ie4uinit.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtrans.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-08-25 09:14:20 ----A---- C:\Windows\system32\consent.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\atmfd.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\winsrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\wdigest.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\schannel.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rstrui.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\mshtmled.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\lsasrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kernel32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\conhost.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\advapi32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\srcore.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\smss.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-08-25 09:14:18 ----A---- C:\Windows\system32\csrsrv.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidsvc.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidapi.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\wow64win.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\jsproxy.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64cpu.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspisrv.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspicli.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\lsass.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\appid.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\authui.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\apisetschema.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\user.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\appinfo.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\adtschema.dll
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\DESIGNER
2018-08-15 14:24:23 ----D---- C:\Program Files\7-Zip
2018-08-10 16:29:56 ----D---- C:\Program Files (x86)\AVAST Software
2018-08-10 16:24:53 ----D---- C:\Users\Mich-Much\AppData\Roaming\AVAST Software
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswStm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswSP.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswArPot.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbuniva.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbloga.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsha.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsdrivera.sys
2018-08-10 16:19:46 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
2018-08-10 16:19:32 ----D---- C:\Program Files\Common Files\AVAST Software
2018-08-10 16:14:42 ----D---- C:\ProgramData\AVAST Software
2018-08-03 10:49:31 ----D---- C:\Program Files\Google
======List of files/folders modified in the last 1 month======
2018-08-28 16:59:21 ----D---- C:\Windows\Prefetch
2018-08-28 16:59:18 ----D---- C:\Program Files\trend micro
2018-08-28 16:58:21 ----D---- C:\Windows\Temp
2018-08-28 16:11:15 ----SHD---- C:\System Volume Information
2018-08-28 16:00:39 ----SHD---- C:\Windows\Installer
2018-08-28 15:59:27 ----D---- C:\Windows\system32\config
2018-08-27 21:13:14 ----D---- C:\Windows\System32
2018-08-27 21:13:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-08-26 15:18:41 ----D---- C:\Windows\system32\drivers
2018-08-26 15:12:48 ----D---- C:\Windows\system32\Tasks
2018-08-26 07:52:23 ----D---- C:\Windows
2018-08-25 10:57:45 ----D---- C:\Windows\Microsoft.NET
2018-08-25 10:56:51 ----RSD---- C:\Windows\assembly
2018-08-25 09:59:13 ----D---- C:\Windows\inf
2018-08-25 09:59:11 ----D---- C:\Windows\debug
2018-08-25 09:46:32 ----D---- C:\Windows\winsxs
2018-08-25 09:42:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-08-25 09:42:02 ----D---- C:\Program Files\Internet Explorer
2018-08-25 09:42:02 ----D---- C:\Program Files (x86)\Internet Explorer
2018-08-25 09:42:01 ----D---- C:\Windows\SYSWOW64\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\SysWOW64
2018-08-25 09:42:01 ----D---- C:\Windows\system32\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\cs-CZ
2018-08-25 09:42:00 ----D---- C:\Windows\system32\migration
2018-08-25 09:42:00 ----D---- C:\Windows\system32\Boot
2018-08-25 09:42:00 ----D---- C:\Windows\AppPatch
2018-08-25 09:41:59 ----D---- C:\Windows\system32\DriverStore
2018-08-25 09:33:24 ----D---- C:\Windows\system32\MRT
2018-08-25 09:26:32 ----AC---- C:\Windows\system32\MRT.exe
2018-08-25 09:17:29 ----D---- C:\Windows\system32\catroot2
2018-08-21 21:29:13 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files
2018-08-21 21:25:49 ----D---- C:\Program Files\Microsoft Office
2018-08-15 14:36:08 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-08-15 14:36:05 ----D---- C:\Windows\system32\Macromed
2018-08-15 14:36:04 ----D---- C:\Windows\SYSWOW64\Macromed
2018-08-15 14:31:58 ----SD---- C:\Users\Mich-Much\AppData\Roaming\Microsoft
2018-08-15 14:31:46 ----D---- C:\ProgramData\Skype
2018-08-15 14:31:46 ----D---- C:\Program Files (x86)\Microsoft
2018-08-15 14:31:44 ----RD---- C:\Program Files (x86)\Skype
2018-08-15 14:31:44 ----D---- C:\Program Files (x86)\Common Files
2018-08-15 14:30:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2018-08-15 14:29:26 ----D---- C:\Program Files (x86)\Java
2018-08-15 14:27:56 ----D---- C:\ProgramData\Apple Computer
2018-08-15 14:24:23 ----RD---- C:\Program Files
2018-08-11 13:09:52 ----D---- C:\ProgramData\tmp
2018-08-11 13:09:52 ----D---- C:\Program Files (x86)\Raptr
2018-08-11 11:35:09 ----D---- C:\ProgramData\Garmin
2018-08-10 16:29:56 ----RD---- C:\Program Files (x86)
2018-08-10 16:14:42 ----HD---- C:\ProgramData
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-08-26 201320]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-08-26 346664]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-08-26 59568]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-08-26 85968]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-08-26 381560]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-08-26 199712]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-08-26 229384]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-08-26 249016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-08-26 111864]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-08-26 1027720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-08-26 467232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-12-18 34472]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R2 AODDriver4.3;AODDriver4.3; \??\D:\Programy\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-08-26 163272]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-08-26 214800]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-01-26 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-01-26 43680]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-07-29 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-07-29 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2011-10-26 25600]
R3 gMouUsb16;USB 16-bit Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb16.sys [2009-06-25 11776]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-22 347680]
R3 SNPSTD3;USB PC Camera (SNPSTD3); C:\Windows\system32\DRIVERS\snpstd3.sys [2007-04-03 10535040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 36352]
R3 WFLR6654;WinFast DTV2000 H Plus (XC3028); C:\Windows\system32\drivers\wfeaglxt.sys [2009-10-21 474240]
S2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-10-27 36328]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-08-26 46968]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 gMouPS2;PS2 Scroll Mouse Device; C:\Windows\system32\DRIVERS\gMouPS2.sys [2009-06-30 19968]
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro37.sys [2017-12-03 55232]
S3 Maplom;Maplom; C:\Windows\system32\drivers\Maplom.sys []
S3 MaplomL;MaplomL; C:\Windows\system32\drivers\MaplomL.sys []
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-05-24 253728]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-10-27 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-10-27 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-10-27 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-10-27 146920]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 ULCDRHlp;ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2011-08-02 51712]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-03-21 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-07-29 246784]
R2 AMD FUEL Service;AMD FUEL Service; D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe [2015-07-28 344064]
R2 avast! Antivirus;Avast Antivirus; D:\Programy\AVAST Software\Avast\AvastSvc.exe [2018-08-26 322464]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-08-09 8853984]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [2010-03-11 16384]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-03-11 75136]
R2 TomTomHOMEService;TomTomHOMEService; D:\Programy\TomTom HOME 2\TomTomHOMEService.exe [2015-07-13 93040]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R3 aswbIDSAgent;aswbIDSAgent; D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe [2018-08-26 7994520]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-15 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-05-27 654848]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe [2018-06-06 1194512]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-07-19 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-08-09 194512]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-08-09 258720]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-27 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-14 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vypínání behaviorálního štítu - Avast
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání behaviorálního štítu - Avast
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vypínání behaviorálního štítu - Avast
# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build: 07-17-2018
# Database: 2018-08-24.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-28-2018
# Duration: 00:00:12
# OS: Windows 7 Ultimate
# Cleaned: 48
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Windows\SysWOW64\C2MP
Deleted C:\Program Files (x86)\ProxyGate
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\f4ded8e16fb849
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1823128570-3126352839-1645658126-1000\Software\facemoods.com
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1823128570-3126352839-1645658126-1000\Software\ICQ\ICQToolbar
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\WinFast Schedule
Deleted HKCU\Software\YahooPartnerToolbar
Deleted HKLM\Software\Wow6432Node\PIP
Deleted HKCU\Software\GamePlayLabs
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\YourFileDownloader
Deleted HKCU\Software\YourFileDownloader
Deleted HKLM\Software\Wow6432Node\YourFileDownloader
Deleted HKLM\Software\Wow6432Node\Classes\AppID\NCTAudioFormatSettings3.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL
Deleted HKLM\Software\Wow6432Node\Classes\AppID\NCTAudioCompress3.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL
Deleted HKLM\Software\Wow6432Node\Classes\AppID\BHO.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{6BC38BF4-E84D-46E1-920B-42D31AEA617E}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Deleted HKLM\Software\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Deleted HKLM\Software\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Deleted HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Deleted HKLM\Software\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Deleted HKLM\Software\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{65C994A2-C65A-4A20-BA92-AADAFC0DCE49}
Deleted HKLM\Software\Classes\AppID\{65C994A2-C65A-4A20-BA92-AADAFC0DCE49}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|ICQ Search
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4F39BF89-AFF1-40CF-B0A6-688D552D9E0B}
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1823128570-3126352839-1645658126-1000\Software\SweetIM
***** [ Chromium (and derivatives) ] *****
Deleted kpionmjnkbpcdpcflammlgllecmejgjj
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [6158 octets] - [28/08/2018 17:18:11]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build: 07-17-2018
# Database: 2018-08-24.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-28-2018
# Duration: 00:00:12
# OS: Windows 7 Ultimate
# Cleaned: 48
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Windows\SysWOW64\C2MP
Deleted C:\Program Files (x86)\ProxyGate
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\f4ded8e16fb849
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1823128570-3126352839-1645658126-1000\Software\facemoods.com
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1823128570-3126352839-1645658126-1000\Software\ICQ\ICQToolbar
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\WinFast Schedule
Deleted HKCU\Software\YahooPartnerToolbar
Deleted HKLM\Software\Wow6432Node\PIP
Deleted HKCU\Software\GamePlayLabs
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\YourFileDownloader
Deleted HKCU\Software\YourFileDownloader
Deleted HKLM\Software\Wow6432Node\YourFileDownloader
Deleted HKLM\Software\Wow6432Node\Classes\AppID\NCTAudioFormatSettings3.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL
Deleted HKLM\Software\Wow6432Node\Classes\AppID\NCTAudioCompress3.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL
Deleted HKLM\Software\Wow6432Node\Classes\AppID\BHO.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{6BC38BF4-E84D-46E1-920B-42D31AEA617E}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Deleted HKLM\Software\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Deleted HKLM\Software\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Deleted HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Preapproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Deleted HKLM\Software\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Deleted HKLM\Software\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
Deleted HKLM\Software\Wow6432Node\Classes\AppID\{65C994A2-C65A-4A20-BA92-AADAFC0DCE49}
Deleted HKLM\Software\Classes\AppID\{65C994A2-C65A-4A20-BA92-AADAFC0DCE49}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|ICQ Search
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4F39BF89-AFF1-40CF-B0A6-688D552D9E0B}
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1823128570-3126352839-1645658126-1000\Software\SweetIM
***** [ Chromium (and derivatives) ] *****
Deleted kpionmjnkbpcdpcflammlgllecmejgjj
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [6158 octets] - [28/08/2018 17:18:11]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání behaviorálního štítu - Avast
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vypínání behaviorálního štítu - Avast
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mich-Much at 2018-08-28 18:06:10
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 3 GB (6%) free of 61 GB
Total RAM: 4094 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:06:13, on 28.8.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19101)
Boot mode: Normal
Running processes:
C:\Windows\vsnpstd3.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
D:\Programy\AVAST Software\Avast\AvastUI.exe
D:\Programy\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\trend micro\Mich-Much.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Programy\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StartCCC] "D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [CCleaner Monitoring] "D:\Programy\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk = ?
O4 - Global Startup: CodecPackUpdateChecker.lnk = C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: aswbIDSAgent - AVAST Software - D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - D:\Programy\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - D:\Programy\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13737 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"D:\Programy\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\vsnpstd3.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
AvastUI.exe /nogui
"D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BG2BJ3405XK;CONNECTION=USB;MONITOR=1;
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"D:\Programy\PowerISO\PWRISOVM.EXE"
"C:\Genius\ioCentre\gTaskBar.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"D:\Programy\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Genius\ioCentre\gMouseTask
D:\Programy\CCleaner\CCleaner.exe /MONITOR /uac
C:\Genius\ioCentre\gKbdTask
C:\Genius\ioCentre\gIoCentreFunMgm
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Genius\ioCentre\GMouseService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"D:\Programy\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2536
"D:\Programy\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /c
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=68.0.3440.106 --initial-client-data=0x88,0x8c,0x90,0x84,0x94,0x7fedc6b24d0,0x7fedc6b24e0,0x7fedc6b24f0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2888 --on-initialized-event-handle=364 --parent-handle=348 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=932DF77F8D52A2AFE6480F158CD19DEA --mojo-platform-channel-handle=1156 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=6FBFE8C557EC8163DA7EF94E99A41CA8 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=6FBFE8C557EC8163DA7EF94E99A41CA8 --renderer-client-id=3 --mojo-platform-channel-handle=2320 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=FF3BB83ADD1F2A3837B2E885FA467AA1 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=FF3BB83ADD1F2A3837B2E885FA467AA1 --renderer-client-id=4 --mojo-platform-channel-handle=2712 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=4F6A058B9D838BDE4E51F9F772B8B628 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=4F6A058B9D838BDE4E51F9F772B8B628 --renderer-client-id=5 --mojo-platform-channel-handle=2940 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=1288055F265527E6658EA3F6ACE219F7 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=1288055F265527E6658EA3F6ACE219F7 --renderer-client-id=11 --mojo-platform-channel-handle=4888 /prefetch:1
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=0688C332102011C848B4265F9AB25FA9 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=0688C332102011C848B4265F9AB25FA9 --renderer-client-id=75 --mojo-platform-channel-handle=5472 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=5DA69BB1A306EF35FF7F7DDA49BB1296 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=5DA69BB1A306EF35FF7F7DDA49BB1296 --renderer-client-id=76 --mojo-platform-channel-handle=2576 /prefetch:1
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"D:\WinFast WorkArea\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Mich-Much\AppData\Roaming\Mozilla\Firefox\Profiles\l4ftsdsf.default-1456252396109
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13 81024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2018-08-12 1026224]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-06-01 149168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13 69760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-15 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2018-08-12 692912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-15 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"snpstd3"=C:\Windows\vsnpstd3.exe [2006-09-18 843776]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"AvastUI.exe"=D:\Programy\AVAST Software\Avast\AvLaunch.exe [2018-08-26 242392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
""= []
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
"CCleaner Monitoring"=D:\Programy\CCleaner\CCleaner64.exe [2018-06-24 18385368]
"AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8"=C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2018-08-13 1727312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
D:\Hry\Electronic Arts\EADM\EADMUI.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Mich-Much\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp]
D:\Programy\Garmin\Express Tray\ExpressTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
D:\Programy\iTunes\iTunesHelper.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyGarminAgent]
C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe [2010-03-16 337256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Programy\QuickTime\QTTask.exe -atboottime []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe [2010-07-04 17408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2009-06-17 85160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Mich-Much^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk]
C:\Users\MICH-M~1\AppData\Local\Facebook\Games\FACEBO~2.EXE [2018-05-03 570232]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"=D:\Programy\PowerISO\PWRISOVM.EXE [2010-04-12 180224]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2012-04-23 61440]
"Raptr"=C:\Program Files (x86)\Raptr\raptrstub.exe [2015-10-01 56080]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StartCCC"=D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-07-28 767176]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CodecPackUpdateChecker.lnk - C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
C:\Users\Mich-Much\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-08-26 15:12:26 ----A---- C:\Windows\system32\aswBoot.exe
2018-08-26 07:52:11 ----ASH---- C:\pagefile.sys
2018-08-25 13:25:43 ----D---- C:\Windows\rescache
2018-08-25 09:19:55 ----SHD---- C:\Config.Msi
2018-08-25 09:14:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscsvc.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscdll.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscapi.dll
2018-08-25 09:14:28 ----A---- C:\Windows\system32\ieframe.dll
2018-08-25 09:14:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\jscript9.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\urlmon.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\processr.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\csc.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-08-25 09:14:24 ----A---- C:\Windows\system32\win32k.sys
2018-08-25 09:14:24 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\iertutil.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msiexec.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\hal.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\fontsub.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-08-25 09:14:22 ----A---- C:\Windows\system32\CscMig.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\hlink.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\netio.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\hlink.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ieapfltr.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ie4uinit.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtrans.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-08-25 09:14:20 ----A---- C:\Windows\system32\consent.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\atmfd.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\winsrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\wdigest.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\schannel.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rstrui.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\mshtmled.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\lsasrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kernel32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\conhost.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\advapi32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\srcore.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\smss.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-08-25 09:14:18 ----A---- C:\Windows\system32\csrsrv.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidsvc.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidapi.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\wow64win.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\jsproxy.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64cpu.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspisrv.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspicli.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\lsass.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\appid.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\authui.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\apisetschema.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\user.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\appinfo.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\adtschema.dll
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\DESIGNER
2018-08-15 14:24:23 ----D---- C:\Program Files\7-Zip
2018-08-10 16:29:56 ----D---- C:\Program Files (x86)\AVAST Software
2018-08-10 16:24:53 ----D---- C:\Users\Mich-Much\AppData\Roaming\AVAST Software
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswStm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswSP.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswArPot.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbuniva.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbloga.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsha.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsdrivera.sys
2018-08-10 16:19:46 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
2018-08-10 16:19:32 ----D---- C:\Program Files\Common Files\AVAST Software
2018-08-10 16:14:42 ----D---- C:\ProgramData\AVAST Software
2018-08-03 10:49:31 ----D---- C:\Program Files\Google
======List of files/folders modified in the last 1 month======
2018-08-28 18:06:12 ----D---- C:\Program Files\trend micro
2018-08-28 18:04:22 ----D---- C:\Windows\Temp
2018-08-28 17:35:43 ----SHD---- C:\Windows\Installer
2018-08-28 17:29:23 ----D---- C:\Windows\system32\drivers
2018-08-28 17:29:17 ----D---- C:\Windows\Prefetch
2018-08-28 17:23:09 ----D---- C:\Windows\system32\Tasks
2018-08-28 17:19:47 ----D---- C:\Windows\system32\config
2018-08-28 17:18:39 ----RD---- C:\Program Files (x86)
2018-08-28 17:18:30 ----D---- C:\Windows\SysWOW64
2018-08-28 17:18:11 ----D---- C:\AdwCleaner
2018-08-28 16:11:15 ----SHD---- C:\System Volume Information
2018-08-27 21:13:14 ----D---- C:\Windows\System32
2018-08-27 21:13:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-08-26 07:52:23 ----D---- C:\Windows
2018-08-25 10:57:45 ----D---- C:\Windows\Microsoft.NET
2018-08-25 10:56:51 ----RSD---- C:\Windows\assembly
2018-08-25 09:59:13 ----D---- C:\Windows\inf
2018-08-25 09:59:11 ----D---- C:\Windows\debug
2018-08-25 09:46:32 ----D---- C:\Windows\winsxs
2018-08-25 09:42:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-08-25 09:42:02 ----D---- C:\Program Files\Internet Explorer
2018-08-25 09:42:02 ----D---- C:\Program Files (x86)\Internet Explorer
2018-08-25 09:42:01 ----D---- C:\Windows\SYSWOW64\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\cs-CZ
2018-08-25 09:42:00 ----D---- C:\Windows\system32\migration
2018-08-25 09:42:00 ----D---- C:\Windows\system32\Boot
2018-08-25 09:42:00 ----D---- C:\Windows\AppPatch
2018-08-25 09:41:59 ----D---- C:\Windows\system32\DriverStore
2018-08-25 09:33:24 ----D---- C:\Windows\system32\MRT
2018-08-25 09:26:32 ----AC---- C:\Windows\system32\MRT.exe
2018-08-25 09:17:29 ----D---- C:\Windows\system32\catroot2
2018-08-21 21:29:13 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files
2018-08-21 21:25:49 ----D---- C:\Program Files\Microsoft Office
2018-08-15 14:36:08 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-08-15 14:36:05 ----D---- C:\Windows\system32\Macromed
2018-08-15 14:36:04 ----D---- C:\Windows\SYSWOW64\Macromed
2018-08-15 14:31:58 ----SD---- C:\Users\Mich-Much\AppData\Roaming\Microsoft
2018-08-15 14:31:46 ----D---- C:\ProgramData\Skype
2018-08-15 14:31:46 ----D---- C:\Program Files (x86)\Microsoft
2018-08-15 14:31:44 ----RD---- C:\Program Files (x86)\Skype
2018-08-15 14:31:44 ----D---- C:\Program Files (x86)\Common Files
2018-08-15 14:30:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2018-08-15 14:29:26 ----D---- C:\Program Files (x86)\Java
2018-08-15 14:27:56 ----D---- C:\ProgramData\Apple Computer
2018-08-15 14:24:23 ----RD---- C:\Program Files
2018-08-11 13:09:52 ----D---- C:\ProgramData\tmp
2018-08-11 13:09:52 ----D---- C:\Program Files (x86)\Raptr
2018-08-11 11:35:09 ----D---- C:\ProgramData\Garmin
2018-08-10 16:14:42 ----HD---- C:\ProgramData
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-08-26 201320]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-08-26 346664]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-08-26 59568]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-08-28 87904]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-08-26 381560]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-08-26 199712]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-08-26 229384]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-08-26 249016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-08-26 111864]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-08-26 1027720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-08-26 467232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-12-18 34472]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R2 AODDriver4.3;AODDriver4.3; \??\D:\Programy\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-08-26 163272]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-08-26 214800]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-01-26 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-01-26 43680]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-07-29 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-07-29 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2011-10-26 25600]
R3 gMouUsb16;USB 16-bit Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb16.sys [2009-06-25 11776]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-22 347680]
R3 SNPSTD3;USB PC Camera (SNPSTD3); C:\Windows\system32\DRIVERS\snpstd3.sys [2007-04-03 10535040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 36352]
R3 WFLR6654;WinFast DTV2000 H Plus (XC3028); C:\Windows\system32\drivers\wfeaglxt.sys [2009-10-21 474240]
S2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-10-27 36328]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-08-26 46968]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 gMouPS2;PS2 Scroll Mouse Device; C:\Windows\system32\DRIVERS\gMouPS2.sys [2009-06-30 19968]
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro37.sys [2017-12-03 55232]
S3 Maplom;Maplom; C:\Windows\system32\drivers\Maplom.sys []
S3 MaplomL;MaplomL; C:\Windows\system32\drivers\MaplomL.sys []
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-05-24 253728]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-10-27 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-10-27 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-10-27 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-10-27 146920]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 ULCDRHlp;ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2011-08-02 51712]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-03-21 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-07-29 246784]
R2 AMD FUEL Service;AMD FUEL Service; D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe [2015-07-28 344064]
R2 avast! Antivirus;Avast Antivirus; D:\Programy\AVAST Software\Avast\AvastSvc.exe [2018-08-26 322464]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-08-09 8853984]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [2010-03-11 16384]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-03-11 75136]
R2 TomTomHOMEService;TomTomHOMEService; D:\Programy\TomTom HOME 2\TomTomHOMEService.exe [2015-07-13 93040]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R3 aswbIDSAgent;aswbIDSAgent; D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe [2018-08-26 7994520]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-15 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-05-27 654848]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe [2018-06-06 1194512]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-07-19 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-08-09 194512]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-08-09 258720]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-27 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-14 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
Run by Mich-Much at 2018-08-28 18:06:10
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 3 GB (6%) free of 61 GB
Total RAM: 4094 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:06:13, on 28.8.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19101)
Boot mode: Normal
Running processes:
C:\Windows\vsnpstd3.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
D:\Programy\AVAST Software\Avast\AvastUI.exe
D:\Programy\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\trend micro\Mich-Much.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Programy\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StartCCC] "D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [CCleaner Monitoring] "D:\Programy\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk = ?
O4 - Global Startup: CodecPackUpdateChecker.lnk = C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: aswbIDSAgent - AVAST Software - D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - D:\Programy\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - D:\Programy\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13737 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"D:\Programy\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\vsnpstd3.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
AvastUI.exe /nogui
"D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BG2BJ3405XK;CONNECTION=USB;MONITOR=1;
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"D:\Programy\PowerISO\PWRISOVM.EXE"
"C:\Genius\ioCentre\gTaskBar.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"D:\Programy\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Genius\ioCentre\gMouseTask
D:\Programy\CCleaner\CCleaner.exe /MONITOR /uac
C:\Genius\ioCentre\gKbdTask
C:\Genius\ioCentre\gIoCentreFunMgm
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Genius\ioCentre\GMouseService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"D:\Programy\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2536
"D:\Programy\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /c
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Mich-Much\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=68.0.3440.106 --initial-client-data=0x88,0x8c,0x90,0x84,0x94,0x7fedc6b24d0,0x7fedc6b24e0,0x7fedc6b24f0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2888 --on-initialized-event-handle=364 --parent-handle=348 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=932DF77F8D52A2AFE6480F158CD19DEA --mojo-platform-channel-handle=1156 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=6FBFE8C557EC8163DA7EF94E99A41CA8 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=6FBFE8C557EC8163DA7EF94E99A41CA8 --renderer-client-id=3 --mojo-platform-channel-handle=2320 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=FF3BB83ADD1F2A3837B2E885FA467AA1 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=FF3BB83ADD1F2A3837B2E885FA467AA1 --renderer-client-id=4 --mojo-platform-channel-handle=2712 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=4F6A058B9D838BDE4E51F9F772B8B628 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=4F6A058B9D838BDE4E51F9F772B8B628 --renderer-client-id=5 --mojo-platform-channel-handle=2940 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=1288055F265527E6658EA3F6ACE219F7 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=1288055F265527E6658EA3F6ACE219F7 --renderer-client-id=11 --mojo-platform-channel-handle=4888 /prefetch:1
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=0688C332102011C848B4265F9AB25FA9 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=0688C332102011C848B4265F9AB25FA9 --renderer-client-id=75 --mojo-platform-channel-handle=5472 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1148,14535342278221359460,17180084489364426188,131072 --service-pipe-token=5DA69BB1A306EF35FF7F7DDA49BB1296 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=1 --service-request-channel-token=5DA69BB1A306EF35FF7F7DDA49BB1296 --renderer-client-id=76 --mojo-platform-channel-handle=2576 /prefetch:1
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"D:\WinFast WorkArea\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Mich-Much\AppData\Roaming\Mozilla\Firefox\Profiles\l4ftsdsf.default-1456252396109
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13 81024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2018-08-12 1026224]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-06-01 149168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13 69760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-15 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2018-08-12 692912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-15 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"snpstd3"=C:\Windows\vsnpstd3.exe [2006-09-18 843776]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"AvastUI.exe"=D:\Programy\AVAST Software\Avast\AvLaunch.exe [2018-08-26 242392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
""= []
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
"CCleaner Monitoring"=D:\Programy\CCleaner\CCleaner64.exe [2018-06-24 18385368]
"AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8"=C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2018-08-13 1727312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
D:\Hry\Electronic Arts\EADM\EADMUI.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Mich-Much\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp]
D:\Programy\Garmin\Express Tray\ExpressTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
D:\Programy\iTunes\iTunesHelper.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyGarminAgent]
C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe [2010-03-16 337256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Programy\QuickTime\QTTask.exe -atboottime []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe [2010-07-04 17408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2009-06-17 85160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Mich-Much^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk]
C:\Users\MICH-M~1\AppData\Local\Facebook\Games\FACEBO~2.EXE [2018-05-03 570232]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"=D:\Programy\PowerISO\PWRISOVM.EXE [2010-04-12 180224]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2012-04-23 61440]
"Raptr"=C:\Program Files (x86)\Raptr\raptrstub.exe [2015-10-01 56080]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StartCCC"=D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-07-28 767176]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CodecPackUpdateChecker.lnk - C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
C:\Users\Mich-Much\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-08-26 15:12:26 ----A---- C:\Windows\system32\aswBoot.exe
2018-08-26 07:52:11 ----ASH---- C:\pagefile.sys
2018-08-25 13:25:43 ----D---- C:\Windows\rescache
2018-08-25 09:19:55 ----SHD---- C:\Config.Msi
2018-08-25 09:14:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscsvc.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscdll.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscapi.dll
2018-08-25 09:14:28 ----A---- C:\Windows\system32\ieframe.dll
2018-08-25 09:14:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\jscript9.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\urlmon.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\processr.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\csc.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-08-25 09:14:24 ----A---- C:\Windows\system32\win32k.sys
2018-08-25 09:14:24 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\iertutil.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msiexec.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\hal.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\fontsub.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-08-25 09:14:22 ----A---- C:\Windows\system32\CscMig.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\hlink.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\netio.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\hlink.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ieapfltr.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ie4uinit.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtrans.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-08-25 09:14:20 ----A---- C:\Windows\system32\consent.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\atmfd.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\winsrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\wdigest.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\schannel.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rstrui.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\mshtmled.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\lsasrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kernel32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\conhost.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\advapi32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\srcore.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\smss.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-08-25 09:14:18 ----A---- C:\Windows\system32\csrsrv.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidsvc.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidapi.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\wow64win.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\jsproxy.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64cpu.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspisrv.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspicli.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\lsass.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\appid.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\authui.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\apisetschema.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\user.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\appinfo.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\adtschema.dll
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\DESIGNER
2018-08-15 14:24:23 ----D---- C:\Program Files\7-Zip
2018-08-10 16:29:56 ----D---- C:\Program Files (x86)\AVAST Software
2018-08-10 16:24:53 ----D---- C:\Users\Mich-Much\AppData\Roaming\AVAST Software
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswStm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswSP.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswArPot.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbuniva.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbloga.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsha.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsdrivera.sys
2018-08-10 16:19:46 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
2018-08-10 16:19:32 ----D---- C:\Program Files\Common Files\AVAST Software
2018-08-10 16:14:42 ----D---- C:\ProgramData\AVAST Software
2018-08-03 10:49:31 ----D---- C:\Program Files\Google
======List of files/folders modified in the last 1 month======
2018-08-28 18:06:12 ----D---- C:\Program Files\trend micro
2018-08-28 18:04:22 ----D---- C:\Windows\Temp
2018-08-28 17:35:43 ----SHD---- C:\Windows\Installer
2018-08-28 17:29:23 ----D---- C:\Windows\system32\drivers
2018-08-28 17:29:17 ----D---- C:\Windows\Prefetch
2018-08-28 17:23:09 ----D---- C:\Windows\system32\Tasks
2018-08-28 17:19:47 ----D---- C:\Windows\system32\config
2018-08-28 17:18:39 ----RD---- C:\Program Files (x86)
2018-08-28 17:18:30 ----D---- C:\Windows\SysWOW64
2018-08-28 17:18:11 ----D---- C:\AdwCleaner
2018-08-28 16:11:15 ----SHD---- C:\System Volume Information
2018-08-27 21:13:14 ----D---- C:\Windows\System32
2018-08-27 21:13:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-08-26 07:52:23 ----D---- C:\Windows
2018-08-25 10:57:45 ----D---- C:\Windows\Microsoft.NET
2018-08-25 10:56:51 ----RSD---- C:\Windows\assembly
2018-08-25 09:59:13 ----D---- C:\Windows\inf
2018-08-25 09:59:11 ----D---- C:\Windows\debug
2018-08-25 09:46:32 ----D---- C:\Windows\winsxs
2018-08-25 09:42:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-08-25 09:42:02 ----D---- C:\Program Files\Internet Explorer
2018-08-25 09:42:02 ----D---- C:\Program Files (x86)\Internet Explorer
2018-08-25 09:42:01 ----D---- C:\Windows\SYSWOW64\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\cs-CZ
2018-08-25 09:42:00 ----D---- C:\Windows\system32\migration
2018-08-25 09:42:00 ----D---- C:\Windows\system32\Boot
2018-08-25 09:42:00 ----D---- C:\Windows\AppPatch
2018-08-25 09:41:59 ----D---- C:\Windows\system32\DriverStore
2018-08-25 09:33:24 ----D---- C:\Windows\system32\MRT
2018-08-25 09:26:32 ----AC---- C:\Windows\system32\MRT.exe
2018-08-25 09:17:29 ----D---- C:\Windows\system32\catroot2
2018-08-21 21:29:13 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files
2018-08-21 21:25:49 ----D---- C:\Program Files\Microsoft Office
2018-08-15 14:36:08 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-08-15 14:36:05 ----D---- C:\Windows\system32\Macromed
2018-08-15 14:36:04 ----D---- C:\Windows\SYSWOW64\Macromed
2018-08-15 14:31:58 ----SD---- C:\Users\Mich-Much\AppData\Roaming\Microsoft
2018-08-15 14:31:46 ----D---- C:\ProgramData\Skype
2018-08-15 14:31:46 ----D---- C:\Program Files (x86)\Microsoft
2018-08-15 14:31:44 ----RD---- C:\Program Files (x86)\Skype
2018-08-15 14:31:44 ----D---- C:\Program Files (x86)\Common Files
2018-08-15 14:30:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2018-08-15 14:29:26 ----D---- C:\Program Files (x86)\Java
2018-08-15 14:27:56 ----D---- C:\ProgramData\Apple Computer
2018-08-15 14:24:23 ----RD---- C:\Program Files
2018-08-11 13:09:52 ----D---- C:\ProgramData\tmp
2018-08-11 13:09:52 ----D---- C:\Program Files (x86)\Raptr
2018-08-11 11:35:09 ----D---- C:\ProgramData\Garmin
2018-08-10 16:14:42 ----HD---- C:\ProgramData
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-08-26 201320]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-08-26 346664]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-08-26 59568]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-08-28 87904]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-08-26 381560]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-08-26 199712]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-08-26 229384]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-08-26 249016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-08-26 111864]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-08-26 1027720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-08-26 467232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-12-18 34472]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R2 AODDriver4.3;AODDriver4.3; \??\D:\Programy\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-08-26 163272]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-08-26 214800]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-01-26 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-01-26 43680]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-07-29 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-07-29 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2011-10-26 25600]
R3 gMouUsb16;USB 16-bit Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb16.sys [2009-06-25 11776]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-22 347680]
R3 SNPSTD3;USB PC Camera (SNPSTD3); C:\Windows\system32\DRIVERS\snpstd3.sys [2007-04-03 10535040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 36352]
R3 WFLR6654;WinFast DTV2000 H Plus (XC3028); C:\Windows\system32\drivers\wfeaglxt.sys [2009-10-21 474240]
S2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-10-27 36328]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-08-26 46968]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 gMouPS2;PS2 Scroll Mouse Device; C:\Windows\system32\DRIVERS\gMouPS2.sys [2009-06-30 19968]
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro37.sys [2017-12-03 55232]
S3 Maplom;Maplom; C:\Windows\system32\drivers\Maplom.sys []
S3 MaplomL;MaplomL; C:\Windows\system32\drivers\MaplomL.sys []
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-05-24 253728]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-10-27 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-10-27 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-10-27 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-10-27 146920]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 ULCDRHlp;ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2011-08-02 51712]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-03-21 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-07-29 246784]
R2 AMD FUEL Service;AMD FUEL Service; D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe [2015-07-28 344064]
R2 avast! Antivirus;Avast Antivirus; D:\Programy\AVAST Software\Avast\AvastSvc.exe [2018-08-26 322464]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-08-09 8853984]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [2010-03-11 16384]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-03-11 75136]
R2 TomTomHOMEService;TomTomHOMEService; D:\Programy\TomTom HOME 2\TomTomHOMEService.exe [2015-07-13 93040]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R3 aswbIDSAgent;aswbIDSAgent; D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe [2018-08-26 7994520]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-15 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-05-27 654848]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe [2018-06-06 1194512]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-07-19 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-08-09 194512]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-08-09 258720]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-27 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-14 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání behaviorálního štítu - Avast
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]/64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]/64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:services
Bonjour Service
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vypínání behaviorálního štítu - Avast
tak jsem kliknul na moveit a počítač se v ten moment natvrdo restartoval a vyskočila navíc tahle tabulka
Systém Windows byl po neočekávaném vypnutí obnoven
Podpis problému:
Název události problému: BlueScreen
Verze operačního systému: 6.1.7601.2.1.0.256.1
ID národního prostředí: 1029
Další informace o problému:
BCCode: f4
BCP1: 0000000000000006
BCP2: FFFFFA80057DAA20
BCP3: FFFFFA80057CA340
BCP4: FFFFF80003B74510
OS Version: 6_1_7601
Service Pack: 1_0
Product: 256_1
Soubory, které popisují problém:
C:\Windows\Minidump\082818-24476-01.dmp
C:\Users\Mich-Much\AppData\Local\Temp\WER-59623-0.sysdata.xml
Přečtěte si prohlášení o zásadách ochrany osobních údajů online:
http://go.microsoft.com/fwlink/?linkid= ... cid=0x0405
Pokud není k dispozici Prohlášení o zásadách ochrany osobních údajů online, přečtěte si toto prohlášení offline:
C:\Windows\system32\cs-CZ\erofflps.txt
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mich-Much at 2018-08-28 20:12:16
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 4 GB (6%) free of 61 GB
Total RAM: 4094 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:12:33, on 28.8.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19101)
Boot mode: Normal
Running processes:
C:\Windows\vsnpstd3.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
D:\Programy\AVAST Software\Avast\AvastUI.exe
D:\Programy\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\trend micro\Mich-Much.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Programy\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StartCCC] "D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [CCleaner Monitoring] "D:\Programy\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk = ?
O4 - Global Startup: CodecPackUpdateChecker.lnk = C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: aswbIDSAgent - AVAST Software - D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - D:\Programy\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - D:\Programy\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13737 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"D:\Programy\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Genius\ioCentre\GMouseService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"D:\Programy\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2664
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WerFault.exe -k -q
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\vsnpstd3.exe"
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
AvastUI.exe /nogui
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BG2BJ3405XK;CONNECTION=USB;MONITOR=1;
"D:\Programy\PowerISO\PWRISOVM.EXE"
"C:\Genius\ioCentre\gTaskBar.exe"
taskeng.exe {16AFD2A1-7F1A-470E-B8C0-A47EC42F521B}
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
C:\Genius\ioCentre\gMouseTask
C:\Genius\ioCentre\gKbdTask
C:\Genius\ioCentre\gIoCentreFunMgm
"D:\Programy\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"D:\Programy\ATI.ACE\Core-Static\CCC.exe" 0
D:\Programy\CCleaner\CCleaner.exe /MONITOR /uac
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1823128570-3126352839-1645658126-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1823128570-3126352839-1645658126-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /c
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /ua /installsource core
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /registermsihelper
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
"D:\WinFast WorkArea\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\system32\msiexec.exe /V
=========Mozilla firefox=========
ProfilePath - C:\Users\Mich-Much\AppData\Roaming\Mozilla\Firefox\Profiles\l4ftsdsf.default-1456252396109
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13 81024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2018-08-12 1026224]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-06-01 149168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13 69760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-15 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2018-08-12 692912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-15 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"snpstd3"=C:\Windows\vsnpstd3.exe [2006-09-18 843776]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"AvastUI.exe"=D:\Programy\AVAST Software\Avast\AvLaunch.exe [2018-08-26 242392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
""= []
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
"CCleaner Monitoring"=D:\Programy\CCleaner\CCleaner64.exe [2018-06-24 18385368]
"AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8"=C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2018-08-13 1727312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
D:\Hry\Electronic Arts\EADM\EADMUI.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Mich-Much\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp]
D:\Programy\Garmin\Express Tray\ExpressTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
D:\Programy\iTunes\iTunesHelper.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyGarminAgent]
C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe [2010-03-16 337256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Programy\QuickTime\QTTask.exe -atboottime []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe [2010-07-04 17408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2009-06-17 85160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Mich-Much^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk]
C:\Users\MICH-M~1\AppData\Local\Facebook\Games\FACEBO~2.EXE [2018-05-03 570232]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"=D:\Programy\PowerISO\PWRISOVM.EXE [2010-04-12 180224]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2012-04-23 61440]
"Raptr"=C:\Program Files (x86)\Raptr\raptrstub.exe [2015-10-01 56080]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StartCCC"=D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-07-28 767176]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CodecPackUpdateChecker.lnk - C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
C:\Users\Mich-Much\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-08-26 15:12:26 ----A---- C:\Windows\system32\aswBoot.exe
2018-08-26 07:52:11 ----ASH---- C:\pagefile.sys
2018-08-25 13:25:43 ----D---- C:\Windows\rescache
2018-08-25 09:19:55 ----SHD---- C:\Config.Msi
2018-08-25 09:14:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscsvc.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscdll.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscapi.dll
2018-08-25 09:14:28 ----A---- C:\Windows\system32\ieframe.dll
2018-08-25 09:14:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\jscript9.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\urlmon.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\processr.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\csc.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-08-25 09:14:24 ----A---- C:\Windows\system32\win32k.sys
2018-08-25 09:14:24 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\iertutil.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msiexec.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\hal.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\fontsub.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-08-25 09:14:22 ----A---- C:\Windows\system32\CscMig.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\hlink.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\netio.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\hlink.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ieapfltr.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ie4uinit.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtrans.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-08-25 09:14:20 ----A---- C:\Windows\system32\consent.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\atmfd.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\winsrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\wdigest.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\schannel.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rstrui.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\mshtmled.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\lsasrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kernel32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\conhost.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\advapi32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\srcore.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\smss.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-08-25 09:14:18 ----A---- C:\Windows\system32\csrsrv.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidsvc.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidapi.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\wow64win.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\jsproxy.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64cpu.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspisrv.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspicli.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\lsass.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\appid.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\authui.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\apisetschema.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\user.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\appinfo.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\adtschema.dll
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\DESIGNER
2018-08-15 14:24:23 ----D---- C:\Program Files\7-Zip
2018-08-10 16:29:56 ----D---- C:\Program Files (x86)\AVAST Software
2018-08-10 16:24:53 ----D---- C:\Users\Mich-Much\AppData\Roaming\AVAST Software
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswStm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswSP.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswArPot.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbuniva.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbloga.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsha.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsdrivera.sys
2018-08-10 16:19:46 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
2018-08-10 16:19:32 ----D---- C:\Program Files\Common Files\AVAST Software
2018-08-10 16:14:42 ----D---- C:\ProgramData\AVAST Software
2018-08-03 10:49:31 ----D---- C:\Program Files\Google
======List of files/folders modified in the last 1 month======
2018-08-28 20:12:31 ----D---- C:\Program Files\trend micro
2018-08-28 20:08:35 ----D---- C:\Windows\Prefetch
2018-08-28 20:07:54 ----D---- C:\Windows\Temp
2018-08-28 20:07:36 ----D---- C:\Windows\Minidump
2018-08-28 20:00:49 ----D---- C:\Windows\system32\config
2018-08-28 19:35:45 ----SHD---- C:\Windows\Installer
2018-08-28 17:29:23 ----D---- C:\Windows\system32\drivers
2018-08-28 17:23:09 ----D---- C:\Windows\system32\Tasks
2018-08-28 17:18:39 ----RD---- C:\Program Files (x86)
2018-08-28 17:18:30 ----D---- C:\Windows\SysWOW64
2018-08-28 17:18:11 ----D---- C:\AdwCleaner
2018-08-28 16:11:15 ----SHD---- C:\System Volume Information
2018-08-27 21:13:14 ----D---- C:\Windows\System32
2018-08-27 21:13:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-08-26 07:52:23 ----D---- C:\Windows
2018-08-25 10:57:45 ----D---- C:\Windows\Microsoft.NET
2018-08-25 10:56:51 ----RSD---- C:\Windows\assembly
2018-08-25 09:59:13 ----D---- C:\Windows\inf
2018-08-25 09:59:11 ----D---- C:\Windows\debug
2018-08-25 09:46:32 ----D---- C:\Windows\winsxs
2018-08-25 09:42:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-08-25 09:42:02 ----D---- C:\Program Files\Internet Explorer
2018-08-25 09:42:02 ----D---- C:\Program Files (x86)\Internet Explorer
2018-08-25 09:42:01 ----D---- C:\Windows\SYSWOW64\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\cs-CZ
2018-08-25 09:42:00 ----D---- C:\Windows\system32\migration
2018-08-25 09:42:00 ----D---- C:\Windows\system32\Boot
2018-08-25 09:42:00 ----D---- C:\Windows\AppPatch
2018-08-25 09:41:59 ----D---- C:\Windows\system32\DriverStore
2018-08-25 09:33:24 ----D---- C:\Windows\system32\MRT
2018-08-25 09:26:32 ----AC---- C:\Windows\system32\MRT.exe
2018-08-25 09:17:29 ----D---- C:\Windows\system32\catroot2
2018-08-21 21:29:13 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files
2018-08-21 21:25:49 ----D---- C:\Program Files\Microsoft Office
2018-08-15 14:36:08 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-08-15 14:36:05 ----D---- C:\Windows\system32\Macromed
2018-08-15 14:36:04 ----D---- C:\Windows\SYSWOW64\Macromed
2018-08-15 14:31:58 ----SD---- C:\Users\Mich-Much\AppData\Roaming\Microsoft
2018-08-15 14:31:46 ----D---- C:\ProgramData\Skype
2018-08-15 14:31:46 ----D---- C:\Program Files (x86)\Microsoft
2018-08-15 14:31:44 ----RD---- C:\Program Files (x86)\Skype
2018-08-15 14:31:44 ----D---- C:\Program Files (x86)\Common Files
2018-08-15 14:30:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2018-08-15 14:29:26 ----D---- C:\Program Files (x86)\Java
2018-08-15 14:27:56 ----D---- C:\ProgramData\Apple Computer
2018-08-15 14:24:23 ----RD---- C:\Program Files
2018-08-11 13:09:52 ----D---- C:\ProgramData\tmp
2018-08-11 13:09:52 ----D---- C:\Program Files (x86)\Raptr
2018-08-11 11:35:09 ----D---- C:\ProgramData\Garmin
2018-08-10 16:14:42 ----HD---- C:\ProgramData
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-08-26 201320]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-08-26 346664]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-08-26 59568]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-08-28 87904]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-08-26 381560]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-08-26 199712]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-08-26 229384]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-08-26 249016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-08-26 111864]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-08-26 1027720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-08-26 467232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-12-18 34472]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R2 AODDriver4.3;AODDriver4.3; \??\D:\Programy\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-08-26 163272]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-08-26 214800]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-01-26 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-01-26 43680]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-07-29 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-07-29 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2011-10-26 25600]
R3 gMouUsb16;USB 16-bit Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb16.sys [2009-06-25 11776]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-22 347680]
R3 SNPSTD3;USB PC Camera (SNPSTD3); C:\Windows\system32\DRIVERS\snpstd3.sys [2007-04-03 10535040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 36352]
R3 WFLR6654;WinFast DTV2000 H Plus (XC3028); C:\Windows\system32\drivers\wfeaglxt.sys [2009-10-21 474240]
S2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-10-27 36328]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-08-26 46968]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 gMouPS2;PS2 Scroll Mouse Device; C:\Windows\system32\DRIVERS\gMouPS2.sys [2009-06-30 19968]
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro37.sys [2017-12-03 55232]
S3 Maplom;Maplom; C:\Windows\system32\drivers\Maplom.sys []
S3 MaplomL;MaplomL; C:\Windows\system32\drivers\MaplomL.sys []
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-05-24 253728]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-10-27 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-10-27 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-10-27 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-10-27 146920]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 ULCDRHlp;ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2011-08-02 51712]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-03-21 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-07-29 246784]
R2 AMD FUEL Service;AMD FUEL Service; D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe [2015-07-28 344064]
R2 avast! Antivirus;Avast Antivirus; D:\Programy\AVAST Software\Avast\AvastSvc.exe [2018-08-26 322464]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-08-09 8853984]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [2010-03-11 16384]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-03-11 75136]
R2 TomTomHOMEService;TomTomHOMEService; D:\Programy\TomTom HOME 2\TomTomHOMEService.exe [2015-07-13 93040]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R3 aswbIDSAgent;aswbIDSAgent; D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe [2018-08-26 7994520]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-15 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-05-27 654848]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe [2018-06-06 1194512]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-07-19 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-08-09 194512]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-08-09 258720]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-27 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-14 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
Systém Windows byl po neočekávaném vypnutí obnoven
Podpis problému:
Název události problému: BlueScreen
Verze operačního systému: 6.1.7601.2.1.0.256.1
ID národního prostředí: 1029
Další informace o problému:
BCCode: f4
BCP1: 0000000000000006
BCP2: FFFFFA80057DAA20
BCP3: FFFFFA80057CA340
BCP4: FFFFF80003B74510
OS Version: 6_1_7601
Service Pack: 1_0
Product: 256_1
Soubory, které popisují problém:
C:\Windows\Minidump\082818-24476-01.dmp
C:\Users\Mich-Much\AppData\Local\Temp\WER-59623-0.sysdata.xml
Přečtěte si prohlášení o zásadách ochrany osobních údajů online:
http://go.microsoft.com/fwlink/?linkid= ... cid=0x0405
Pokud není k dispozici Prohlášení o zásadách ochrany osobních údajů online, přečtěte si toto prohlášení offline:
C:\Windows\system32\cs-CZ\erofflps.txt
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mich-Much at 2018-08-28 20:12:16
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 4 GB (6%) free of 61 GB
Total RAM: 4094 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:12:33, on 28.8.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19101)
Boot mode: Normal
Running processes:
C:\Windows\vsnpstd3.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
D:\Programy\AVAST Software\Avast\AvastUI.exe
D:\Programy\PowerISO\PWRISOVM.EXE
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\trend micro\Mich-Much.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] D:\Programy\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [StartCCC] "D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [CCleaner Monitoring] "D:\Programy\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8] "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --check-run=src=logon --onboarding-at-startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "D:\Programy\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk = ?
O4 - Global Startup: CodecPackUpdateChecker.lnk = C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: aswbIDSAgent - AVAST Software - D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Služba %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - D:\Programy\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - D:\Programy\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13737 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"D:\Programy\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Genius\ioCentre\GMouseService.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"D:\Programy\TomTom HOME 2\TomTomHOMEService.exe"
"C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2664
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\WerFault.exe -k -q
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\vsnpstd3.exe"
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
AvastUI.exe /nogui
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BG2BJ3405XK;CONNECTION=USB;MONITOR=1;
"D:\Programy\PowerISO\PWRISOVM.EXE"
"C:\Genius\ioCentre\gTaskBar.exe"
taskeng.exe {16AFD2A1-7F1A-470E-B8C0-A47EC42F521B}
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
C:\Genius\ioCentre\gMouseTask
C:\Genius\ioCentre\gKbdTask
C:\Genius\ioCentre\gIoCentreFunMgm
"D:\Programy\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"D:\Programy\ATI.ACE\Core-Static\CCC.exe" 0
D:\Programy\CCleaner\CCleaner.exe /MONITOR /uac
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1823128570-3126352839-1645658126-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1823128570-3126352839-1645658126-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /c
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /ua /installsource core
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /registermsihelper
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
"D:\WinFast WorkArea\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
C:\Windows\system32\msiexec.exe /V
=========Mozilla firefox=========
ProfilePath - C:\Users\Mich-Much\AppData\Roaming\Mozilla\Firefox\Profiles\l4ftsdsf.default-1456252396109
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.181.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.154 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\Programy\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=D:\Programy\VLC\npvlc.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13 81024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2018-08-12 1026224]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-06-01 149168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13 69760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-08-15 480120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2018-08-12 692912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-08-15 194424]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"snpstd3"=C:\Windows\vsnpstd3.exe [2006-09-18 843776]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"AvastUI.exe"=D:\Programy\AVAST Software\Avast\AvLaunch.exe [2018-08-26 242392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
""= []
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
"CCleaner Monitoring"=D:\Programy\CCleaner\CCleaner64.exe [2018-06-24 18385368]
"AvastBrowserAutoLaunch_911319AF3C8568F7A5C45C8B41361AA8"=C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2018-08-13 1727312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
C:\Program Files (x86)\Electronic Arts\EADM\Core.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EADM]
D:\Hry\Electronic Arts\EADM\EADMUI.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Mich-Much\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12 138096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GarminExpressTrayApp]
D:\Programy\Garmin\Express Tray\ExpressTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-17 221184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
D:\Programy\iTunes\iTunesHelper.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyGarminAgent]
C:\Program Files (x86)\Garmin\MyGarminAgent\MyGarminAgent.exe [2010-03-16 337256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Programy\QuickTime\QTTask.exe -atboottime []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe [2010-07-04 17408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2009-06-17 85160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Mich-Much^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Gameroom.lnk]
C:\Users\MICH-M~1\AppData\Local\Facebook\Games\FACEBO~2.EXE [2018-05-03 570232]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"=D:\Programy\PowerISO\PWRISOVM.EXE [2010-04-12 180224]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2012-04-23 61440]
"Raptr"=C:\Program Files (x86)\Raptr\raptrstub.exe [2015-10-01 56080]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
"StartCCC"=D:\Programy\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-07-28 767176]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07 601424]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
CodecPackUpdateChecker.lnk - C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
C:\Users\Mich-Much\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sledovat výstrahy inkoustu - HP Deskjet 2540 series.lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37Crusader]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HitmanPro37CrusaderBoot]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-08-26 15:12:26 ----A---- C:\Windows\system32\aswBoot.exe
2018-08-26 07:52:11 ----ASH---- C:\pagefile.sys
2018-08-25 13:25:43 ----D---- C:\Windows\rescache
2018-08-25 09:19:55 ----SHD---- C:\Config.Msi
2018-08-25 09:14:29 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\mshtml.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscsvc.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscdll.dll
2018-08-25 09:14:29 ----A---- C:\Windows\system32\cscapi.dll
2018-08-25 09:14:28 ----A---- C:\Windows\system32\ieframe.dll
2018-08-25 09:14:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\wininet.dll
2018-08-25 09:14:26 ----A---- C:\Windows\system32\jscript9.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\urlmon.dll
2018-08-25 09:14:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\processr.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\csc.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-08-25 09:14:25 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-08-25 09:14:24 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-08-25 09:14:24 ----A---- C:\Windows\system32\win32k.sys
2018-08-25 09:14:24 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\msi.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\mf3216.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\jscript.dll
2018-08-25 09:14:23 ----A---- C:\Windows\system32\iertutil.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\SYSWOW64\cscapi.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\vbscript.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\ntdll.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msiexec.exe
2018-08-25 09:14:22 ----A---- C:\Windows\system32\msfeeds.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\iedkcs32.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\hal.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\fontsub.dll
2018-08-25 09:14:22 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-08-25 09:14:22 ----A---- C:\Windows\system32\CscMig.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\t2embed.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\hlink.dll
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\netio.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-08-25 09:14:21 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\hlink.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\webcheck.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msrating.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\msimg32.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\jscript9diag.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ieapfltr.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\ie4uinit.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtrans.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\dxtmsft.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-08-25 09:14:20 ----A---- C:\Windows\system32\consent.exe
2018-08-25 09:14:20 ----A---- C:\Windows\system32\certcli.dll
2018-08-25 09:14:20 ----A---- C:\Windows\system32\atmfd.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-08-25 09:14:19 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\winsrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\wdigest.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\schannel.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rstrui.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\rpcrt4.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\mshtmled.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\lsasrv.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kernel32.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\kerberos.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\ieui.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\iesetup.dll
2018-08-25 09:14:19 ----A---- C:\Windows\system32\conhost.exe
2018-08-25 09:14:19 ----A---- C:\Windows\system32\advapi32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\TSpkg.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\srcore.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\smss.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\rpchttp.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\occache.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ncrypt.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\msv1_0.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\KernelBase.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\inseng.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\ieUnatt.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\iernonce.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-08-25 09:14:18 ----A---- C:\Windows\system32\csrsrv.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\auditpol.exe
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidsvc.dll
2018-08-25 09:14:18 ----A---- C:\Windows\system32\appidapi.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-08-25 09:14:17 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\wow64win.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\ntvdm64.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\jsproxy.dll
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-08-25 09:14:17 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-08-25 09:14:16 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64cpu.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\wow64.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspisrv.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\sspicli.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\srclient.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\secur32.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\lsass.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\drivers\appid.sys
2018-08-25 09:14:16 ----A---- C:\Windows\system32\cryptbase.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\credssp.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\bcrypt.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\authui.dll
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-08-25 09:14:16 ----A---- C:\Windows\system32\apisetschema.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-08-25 09:14:15 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\user.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\tzres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msobjs.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msimsg.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msihnd.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\msaudite.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\lpk.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\dciman32.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\atmlib.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\appinfo.dll
2018-08-25 09:14:15 ----A---- C:\Windows\system32\adtschema.dll
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\DESIGNER
2018-08-15 14:24:23 ----D---- C:\Program Files\7-Zip
2018-08-10 16:29:56 ----D---- C:\Program Files (x86)\AVAST Software
2018-08-10 16:24:53 ----D---- C:\Users\Mich-Much\AppData\Roaming\AVAST Software
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswStm.sys
2018-08-10 16:19:51 ----A---- C:\Windows\system32\drivers\aswSP.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2018-08-10 16:19:50 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2018-08-10 16:19:49 ----A---- C:\Windows\system32\drivers\aswArPot.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbuniva.sys
2018-08-10 16:19:48 ----A---- C:\Windows\system32\drivers\aswbloga.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsha.sys
2018-08-10 16:19:47 ----A---- C:\Windows\system32\drivers\aswbidsdrivera.sys
2018-08-10 16:19:46 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
2018-08-10 16:19:32 ----D---- C:\Program Files\Common Files\AVAST Software
2018-08-10 16:14:42 ----D---- C:\ProgramData\AVAST Software
2018-08-03 10:49:31 ----D---- C:\Program Files\Google
======List of files/folders modified in the last 1 month======
2018-08-28 20:12:31 ----D---- C:\Program Files\trend micro
2018-08-28 20:08:35 ----D---- C:\Windows\Prefetch
2018-08-28 20:07:54 ----D---- C:\Windows\Temp
2018-08-28 20:07:36 ----D---- C:\Windows\Minidump
2018-08-28 20:00:49 ----D---- C:\Windows\system32\config
2018-08-28 19:35:45 ----SHD---- C:\Windows\Installer
2018-08-28 17:29:23 ----D---- C:\Windows\system32\drivers
2018-08-28 17:23:09 ----D---- C:\Windows\system32\Tasks
2018-08-28 17:18:39 ----RD---- C:\Program Files (x86)
2018-08-28 17:18:30 ----D---- C:\Windows\SysWOW64
2018-08-28 17:18:11 ----D---- C:\AdwCleaner
2018-08-28 16:11:15 ----SHD---- C:\System Volume Information
2018-08-27 21:13:14 ----D---- C:\Windows\System32
2018-08-27 21:13:14 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-08-26 07:52:23 ----D---- C:\Windows
2018-08-25 10:57:45 ----D---- C:\Windows\Microsoft.NET
2018-08-25 10:56:51 ----RSD---- C:\Windows\assembly
2018-08-25 09:59:13 ----D---- C:\Windows\inf
2018-08-25 09:59:11 ----D---- C:\Windows\debug
2018-08-25 09:46:32 ----D---- C:\Windows\winsxs
2018-08-25 09:42:02 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-08-25 09:42:02 ----D---- C:\Program Files\Internet Explorer
2018-08-25 09:42:02 ----D---- C:\Program Files (x86)\Internet Explorer
2018-08-25 09:42:01 ----D---- C:\Windows\SYSWOW64\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\en-US
2018-08-25 09:42:01 ----D---- C:\Windows\system32\cs-CZ
2018-08-25 09:42:00 ----D---- C:\Windows\system32\migration
2018-08-25 09:42:00 ----D---- C:\Windows\system32\Boot
2018-08-25 09:42:00 ----D---- C:\Windows\AppPatch
2018-08-25 09:41:59 ----D---- C:\Windows\system32\DriverStore
2018-08-25 09:33:24 ----D---- C:\Windows\system32\MRT
2018-08-25 09:26:32 ----AC---- C:\Windows\system32\MRT.exe
2018-08-25 09:17:29 ----D---- C:\Windows\system32\catroot2
2018-08-21 21:29:13 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files\Microsoft Shared
2018-08-21 21:28:34 ----D---- C:\Program Files\Common Files
2018-08-21 21:25:49 ----D---- C:\Program Files\Microsoft Office
2018-08-15 14:36:08 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-08-15 14:36:05 ----D---- C:\Windows\system32\Macromed
2018-08-15 14:36:04 ----D---- C:\Windows\SYSWOW64\Macromed
2018-08-15 14:31:58 ----SD---- C:\Users\Mich-Much\AppData\Roaming\Microsoft
2018-08-15 14:31:46 ----D---- C:\ProgramData\Skype
2018-08-15 14:31:46 ----D---- C:\Program Files (x86)\Microsoft
2018-08-15 14:31:44 ----RD---- C:\Program Files (x86)\Skype
2018-08-15 14:31:44 ----D---- C:\Program Files (x86)\Common Files
2018-08-15 14:30:03 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2018-08-15 14:29:26 ----D---- C:\Program Files (x86)\Java
2018-08-15 14:27:56 ----D---- C:\ProgramData\Apple Computer
2018-08-15 14:24:23 ----RD---- C:\Program Files
2018-08-11 13:09:52 ----D---- C:\ProgramData\tmp
2018-08-11 13:09:52 ----D---- C:\Program Files (x86)\Raptr
2018-08-11 11:35:09 ----D---- C:\ProgramData\Garmin
2018-08-10 16:14:42 ----HD---- C:\ProgramData
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-10 15:51:56 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-08-26 201320]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-08-26 346664]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-08-26 59568]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-08-28 87904]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-08-26 381560]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-08-26 199712]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-08-26 229384]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-08-26 249016]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-08-26 111864]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-08-26 1027720]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-08-26 467232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-12-18 34472]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R2 AODDriver4.3;AODDriver4.3; \??\D:\Programy\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-08-26 163272]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-08-26 214800]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-01-26 314016]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-01-26 43680]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-07-29 21622784]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-07-29 665088]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2016-04-01 104976]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2011-10-26 25600]
R3 gMouUsb16;USB 16-bit Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb16.sys [2009-06-25 11776]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-22 347680]
R3 SNPSTD3;USB PC Camera (SNPSTD3); C:\Windows\system32\DRIVERS\snpstd3.sys [2007-04-03 10535040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 36352]
R3 WFLR6654;WinFast DTV2000 H Plus (XC3028); C:\Windows\system32\drivers\wfeaglxt.sys [2009-10-21 474240]
S2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-10-27 36328]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-08-26 46968]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 gMouPS2;PS2 Scroll Mouse Device; C:\Windows\system32\DRIVERS\gMouPS2.sys [2009-06-30 19968]
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 hitmanpro37;HitmanPro 3.7 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro37.sys [2017-12-03 55232]
S3 Maplom;Maplom; C:\Windows\system32\drivers\Maplom.sys []
S3 MaplomL;MaplomL; C:\Windows\system32\drivers\MaplomL.sys []
S3 PcaSp60;Rawether NDIS 6.X SPR Protocol Driver; C:\Windows\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-05-24 253728]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-10-27 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-10-27 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-10-27 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-10-27 146920]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 ULCDRHlp;ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\drivers\usb8023x.sys [2013-02-12 19968]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2011-08-02 51712]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-03-21 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-07-29 246784]
R2 AMD FUEL Service;AMD FUEL Service; D:\Programy\ATI.ACE\Fuel\Fuel.Service.exe [2015-07-28 344064]
R2 avast! Antivirus;Avast Antivirus; D:\Programy\AVAST Software\Avast\AvastSvc.exe [2018-08-26 322464]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-08-09 8853984]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [2010-03-11 16384]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-03-11 75136]
R2 TomTomHOMEService;TomTomHOMEService; D:\Programy\TomTom HOME 2\TomTomHOMEService.exe [2015-07-13 93040]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R3 aswbIDSAgent;aswbIDSAgent; D:\Programy\AVAST Software\Avast\x64\aswidsagenta.exe [2018-08-26 7994520]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
S2 avast;Služba %1!s! Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-15 335872]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 avastm;Služba %1!s! Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-10 164984]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-05-27 654848]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 Garmin Device Interaction Service;Garmin Device Interaction Service; D:\Programy\Garmin\Garmin\Device Interaction Service\GarminService.exe [2018-06-06 1194512]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-07-19 116224]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-08-09 194512]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-08-09 258720]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-27 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-01-14 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání behaviorálního štítu - Avast
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vypínání behaviorálního štítu - Avast
Zatím se štít nevypíná, i pc najel rychleji 
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vypínání behaviorálního štítu - Avast
Tak to jsem rád.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?