Prosím o kontrolu logu
Napsal: 27 čer 2016 06:03
Dobrý den,
prosím o kontrolu logu NTB W10 64bit. 4asto se mis tává, že po zapnutí ani nenaběhne přihlašovací obrazovka a když naběhne tak se třeba 10min přihlašuje do systému. Pravá myš má dlouhou odezvu, někdy až tak že musím průzkumníka ve správci restartovat. Díky
Logfile of random's system information tool 1.10 (written by random/random)
Run by Dios at 2016-06-27 06:43:53
Microsoft Windows 10 Pro
System drive C: has 102 GB (17%) free of 588 GB
Total RAM: 4030 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:44:35, on 27.6.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0420)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe
C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\trend micro\Dios.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.tipmatchbets.com/?cz&page=di ... egory=chat
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: (no name) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - (no file)
O2 - BHO: PXCIEaddin - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: (no name) - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: PDFXChange 4.0 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [DriveUtilitiesHelper] C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
O4 - HKLM\..\Run: [NetLockMngr] C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
O4 - HKLM\..\Run: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Dios\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Clip bookmark - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Oříznutý obrázek - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Vystřihnout tuto stránku - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Vystřihnout výběr - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{010225A0-1DFD-CB3D-7CBF-F81DEAD6A5B5}: NameServer = 62.141.0.1 213.162.65.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{010225A2-1DFD-CB3D-7CBF-F81DEAD6A5B5}: NameServer = 93.153.117.1 93.153.117.33
O17 - HKLM\System\CCS\Services\Tcpip\..\{44da3733-12ea-4092-ab15-cb3b918a7993}: NameServer = 192.168.100.1,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{010225A0-1DFD-CB3D-7CBF-F81DEAD6A5B5}: NameServer = 62.141.0.1 213.162.65.1
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: DraftSight API Service - Dassault Systemes - C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files (x86)\Firebird\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files (x86)\Firebird\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: HP DS Service - Hewlett-Packard Company - C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\WINDOWS\system32\HPSIsvc.exe (file missing)
O23 - Service: @oem19.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\windows\SysWOW64\NLSSRV32.EXE
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - IDT, Inc. - (no file)
O23 - Service: SWLock Server (SWLckServer) - Unknown owner - C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: CryptoPlus XME Engine Service (xmengine service) - Monet+, a.s. - C:\windows\SysWOW64\xmesrv.exe
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
--
End of file - 17064 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
C:\WINDOWS\system32\mqsvc.exe
dashost.exe {56aa9151-0b77-4a09-944deb08136afbdc}
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\diMaster.dll" /prefetch:1
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe"
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\windows\system32\vcsFPService.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe" /c /a /s UserSession2
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca
C:\WINDOWS\Explorer.EXE
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\WINDOWS\system32\PrintIsolationHost.exe -Embedding
"C:\Users\Dios\Desktop\RSITx64.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2675517426-136286855-1641891982-10011_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2675517426-136286855-1641891982-10011 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 628 632 640 8192 636
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\System32\svchost.exe -k NetworkService
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\HPCeeScheduleForDios.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForDios (null)
C:\WINDOWS\tasks\TrackerAutoUpdate.job - C:\Program Files\Tracker Software\Update\TrackerUpdate.exe -CheckUpdate
=========Mozilla firefox=========
ProfilePath - C:\Users\Dios\AppData\Roaming\Mozilla\Firefox\Profiles\h0iijypa.default-1414995702743
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"{C1A2A613-35F1-4FCF-B27F-2840527B6556}"=C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon\
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@parallelgraphics.com/Cortona]
"Description"=Cortona VRML Plugin
"Path"=C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npcortona.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5]
"Description"=A component of your photo software powered by RocketLife
"Path"=C:\Users\Dios\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.92.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_92\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.92.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_92\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
C:\Program Files (x86)\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFFICE.DLL
nppdf32.dll
npPDFXCviewNPPlugin.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Dios\AppData\Roaming\Mozilla\Firefox\Profiles\h0iijypa.default-1414995702743\extensions\
firefoxdav@icloud.com
C:\Users\Dios\AppData\Roaming\Mozilla\Firefox\Profiles\h0iijypa.default-1414995702743\searchplugins\
firmycz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31 894640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_92\bin\ssv.dll [2016-06-09 570944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_92\bin\jp2ssv.dll [2016-06-09 234048]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42DFA04F-0F16-418e-B80C-AB97A5AFAD39}]
PDFXChange 4.0 - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll [2011-09-27 422496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll [2016-05-31 654512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-09 461888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-09 173120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31 894640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - PDFXChange 4.0 - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll [2011-09-27 422496]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll [2016-05-31 654512]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 453552]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-03 3944136]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-01-07 508128]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-06-01 176952]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2016-04-22 67384]
"OneDrive"=C:\Users\Dios\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-28 551112]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2016-04-22 110392]
"iCloudPhotos"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [2016-04-22 356664]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2016-04-22 67896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPQuickWebProxy]
c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2015-10-05 169528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2015-08-06 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-31 597016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WD Quick View]
C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [2014-06-02 5563760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dios^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Kooperativa - PDF Server.lnk]
C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-04-22 67384]
"DriveUtilitiesHelper"=C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2015-05-20 1890664]
"NetLockMngr"=C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe [2012-09-30 3076512]
""= []
"NUSB3MON"=c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2011-09-16 115048]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-31 597016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 451584]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"NoDrives"=0
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0
"NofolderOptions"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 2 months======
2016-06-27 06:43:52 ----D---- C:\rsit
2016-06-16 11:25:28 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-06-16 11:25:28 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-06-16 11:25:28 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-06-16 11:25:27 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-06-16 11:25:27 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-06-16 11:25:25 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-06-16 11:25:22 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-06-16 11:25:22 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-06-16 11:25:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-06-16 11:25:21 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-06-16 11:25:21 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-06-16 11:25:20 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-06-16 11:25:20 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-06-16 11:25:19 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-06-16 11:25:19 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-06-16 11:25:18 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-06-16 11:25:17 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-06-16 11:25:17 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-06-16 11:25:16 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-06-16 11:25:14 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-06-16 11:25:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-06-16 11:25:13 ----A---- C:\WINDOWS\system32\mos.dll
2016-06-16 11:25:12 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-06-16 11:25:11 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-06-16 11:25:11 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-16 11:25:11 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-16 11:25:09 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-06-16 11:25:01 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-06-16 11:25:01 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-16 11:25:01 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-16 11:25:00 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-06-16 11:25:00 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-06-16 11:25:00 ----A---- C:\WINDOWS\system32\moshost.dll
2016-06-16 11:25:00 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-06-16 11:24:59 ----A---- C:\WINDOWS\system32\tdlrecover.exe
2016-06-16 11:24:59 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-16 11:24:54 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-16 11:24:53 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-06-16 11:24:52 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-16 11:24:52 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-06-16 11:24:51 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-06-16 11:24:50 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-06-16 11:24:50 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-06-16 11:24:50 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-06-16 11:24:49 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-06-16 11:24:47 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-06-16 11:24:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-06-16 11:24:40 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-16 11:24:30 ----A---- C:\WINDOWS\system32\twinui.dll
2016-06-16 11:24:26 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-06-16 11:24:22 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-06-16 11:24:20 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-06-16 11:24:19 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-06-16 11:24:15 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-06-16 11:24:15 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-16 11:24:15 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-16 11:23:43 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-06-16 11:23:41 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-16 11:23:40 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-06-16 11:23:39 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-06-16 11:23:39 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-06-16 11:23:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-06-16 11:23:36 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-06-16 11:23:36 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-06-16 11:23:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-06-16 11:23:35 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-06-16 11:23:34 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-06-16 11:23:34 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-16 11:23:33 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-06-16 11:23:32 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-06-16 11:23:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-06-16 11:23:30 ----A---- C:\WINDOWS\system32\ole32.dll
2016-06-16 11:23:29 ----A---- C:\WINDOWS\SYSWOW64\LocationFramework.dll
2016-06-16 11:23:29 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-16 11:23:28 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-06-16 11:23:27 ----A---- C:\WINDOWS\system32\drivers\dumpsdport.sys
2016-06-16 11:23:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-06-16 11:23:03 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-06-16 11:22:56 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-06-16 11:22:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-06-16 11:22:42 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-06-16 11:22:37 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-06-16 11:22:37 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-06-16 11:22:28 ----A---- C:\WINDOWS\system32\invagent.dll
2016-06-16 11:22:27 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-16 11:22:26 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-06-16 11:22:26 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-06-16 11:22:26 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-06-16 11:22:25 ----A---- C:\WINDOWS\SYSWOW64\tdlrecover.exe
2016-06-16 11:22:25 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2016-06-16 11:22:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-06-16 11:22:20 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-06-16 11:22:17 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-06-16 11:22:15 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-06-16 11:22:14 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-06-16 11:22:05 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-16 11:21:59 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-16 11:21:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-06-16 11:21:42 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-06-16 11:21:34 ----A---- C:\WINDOWS\explorer.exe
2016-06-16 11:21:29 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-06-16 11:21:24 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-06-16 11:21:20 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-06-16 11:21:14 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-06-16 11:21:04 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2016-06-16 11:21:02 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-06-16 11:20:51 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-06-16 11:20:46 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2016-06-16 11:20:43 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-16 11:20:38 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-16 11:20:30 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-06-16 11:20:28 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-06-16 11:20:22 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-16 11:20:18 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-06-16 11:20:15 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-06-16 11:20:10 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-06-16 11:20:05 ----A---- C:\WINDOWS\system32\rastls.dll
2016-06-16 11:20:00 ----A---- C:\WINDOWS\system32\SRH.dll
2016-06-16 11:19:55 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-06-16 11:19:52 ----A---- C:\WINDOWS\system32\usocore.dll
2016-06-16 11:19:51 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-16 11:19:50 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-06-16 11:19:49 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-06-16 11:19:42 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-06-16 11:19:35 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-06-16 11:19:33 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-06-16 11:19:32 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2016-06-16 11:19:32 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2016-06-16 11:19:31 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-06-16 11:19:30 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-06-16 11:19:30 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-06-16 11:19:30 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-06-16 11:19:28 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2016-06-16 11:19:26 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-06-16 11:19:25 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-06-16 11:19:24 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-06-16 11:19:06 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-06-16 11:18:09 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-06-16 11:16:43 ----A---- C:\WINDOWS\system32\shell32.dll
2016-06-16 11:14:36 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-06-16 11:14:35 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-06-16 11:14:34 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-16 11:14:33 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-06-16 11:14:33 ----A---- C:\WINDOWS\system32\vpnike.dll
2016-06-16 11:14:31 ----A---- C:\WINDOWS\system32\wininet.dll
2016-06-16 11:14:30 ----A---- C:\WINDOWS\system32\hal.dll
2016-06-16 11:14:30 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-06-16 11:14:04 ----A---- C:\WINDOWS\system32\mswsock.dll
2016-06-16 11:13:38 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2016-06-16 11:13:17 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-06-16 11:13:00 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-06-16 11:12:42 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-06-16 11:12:17 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-06-16 11:11:44 ----A---- C:\WINDOWS\system32\polstore.dll
2016-06-16 11:09:48 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-06-16 11:09:47 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-16 11:09:46 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-06-16 11:09:46 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-06-16 11:09:46 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-16 11:09:46 ----A---- C:\WINDOWS\system32\gpapi.dll
2016-06-16 11:09:46 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-06-16 11:09:45 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-06-16 11:09:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-16 11:09:45 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-06-16 11:09:45 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2016-06-16 11:09:44 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-06-16 11:09:44 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-06-16 11:09:44 ----A---- C:\WINDOWS\system32\internetmail.dll
2016-06-16 11:09:44 ----A---- C:\WINDOWS\system32\GnssAdapter.dll
2016-06-16 11:09:43 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-06-16 11:09:43 ----A---- C:\WINDOWS\system32\devinv.dll
2016-06-16 11:09:42 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-06-16 11:09:42 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-06-16 11:09:41 ----A---- C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-16 11:09:41 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-06-16 11:09:41 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-06-16 11:09:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-06-16 11:09:40 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2016-06-16 11:09:40 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-06-16 11:09:40 ----A---- C:\WINDOWS\system32\gpscript.dll
2016-06-16 11:09:39 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-06-16 11:09:39 ----A---- C:\WINDOWS\SYSWOW64\gpscript.dll
2016-06-16 11:09:39 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-06-16 11:09:38 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2016-06-16 11:09:38 ----A---- C:\WINDOWS\system32\newdev.dll
2016-06-16 11:09:38 ----A---- C:\WINDOWS\system32\cdd.dll
2016-06-16 11:09:32 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-06-16 11:09:27 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2016-06-16 11:09:25 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-06-16 11:09:25 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-16 11:09:25 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-06-16 11:09:24 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-06-16 11:09:24 ----A---- C:\WINDOWS\system32\drivers\Ndu.sys
2016-06-16 11:09:24 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-06-16 11:09:23 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-06-16 11:09:23 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-06-16 11:09:22 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2016-06-16 11:09:22 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2016-06-16 11:09:22 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-16 11:09:22 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-16 11:09:21 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-16 11:09:21 ----A---- C:\WINDOWS\system32\httpprxp.dll
2016-06-16 11:09:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-06-16 11:09:20 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2016-06-16 11:09:20 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-16 11:09:20 ----A---- C:\WINDOWS\system32\adhsvc.dll
2016-06-16 11:09:19 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-06-16 11:09:19 ----A---- C:\WINDOWS\system32\httpprxm.dll
2016-06-16 11:09:18 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2016-06-16 11:09:18 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-16 11:09:18 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-06-16 11:09:17 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-06-16 11:09:17 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-06-16 11:09:17 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-06-16 11:09:15 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-06-16 11:09:14 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-06-16 11:09:14 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-16 11:09:14 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-06-16 11:09:14 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-06-16 11:09:13 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-06-16 11:09:13 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-06-16 11:09:13 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-06-14 18:48:47 ----D---- C:\Program Files (x86)\iTunes
2016-06-14 18:48:46 ----D---- C:\Program Files\iPod
2016-06-14 18:48:39 ----AD---- C:\Program Files\iTunes
2016-06-11 10:30:50 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-06-09 07:16:57 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-64.dll
2016-06-09 07:16:57 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2016-06-09 07:11:05 ----A---- C:\WINDOWS\SYSWOW64\RENE05E.tmp
2016-06-09 07:09:30 ----D---- C:\Users\Dios\AppData\Roaming\Sun
2016-06-09 07:09:13 ----A---- C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-06-09 07:07:56 ----D---- C:\Program Files\Java
2016-05-11 13:34:04 ----D---- C:\Users\Dios\AppData\Roaming\WhatsApp
2016-05-11 08:40:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-11 08:37:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-05-11 08:36:12 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-05-11 08:36:04 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-11 08:34:01 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-05-11 08:33:57 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-11 08:33:46 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-05-11 08:33:43 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-05-11 08:33:30 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-05-11 08:33:26 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-05-11 08:33:15 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-11 08:33:13 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 08:32:59 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-11 08:32:55 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-11 08:32:55 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-05-11 08:32:54 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-05-11 08:32:53 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-05-11 08:32:50 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-05-11 08:32:47 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-11 08:32:45 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-11 08:32:42 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-11 08:32:42 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-11 08:32:41 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-05-11 08:32:39 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-05-11 08:32:38 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-05-11 08:32:38 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-05-11 08:32:38 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-11 08:32:36 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-05-11 08:32:36 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 08:32:36 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-11 08:32:36 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-05-11 08:32:35 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-11 08:32:35 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-11 08:32:34 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-05-11 08:32:34 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-05-11 08:32:34 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-11 08:32:33 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-11 08:32:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-11 08:32:32 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-05-11 08:32:32 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-05-11 08:32:31 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-11 08:32:31 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-05-11 08:32:30 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-05-11 08:32:30 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-11 08:32:30 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-05-11 08:32:30 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 08:32:29 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-05-11 08:32:29 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-11 08:32:28 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-11 08:32:28 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-05-11 08:32:26 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-11 08:32:25 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-11 08:32:25 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-11 08:32:25 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-11 08:32:25 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\provengine.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-05-11 08:32:23 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-05-11 08:32:23 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2016-05-11 08:32:23 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 08:32:23 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-11 08:32:22 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-05-11 08:32:22 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-05-11 08:32:22 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-11 08:32:22 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-11 08:32:21 ----A---- C:\WINDOWS\system32\shacct.dll
2016-05-11 08:32:21 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 08:32:21 ----A---- C:\WINDOWS\system32\drivers\sdport.sys
2016-05-11 08:32:20 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-11 08:32:20 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-05-11 08:32:20 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 08:32:19 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-05-11 08:32:19 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-05-11 08:32:19 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-11 08:32:19 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-11 08:32:17 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-05-11 08:32:17 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-11 08:32:17 ----A---- C:\WINDOWS\system32\wininit.exe
2016-05-11 08:32:16 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-11 08:32:16 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-11 08:32:16 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-11 08:32:13 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-05-11 08:32:13 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2016-05-11 08:32:13 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-05-11 08:32:13 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-11 08:32:13 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-11 08:32:12 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-05-11 08:32:12 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-05-11 08:32:11 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-05-11 08:32:11 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-11 08:32:11 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-11 08:32:10 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-05-11 08:32:10 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-11 08:32:10 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-05-11 08:32:09 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-11 08:32:09 ----A---- C:\WINDOWS\system32\dwminit.dll
2016-05-11 08:32:08 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-11 08:32:07 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-05-11 08:32:07 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-05-11 08:32:07 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-11 08:32:07 ----A---- C:\WINDOWS\system32\drivers\filecrypt.sys
2016-05-11 08:32:06 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2016-05-11 08:32:06 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-05-11 08:32:06 ----A---- C:\WINDOWS\system32\hmkd.dll
2016-05-11 08:32:06 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-05-11 08:32:05 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-05-11 08:32:05 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-05-11 08:32:05 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-05-11 08:32:04 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2016-05-11 08:32:03 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2016-05-11 08:32:03 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2016-05-11 08:32:03 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-11 08:32:00 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-11 08:31:59 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2016-05-11 08:31:59 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-05-11 08:31:59 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-11 08:31:58 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2016-05-11 08:31:58 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2016-05-11 08:31:58 ----A---- C:\WINDOWS\system32\wshbth.dll
2016-05-11 08:31:58 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-11 08:31:57 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-05-05 20:35:36 ----A---- C:\WINDOWS\system32\drivers\SYMEVENT64x86.SYS
2016-05-05 20:24:46 ----AD---- C:\Program Files (x86)\Norton Internet Security
======List of files/folders modified in the last 2 months======
2016-06-27 06:44:34 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-06-27 06:44:32 ----D---- C:\WINDOWS\Prefetch
2016-06-27 06:44:28 ----D---- C:\Program Files\trend micro
2016-06-27 06:43:59 ----D---- C:\WINDOWS\Temp
2016-06-27 06:34:50 ----D---- C:\WINDOWS\system32\sru
2016-06-26 21:12:48 ----D---- C:\Users\Dios\AppData\Roaming\vlc
2016-06-26 16:21:47 ----D---- C:\Users\Dios\AppData\Roaming\uTorrent
2016-06-26 13:44:55 ----SHD---- C:\WINDOWS\Installer
2016-06-26 12:35:06 ----D---- C:\WINDOWS\AppReadiness
2016-06-26 12:35:01 ----HD---- C:\Program Files\WindowsApps
2016-06-26 11:45:42 ----AD---- C:\KROSplusData
2016-06-26 11:18:53 ----D---- C:\WINDOWS\system32\config
2016-06-26 11:06:39 ----AD---- C:\Program Files\Microsoft Silverlight
2016-06-26 11:06:39 ----AD---- C:\Program Files (x86)\Microsoft Silverlight
2016-06-26 11:03:25 ----SHD---- C:\System Volume Information
2016-06-26 10:59:58 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-23 13:38:33 ----D---- C:\WINDOWS\debug
2016-06-23 10:04:11 ----D---- C:\WINDOWS\INF
2016-06-23 10:02:05 ----D---- C:\Windows
2016-06-23 10:01:02 ----HD---- C:\WINDOWS\ELAMBKUP
2016-06-21 20:05:10 ----D---- C:\WINDOWS\System32
2016-06-21 20:05:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-21 14:37:04 ----D---- C:\WINDOWS\system32\Tasks
2016-06-21 14:31:28 ----D---- C:\WINDOWS\system32\drivers\NISx64
2016-06-21 14:27:20 ----D---- C:\WINDOWS\system32\drivers
2016-06-21 14:21:35 ----RD---- C:\Program Files (x86)
2016-06-21 14:21:32 ----D---- C:\Program Files\Common Files
2016-06-21 14:08:25 ----D---- C:\WINDOWS\WinSxS
2016-06-20 10:42:20 ----D---- C:\WINDOWS\rescache
2016-06-17 08:19:47 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-17 08:11:14 ----D---- C:\WINDOWS\system32\catroot2
2016-06-17 07:07:35 ----D---- C:\WINDOWS\CbsTemp
2016-06-17 07:07:24 ----D---- C:\WINDOWS\SysWOW64
2016-06-16 21:57:10 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-06-16 21:57:04 ----D---- C:\WINDOWS\system32\wbem
2016-06-16 21:57:04 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-06-16 21:57:03 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-06-16 21:57:03 ----D---- C:\WINDOWS\system32\cs-CZ
2016-06-16 21:57:00 ----D---- C:\WINDOWS\bcastdvr
2016-06-16 21:57:00 ----D---- C:\WINDOWS\AppPatch
2016-06-16 21:57:00 ----D---- C:\Program Files\Internet Explorer
2016-06-16 21:57:00 ----D---- C:\Program Files (x86)\Internet Explorer
2016-06-16 21:56:59 ----D---- C:\WINDOWS\system32\migration
2016-06-16 13:13:09 ----D---- C:\ProgramData\Microsoft Help
2016-06-16 13:04:10 ----D---- C:\WINDOWS\system32\MRT
2016-06-16 12:45:27 ----A---- C:\WINDOWS\system32\MRT.exe
2016-06-15 09:39:48 ----D---- C:\ProgramData\Apple
2016-06-14 20:33:01 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-06-14 18:48:46 ----RD---- C:\Program Files
2016-06-14 18:48:46 ----D---- C:\Program Files\Common Files\Apple
2016-06-13 06:16:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-09 07:16:03 ----D---- C:\Program Files (x86)\Java
2016-06-09 07:11:48 ----D---- C:\Program Files (x86)\Common Files
2016-05-30 13:31:10 ----AD---- C:\Program Files\NemKalk 7
2016-05-28 07:55:39 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2016-05-25 13:49:11 ----AD---- C:\ProgramData\TEMP
2016-05-19 12:52:04 ----AD---- C:\Program Files (x86)\KROSplus
2016-05-17 07:39:52 ----D---- C:\WINDOWS\Tasks
2016-05-14 16:22:18 ----RSD---- C:\WINDOWS\assembly
2016-05-12 14:38:44 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-05-12 14:38:36 ----D---- C:\WINDOWS\system32\oobe
2016-05-12 14:38:36 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-12 14:38:36 ----D---- C:\WINDOWS\system32\appraiser
2016-05-12 14:38:32 ----D---- C:\WINDOWS\Provisioning
2016-05-12 14:38:31 ----D---- C:\Program Files\Windows Journal
2016-05-05 20:44:36 ----HD---- C:\ProgramData
2016-05-05 20:40:20 ----D---- C:\ProgramData\Norton
2016-05-05 20:35:36 ----D---- C:\Program Files\Common Files\Symantec Shared
2016-05-05 20:24:20 ----D---- C:\Program Files (x86)\NortonInstaller
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BTATH_BUS;@oem125.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2015-08-27 36496]
R0 hpdskflt;@oem19.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20160621.003\BHDrvx64.sys [2016-05-13 1832176]
R1 ccSet_NIS;NIS Settings Manager; C:\WINDOWS\system32\drivers\NISx64\1607000.04C\ccSetx64.sys [2016-06-02 174328]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-05-05 497392]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160624.001\IDSvia64.sys [2016-05-25 876248]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\windows\system32\drivers\LMIRfsDriver.sys [2012-11-29 72216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R3 Accelerometer;@oem19.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 ARCVCAM;@oem112.inf,%avshws.DeviceDesc%;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\WINDOWS\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2015-12-10 601624]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-05-28 84992]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2016-05-05 156912]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HpqKbFiltr;@oem58.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2010-12-03 25912]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcDAud;@oem110.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2011-08-23 317440]
R3 JMCR;JMCR; C:\WINDOWS\System32\drivers\jmcr.sys [2012-07-31 175928]
R3 MEIx64;@oem127.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-01-19 202032]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-28 175616]
R3 ROCKEYNT;@oem93.inf,%Rockey.SVCDESC%;Feitian ROCKEY4 Device Service; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [2013-12-04 36904]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S3 Afc;PPdus ASPI Shell; C:\WINDOWS\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-05-28 112640]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-05-28 954368]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-28 117248]
S3 cpuz136;cpuz136; \??\C:\WINDOWS\TEMP\cpuz136\cpuz136_x64.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\windows\SysWOW64\FsUsbExDisk.SYS [2013-12-30 37344]
S3 GemCCID;GemCCID; C:\WINDOWS\system32\DRIVERS\GemCCID.sys [2015-11-04 139632]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys [2012-11-29 11552]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 mvusbews;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-11-08 19968]
S3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\SDSDefs\20160620.021\ENG64.SYS []
S3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\SDSDefs\20160620.021\EX64.SYS []
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 Netaapl;@oem53.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2013-07-25 23040]
S3 nmwcd;@oem11.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 181248]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016-04-05 2021592]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 hpsrv;@oem19.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-24 31040]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-08-08 325912]
R2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-28 26624]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe [2016-06-17 289080]
R2 OneSyncSvc_47424;Hostitel synchronizace_47424; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_13abf95;Hostitel synchronizace_13abf95; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_15573a0;Hostitel synchronizace_15573a0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1d15f81;Hostitel synchronizace_1d15f81; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_28b5fc8;Hostitel synchronizace_28b5fc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2e1ae09;Hostitel synchronizace_2e1ae09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3d903;Hostitel synchronizace_3d903; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4e5028;Hostitel synchronizace_4e5028; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_50e5d;Hostitel synchronizace_50e5d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_555ad;Hostitel synchronizace_555ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_57097;Hostitel synchronizace_57097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_57106;Hostitel synchronizace_57106; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_58614;Hostitel synchronizace_58614; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_fadbc8;Hostitel synchronizace_fadbc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DraftSight API Service;DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [2014-03-14 123392]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files (x86)\Firebird\bin\fbguard.exe [2007-12-12 65536]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files (x86)\Firebird\bin\fbserver.exe [2007-12-12 1531989]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-06-05 1432400]
S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-08-06 203344]
S3 HP DS Service;HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [2011-10-17 13824]
S3 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2012-05-02 164864]
S3 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
S3 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
S3 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-29 281656]
S3 hpqcxs08;hpqcxs08; C:\WINDOWS\syswow64\svchost.exe [2015-10-30 37256]
S3 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\syswow64\svchost.exe [2015-10-30 37256]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
S3 HPSIService;HP SI Service; C:\WINDOWS\system32\HPSIsvc.exe [2010-04-29 127800]
S3 HPSLPSVC;HP Network Devices Support; C:\windows\system32\svchost.exe [2015-10-30 43944]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-06-01 651576]
S3 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_13abf95;Služba zasílání zpráv_13abf95; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_15573a0;Služba zasílání zpráv_15573a0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_28b5fc8;Služba zasílání zpráv_28b5fc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2e1ae09;Služba zasílání zpráv_2e1ae09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3d903;Služba zasílání zpráv_3d903; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_47424;Služba zasílání zpráv_47424; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4e5028;Služba zasílání zpráv_4e5028; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_50e5d;Služba zasílání zpráv_50e5d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_555ad;Služba zasílání zpráv_555ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_57097;Služba zasílání zpráv_57097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_57106;Služba zasílání zpráv_57106; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_fadbc8;Služba zasílání zpráv_fadbc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 nlsX86cc;Nalpeiron Licensing Service; C:\windows\SysWOW64\NLSSRV32.EXE [2013-03-25 70152]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
S3 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_13abf95;Data kontaktů_13abf95; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_15573a0;Data kontaktů_15573a0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_28b5fc8;Data kontaktů_28b5fc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2e1ae09;Data kontaktů_2e1ae09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3d903;Data kontaktů_3d903; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_47424;Data kontaktů_47424; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4e5028;Data kontaktů_4e5028; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_50e5d;Data kontaktů_50e5d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_555ad;Data kontaktů_555ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_57097;Data kontaktů_57097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_57106;Data kontaktů_57106; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_fadbc8;Data kontaktů_fadbc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-14 269504]
S4 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2016-01-28 693440]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-09 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-09 116648]
-----------------EOF-----------------
prosím o kontrolu logu NTB W10 64bit. 4asto se mis tává, že po zapnutí ani nenaběhne přihlašovací obrazovka a když naběhne tak se třeba 10min přihlašuje do systému. Pravá myš má dlouhou odezvu, někdy až tak že musím průzkumníka ve správci restartovat. Díky
Logfile of random's system information tool 1.10 (written by random/random)
Run by Dios at 2016-06-27 06:43:53
Microsoft Windows 10 Pro
System drive C: has 102 GB (17%) free of 588 GB
Total RAM: 4030 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:44:35, on 27.6.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0420)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe
C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\trend micro\Dios.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.tipmatchbets.com/?cz&page=di ... egory=chat
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: (no name) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - (no file)
O2 - BHO: PXCIEaddin - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: (no name) - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: PDFXChange 4.0 - {42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [DriveUtilitiesHelper] C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
O4 - HKLM\..\Run: [NetLockMngr] C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe
O4 - HKLM\..\Run: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Dios\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Clip bookmark - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: Clip Image - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Clip selection - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O8 - Extra context menu item: Clip this page - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Clip URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: New Note - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Nová poznámka - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
O8 - Extra context menu item: Oříznutý obrázek - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: Vystřihnout tuto stránku - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: Vystřihnout výběr - C:\Program Files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{010225A0-1DFD-CB3D-7CBF-F81DEAD6A5B5}: NameServer = 62.141.0.1 213.162.65.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{010225A2-1DFD-CB3D-7CBF-F81DEAD6A5B5}: NameServer = 93.153.117.1 93.153.117.33
O17 - HKLM\System\CCS\Services\Tcpip\..\{44da3733-12ea-4092-ab15-cb3b918a7993}: NameServer = 192.168.100.1,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{010225A0-1DFD-CB3D-7CBF-F81DEAD6A5B5}: NameServer = 62.141.0.1 213.162.65.1
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: DraftSight API Service - Dassault Systemes - C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - The Firebird Project - C:\Program Files (x86)\Firebird\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - The Firebird Project - C:\Program Files (x86)\Firebird\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: HP DS Service - Hewlett-Packard Company - C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\WINDOWS\system32\HPSIsvc.exe (file missing)
O23 - Service: @oem19.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\windows\SysWOW64\NLSSRV32.EXE
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - IDT, Inc. - (no file)
O23 - Service: SWLock Server (SWLckServer) - Unknown owner - C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: CryptoPlus XME Engine Service (xmengine service) - Monet+, a.s. - C:\windows\SysWOW64\xmesrv.exe
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe
--
End of file - 17064 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
C:\WINDOWS\system32\mqsvc.exe
dashost.exe {56aa9151-0b77-4a09-944deb08136afbdc}
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\diMaster.dll" /prefetch:1
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTService.exe"
C:\WINDOWS\System32\svchost.exe -k HPZ12
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\windows\system32\vcsFPService.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe" /c /a /s UserSession2
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca
C:\WINDOWS\Explorer.EXE
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\WINDOWS\system32\PrintIsolationHost.exe -Embedding
"C:\Users\Dios\Desktop\RSITx64.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2675517426-136286855-1641891982-10011_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2675517426-136286855-1641891982-10011 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 628 632 640 8192 636
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\System32\svchost.exe -k NetworkService
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\HPCeeScheduleForDios.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForDios (null)
C:\WINDOWS\tasks\TrackerAutoUpdate.job - C:\Program Files\Tracker Software\Update\TrackerUpdate.exe -CheckUpdate
=========Mozilla firefox=========
ProfilePath - C:\Users\Dios\AppData\Roaming\Mozilla\Firefox\Profiles\h0iijypa.default-1414995702743
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"{C1A2A613-35F1-4FCF-B27F-2840527B6556}"=C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.4.24\coFFAddon\
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@parallelgraphics.com/Cortona]
"Description"=Cortona VRML Plugin
"Path"=C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npcortona.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5]
"Description"=A component of your photo software powered by RocketLife
"Path"=C:\Users\Dios\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.92.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_92\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.92.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_92\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
C:\Program Files (x86)\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFFICE.DLL
nppdf32.dll
npPDFXCviewNPPlugin.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Users\Dios\AppData\Roaming\Mozilla\Firefox\Profiles\h0iijypa.default-1414995702743\extensions\
firefoxdav@icloud.com
C:\Users\Dios\AppData\Roaming\Mozilla\Firefox\Profiles\h0iijypa.default-1414995702743\searchplugins\
firmycz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31 894640]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_92\bin\ssv.dll [2016-06-09 570944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_92\bin\jp2ssv.dll [2016-06-09 234048]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42DFA04F-0F16-418e-B80C-AB97A5AFAD39}]
PDFXChange 4.0 - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll [2011-09-27 422496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll [2016-05-31 654512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-09 461888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-09 173120]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31 894640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{42DFA04F-0F16-418e-B80C-AB97A5AFAD39} - PDFXChange 4.0 - C:\Program Files\Tracker Software\PDF-XChange 4\PXCIEAddin4.dll [2011-09-27 422496]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll [2016-05-31 654512]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 453552]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-03 3944136]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-01-07 508128]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-06-01 176952]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2016-04-22 67384]
"OneDrive"=C:\Users\Dios\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-12-28 551112]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2016-04-22 110392]
"iCloudPhotos"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [2016-04-22 356664]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2016-04-22 67896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPQuickWebProxy]
c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2015-10-05 169528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2015-08-06 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-31 597016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WD Quick View]
C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [2014-06-02 5563760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Dios^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Kooperativa - PDF Server.lnk]
C:\Program Files\Kooperativa\KoopPxBN\KoopPDFServerSA.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2016-04-22 67384]
"DriveUtilitiesHelper"=C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2015-05-20 1890664]
"NetLockMngr"=C:\Program Files (x86)\CIGLER SOFTWARE\NetLicence\CSW_NetSWKeyNTMngr.exe [2012-09-30 3076512]
""= []
"NUSB3MON"=c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2011-09-16 115048]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-03-31 597016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 451584]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"NoDrives"=0
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0
"NofolderOptions"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveAutoRun"=3
"NoDriveTypeAutoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 2 months======
2016-06-27 06:43:52 ----D---- C:\rsit
2016-06-16 11:25:28 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-06-16 11:25:28 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-06-16 11:25:28 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-06-16 11:25:27 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-06-16 11:25:27 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-06-16 11:25:25 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-06-16 11:25:22 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-06-16 11:25:22 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-06-16 11:25:22 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-06-16 11:25:21 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-06-16 11:25:21 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-06-16 11:25:20 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-06-16 11:25:20 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-06-16 11:25:19 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-06-16 11:25:19 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-06-16 11:25:18 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-06-16 11:25:17 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-06-16 11:25:17 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-06-16 11:25:16 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-06-16 11:25:14 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-06-16 11:25:14 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-06-16 11:25:13 ----A---- C:\WINDOWS\system32\mos.dll
2016-06-16 11:25:12 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2016-06-16 11:25:11 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-06-16 11:25:11 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-16 11:25:11 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-16 11:25:09 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-06-16 11:25:01 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-06-16 11:25:01 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-16 11:25:01 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-16 11:25:00 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-06-16 11:25:00 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-06-16 11:25:00 ----A---- C:\WINDOWS\system32\moshost.dll
2016-06-16 11:25:00 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-06-16 11:24:59 ----A---- C:\WINDOWS\system32\tdlrecover.exe
2016-06-16 11:24:59 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-16 11:24:54 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-16 11:24:53 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-06-16 11:24:52 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-16 11:24:52 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-06-16 11:24:51 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-06-16 11:24:50 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-06-16 11:24:50 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-06-16 11:24:50 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-06-16 11:24:49 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-06-16 11:24:47 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-06-16 11:24:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-06-16 11:24:40 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-16 11:24:30 ----A---- C:\WINDOWS\system32\twinui.dll
2016-06-16 11:24:26 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-06-16 11:24:22 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-06-16 11:24:20 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2016-06-16 11:24:19 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-06-16 11:24:15 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-06-16 11:24:15 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-16 11:24:15 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-16 11:23:43 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-06-16 11:23:41 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-16 11:23:40 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-06-16 11:23:39 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-06-16 11:23:39 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-06-16 11:23:38 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-06-16 11:23:36 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-06-16 11:23:36 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-06-16 11:23:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-06-16 11:23:35 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-06-16 11:23:34 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-06-16 11:23:34 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-16 11:23:33 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-06-16 11:23:32 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-06-16 11:23:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-06-16 11:23:30 ----A---- C:\WINDOWS\system32\ole32.dll
2016-06-16 11:23:29 ----A---- C:\WINDOWS\SYSWOW64\LocationFramework.dll
2016-06-16 11:23:29 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-16 11:23:28 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-06-16 11:23:27 ----A---- C:\WINDOWS\system32\drivers\dumpsdport.sys
2016-06-16 11:23:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-06-16 11:23:03 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-06-16 11:22:56 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-06-16 11:22:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-06-16 11:22:42 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-06-16 11:22:37 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-06-16 11:22:37 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-06-16 11:22:28 ----A---- C:\WINDOWS\system32\invagent.dll
2016-06-16 11:22:27 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-16 11:22:26 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-06-16 11:22:26 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-06-16 11:22:26 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-06-16 11:22:25 ----A---- C:\WINDOWS\SYSWOW64\tdlrecover.exe
2016-06-16 11:22:25 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2016-06-16 11:22:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-06-16 11:22:20 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-06-16 11:22:17 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-06-16 11:22:15 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-06-16 11:22:14 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-06-16 11:22:05 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-16 11:21:59 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-16 11:21:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-06-16 11:21:42 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-06-16 11:21:34 ----A---- C:\WINDOWS\explorer.exe
2016-06-16 11:21:29 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-06-16 11:21:24 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-06-16 11:21:20 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-06-16 11:21:14 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-06-16 11:21:04 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2016-06-16 11:21:02 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2016-06-16 11:20:51 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-06-16 11:20:46 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2016-06-16 11:20:43 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-16 11:20:38 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-16 11:20:30 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-06-16 11:20:28 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-06-16 11:20:22 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-16 11:20:18 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-06-16 11:20:15 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-06-16 11:20:10 ----A---- C:\WINDOWS\system32\setupapi.dll
2016-06-16 11:20:05 ----A---- C:\WINDOWS\system32\rastls.dll
2016-06-16 11:20:00 ----A---- C:\WINDOWS\system32\SRH.dll
2016-06-16 11:19:55 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-06-16 11:19:52 ----A---- C:\WINDOWS\system32\usocore.dll
2016-06-16 11:19:51 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-16 11:19:50 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-06-16 11:19:49 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-06-16 11:19:42 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-06-16 11:19:35 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-06-16 11:19:33 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2016-06-16 11:19:32 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2016-06-16 11:19:32 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2016-06-16 11:19:31 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-06-16 11:19:30 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-06-16 11:19:30 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-06-16 11:19:30 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-06-16 11:19:28 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2016-06-16 11:19:26 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-06-16 11:19:25 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-06-16 11:19:24 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-06-16 11:19:06 ----A---- C:\WINDOWS\system32\omadmclient.exe
2016-06-16 11:18:09 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-06-16 11:16:43 ----A---- C:\WINDOWS\system32\shell32.dll
2016-06-16 11:14:36 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-06-16 11:14:35 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-06-16 11:14:34 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-16 11:14:33 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-06-16 11:14:33 ----A---- C:\WINDOWS\system32\vpnike.dll
2016-06-16 11:14:31 ----A---- C:\WINDOWS\system32\wininet.dll
2016-06-16 11:14:30 ----A---- C:\WINDOWS\system32\hal.dll
2016-06-16 11:14:30 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-06-16 11:14:04 ----A---- C:\WINDOWS\system32\mswsock.dll
2016-06-16 11:13:38 ----A---- C:\WINDOWS\SYSWOW64\mswsock.dll
2016-06-16 11:13:17 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-06-16 11:13:00 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-06-16 11:12:42 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2016-06-16 11:12:17 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-06-16 11:11:44 ----A---- C:\WINDOWS\system32\polstore.dll
2016-06-16 11:09:48 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2016-06-16 11:09:47 ----A---- C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-16 11:09:46 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-06-16 11:09:46 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-06-16 11:09:46 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-16 11:09:46 ----A---- C:\WINDOWS\system32\gpapi.dll
2016-06-16 11:09:46 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-06-16 11:09:45 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-06-16 11:09:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-16 11:09:45 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-06-16 11:09:45 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2016-06-16 11:09:44 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-06-16 11:09:44 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2016-06-16 11:09:44 ----A---- C:\WINDOWS\system32\internetmail.dll
2016-06-16 11:09:44 ----A---- C:\WINDOWS\system32\GnssAdapter.dll
2016-06-16 11:09:43 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-06-16 11:09:43 ----A---- C:\WINDOWS\system32\devinv.dll
2016-06-16 11:09:42 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-06-16 11:09:42 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-06-16 11:09:41 ----A---- C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-16 11:09:41 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-06-16 11:09:41 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-06-16 11:09:40 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-06-16 11:09:40 ----A---- C:\WINDOWS\SYSWOW64\polstore.dll
2016-06-16 11:09:40 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-06-16 11:09:40 ----A---- C:\WINDOWS\system32\gpscript.dll
2016-06-16 11:09:39 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-06-16 11:09:39 ----A---- C:\WINDOWS\SYSWOW64\gpscript.dll
2016-06-16 11:09:39 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-06-16 11:09:38 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2016-06-16 11:09:38 ----A---- C:\WINDOWS\system32\newdev.dll
2016-06-16 11:09:38 ----A---- C:\WINDOWS\system32\cdd.dll
2016-06-16 11:09:32 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-06-16 11:09:27 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2016-06-16 11:09:25 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-06-16 11:09:25 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-16 11:09:25 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-06-16 11:09:24 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-06-16 11:09:24 ----A---- C:\WINDOWS\system32\drivers\Ndu.sys
2016-06-16 11:09:24 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-06-16 11:09:23 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-06-16 11:09:23 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-06-16 11:09:22 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2016-06-16 11:09:22 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2016-06-16 11:09:22 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-16 11:09:22 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-16 11:09:21 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-16 11:09:21 ----A---- C:\WINDOWS\system32\httpprxp.dll
2016-06-16 11:09:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-06-16 11:09:20 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2016-06-16 11:09:20 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-16 11:09:20 ----A---- C:\WINDOWS\system32\adhsvc.dll
2016-06-16 11:09:19 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-06-16 11:09:19 ----A---- C:\WINDOWS\system32\httpprxm.dll
2016-06-16 11:09:18 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2016-06-16 11:09:18 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-16 11:09:18 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-06-16 11:09:17 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-06-16 11:09:17 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-06-16 11:09:17 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-06-16 11:09:15 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-06-16 11:09:14 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-06-16 11:09:14 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-16 11:09:14 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-06-16 11:09:14 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-06-16 11:09:13 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-06-16 11:09:13 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-06-16 11:09:13 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-06-14 18:48:47 ----D---- C:\Program Files (x86)\iTunes
2016-06-14 18:48:46 ----D---- C:\Program Files\iPod
2016-06-14 18:48:39 ----AD---- C:\Program Files\iTunes
2016-06-11 10:30:50 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-06-09 07:16:57 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-64.dll
2016-06-09 07:16:57 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2016-06-09 07:11:05 ----A---- C:\WINDOWS\SYSWOW64\RENE05E.tmp
2016-06-09 07:09:30 ----D---- C:\Users\Dios\AppData\Roaming\Sun
2016-06-09 07:09:13 ----A---- C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-06-09 07:07:56 ----D---- C:\Program Files\Java
2016-05-11 13:34:04 ----D---- C:\Users\Dios\AppData\Roaming\WhatsApp
2016-05-11 08:40:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-05-11 08:37:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-05-11 08:36:12 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-05-11 08:36:04 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-05-11 08:34:01 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-05-11 08:33:57 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-05-11 08:33:46 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-05-11 08:33:43 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-05-11 08:33:30 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-05-11 08:33:26 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-05-11 08:33:15 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-05-11 08:33:13 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-05-11 08:32:59 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-05-11 08:32:55 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-05-11 08:32:55 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-05-11 08:32:54 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-05-11 08:32:53 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-05-11 08:32:50 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-05-11 08:32:47 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2016-05-11 08:32:45 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-05-11 08:32:42 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-05-11 08:32:42 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-05-11 08:32:41 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-05-11 08:32:39 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-05-11 08:32:38 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-05-11 08:32:38 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-05-11 08:32:38 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-05-11 08:32:36 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-05-11 08:32:36 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-05-11 08:32:36 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-05-11 08:32:36 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-05-11 08:32:35 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-05-11 08:32:35 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-05-11 08:32:34 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-05-11 08:32:34 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-05-11 08:32:34 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2016-05-11 08:32:33 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-05-11 08:32:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-05-11 08:32:32 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-05-11 08:32:32 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-05-11 08:32:31 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-05-11 08:32:31 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-05-11 08:32:30 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-05-11 08:32:30 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-05-11 08:32:30 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-05-11 08:32:30 ----A---- C:\WINDOWS\system32\jscript.dll
2016-05-11 08:32:29 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-05-11 08:32:29 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2016-05-11 08:32:28 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-05-11 08:32:28 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-05-11 08:32:26 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2016-05-11 08:32:25 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-05-11 08:32:25 ----A---- C:\WINDOWS\system32\user32.dll
2016-05-11 08:32:25 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-05-11 08:32:25 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\schannel.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\provengine.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\aepic.dll
2016-05-11 08:32:24 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-05-11 08:32:23 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-05-11 08:32:23 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2016-05-11 08:32:23 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-11 08:32:23 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2016-05-11 08:32:22 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-05-11 08:32:22 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-05-11 08:32:22 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-05-11 08:32:22 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2016-05-11 08:32:21 ----A---- C:\WINDOWS\system32\shacct.dll
2016-05-11 08:32:21 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-05-11 08:32:21 ----A---- C:\WINDOWS\system32\drivers\sdport.sys
2016-05-11 08:32:20 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-05-11 08:32:20 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-05-11 08:32:20 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2016-05-11 08:32:19 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-05-11 08:32:19 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-05-11 08:32:19 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-05-11 08:32:19 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-05-11 08:32:18 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-05-11 08:32:17 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-05-11 08:32:17 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-05-11 08:32:17 ----A---- C:\WINDOWS\system32\wininit.exe
2016-05-11 08:32:16 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-05-11 08:32:16 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2016-05-11 08:32:16 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-05-11 08:32:15 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-05-11 08:32:13 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-05-11 08:32:13 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2016-05-11 08:32:13 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-05-11 08:32:13 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-05-11 08:32:13 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2016-05-11 08:32:12 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-05-11 08:32:12 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-05-11 08:32:11 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-05-11 08:32:11 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-05-11 08:32:11 ----A---- C:\WINDOWS\system32\rsaenh.dll
2016-05-11 08:32:10 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2016-05-11 08:32:10 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-05-11 08:32:10 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-05-11 08:32:09 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-05-11 08:32:09 ----A---- C:\WINDOWS\system32\dwminit.dll
2016-05-11 08:32:08 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\wups.dll
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\drivers\ufxsynopsys.sys
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2016-05-11 08:32:08 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2016-05-11 08:32:07 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-05-11 08:32:07 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-05-11 08:32:07 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-05-11 08:32:07 ----A---- C:\WINDOWS\system32\drivers\filecrypt.sys
2016-05-11 08:32:06 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2016-05-11 08:32:06 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-05-11 08:32:06 ----A---- C:\WINDOWS\system32\hmkd.dll
2016-05-11 08:32:06 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-05-11 08:32:05 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-05-11 08:32:05 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2016-05-11 08:32:05 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-05-11 08:32:04 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2016-05-11 08:32:03 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2016-05-11 08:32:03 ----A---- C:\WINDOWS\SYSWOW64\ByteCodeGenerator.exe
2016-05-11 08:32:03 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-05-11 08:32:00 ----A---- C:\WINDOWS\system32\ByteCodeGenerator.exe
2016-05-11 08:31:59 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2016-05-11 08:31:59 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-05-11 08:31:59 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-05-11 08:31:58 ----A---- C:\WINDOWS\SYSWOW64\wshbth.dll
2016-05-11 08:31:58 ----A---- C:\WINDOWS\SYSWOW64\wlansec.dll
2016-05-11 08:31:58 ----A---- C:\WINDOWS\system32\wshbth.dll
2016-05-11 08:31:58 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-05-11 08:31:57 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-05-05 20:35:36 ----A---- C:\WINDOWS\system32\drivers\SYMEVENT64x86.SYS
2016-05-05 20:24:46 ----AD---- C:\Program Files (x86)\Norton Internet Security
======List of files/folders modified in the last 2 months======
2016-06-27 06:44:34 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2016-06-27 06:44:32 ----D---- C:\WINDOWS\Prefetch
2016-06-27 06:44:28 ----D---- C:\Program Files\trend micro
2016-06-27 06:43:59 ----D---- C:\WINDOWS\Temp
2016-06-27 06:34:50 ----D---- C:\WINDOWS\system32\sru
2016-06-26 21:12:48 ----D---- C:\Users\Dios\AppData\Roaming\vlc
2016-06-26 16:21:47 ----D---- C:\Users\Dios\AppData\Roaming\uTorrent
2016-06-26 13:44:55 ----SHD---- C:\WINDOWS\Installer
2016-06-26 12:35:06 ----D---- C:\WINDOWS\AppReadiness
2016-06-26 12:35:01 ----HD---- C:\Program Files\WindowsApps
2016-06-26 11:45:42 ----AD---- C:\KROSplusData
2016-06-26 11:18:53 ----D---- C:\WINDOWS\system32\config
2016-06-26 11:06:39 ----AD---- C:\Program Files\Microsoft Silverlight
2016-06-26 11:06:39 ----AD---- C:\Program Files (x86)\Microsoft Silverlight
2016-06-26 11:03:25 ----SHD---- C:\System Volume Information
2016-06-26 10:59:58 ----D---- C:\WINDOWS\Microsoft.NET
2016-06-23 13:38:33 ----D---- C:\WINDOWS\debug
2016-06-23 10:04:11 ----D---- C:\WINDOWS\INF
2016-06-23 10:02:05 ----D---- C:\Windows
2016-06-23 10:01:02 ----HD---- C:\WINDOWS\ELAMBKUP
2016-06-21 20:05:10 ----D---- C:\WINDOWS\System32
2016-06-21 20:05:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-21 14:37:04 ----D---- C:\WINDOWS\system32\Tasks
2016-06-21 14:31:28 ----D---- C:\WINDOWS\system32\drivers\NISx64
2016-06-21 14:27:20 ----D---- C:\WINDOWS\system32\drivers
2016-06-21 14:21:35 ----RD---- C:\Program Files (x86)
2016-06-21 14:21:32 ----D---- C:\Program Files\Common Files
2016-06-21 14:08:25 ----D---- C:\WINDOWS\WinSxS
2016-06-20 10:42:20 ----D---- C:\WINDOWS\rescache
2016-06-17 08:19:47 ----D---- C:\WINDOWS\system32\DriverStore
2016-06-17 08:11:14 ----D---- C:\WINDOWS\system32\catroot2
2016-06-17 07:07:35 ----D---- C:\WINDOWS\CbsTemp
2016-06-17 07:07:24 ----D---- C:\WINDOWS\SysWOW64
2016-06-16 21:57:10 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-06-16 21:57:04 ----D---- C:\WINDOWS\system32\wbem
2016-06-16 21:57:04 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-06-16 21:57:03 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-06-16 21:57:03 ----D---- C:\WINDOWS\system32\cs-CZ
2016-06-16 21:57:00 ----D---- C:\WINDOWS\bcastdvr
2016-06-16 21:57:00 ----D---- C:\WINDOWS\AppPatch
2016-06-16 21:57:00 ----D---- C:\Program Files\Internet Explorer
2016-06-16 21:57:00 ----D---- C:\Program Files (x86)\Internet Explorer
2016-06-16 21:56:59 ----D---- C:\WINDOWS\system32\migration
2016-06-16 13:13:09 ----D---- C:\ProgramData\Microsoft Help
2016-06-16 13:04:10 ----D---- C:\WINDOWS\system32\MRT
2016-06-16 12:45:27 ----A---- C:\WINDOWS\system32\MRT.exe
2016-06-15 09:39:48 ----D---- C:\ProgramData\Apple
2016-06-14 20:33:01 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-06-14 18:48:46 ----RD---- C:\Program Files
2016-06-14 18:48:46 ----D---- C:\Program Files\Common Files\Apple
2016-06-13 06:16:06 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-09 07:16:03 ----D---- C:\Program Files (x86)\Java
2016-06-09 07:11:48 ----D---- C:\Program Files (x86)\Common Files
2016-05-30 13:31:10 ----AD---- C:\Program Files\NemKalk 7
2016-05-28 07:55:39 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2016-05-25 13:49:11 ----AD---- C:\ProgramData\TEMP
2016-05-19 12:52:04 ----AD---- C:\Program Files (x86)\KROSplus
2016-05-17 07:39:52 ----D---- C:\WINDOWS\Tasks
2016-05-14 16:22:18 ----RSD---- C:\WINDOWS\assembly
2016-05-12 14:38:44 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-05-12 14:38:36 ----D---- C:\WINDOWS\system32\oobe
2016-05-12 14:38:36 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-05-12 14:38:36 ----D---- C:\WINDOWS\system32\appraiser
2016-05-12 14:38:32 ----D---- C:\WINDOWS\Provisioning
2016-05-12 14:38:31 ----D---- C:\Program Files\Windows Journal
2016-05-05 20:44:36 ----HD---- C:\ProgramData
2016-05-05 20:40:20 ----D---- C:\ProgramData\Norton
2016-05-05 20:35:36 ----D---- C:\Program Files\Common Files\Symantec Shared
2016-05-05 20:24:20 ----D---- C:\Program Files (x86)\NortonInstaller
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BTATH_BUS;@oem125.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2015-08-27 36496]
R0 hpdskflt;@oem19.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2012-09-24 31040]
R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\BASHDefs\20160621.003\BHDrvx64.sys [2016-05-13 1832176]
R1 ccSet_NIS;NIS Settings Manager; C:\WINDOWS\system32\drivers\NISx64\1607000.04C\ccSetx64.sys [2016-06-02 174328]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2016-05-05 497392]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\IPSDefs\20160624.001\IDSvia64.sys [2016-05-25 876248]
R2 LMIRfsDriver;LogMeIn Remote File System Driver; \??\C:\windows\system32\drivers\LMIRfsDriver.sys [2012-11-29 72216]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R3 Accelerometer;@oem19.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 ARCVCAM;@oem112.inf,%avshws.DeviceDesc%;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\WINDOWS\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;@netathrx.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athwnx.sys [2015-10-30 4207104]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2015-12-10 601624]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-05-28 84992]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2016-05-05 156912]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 HpqKbFiltr;@oem58.inf,%HpqKbFiltr.SvcDesc%;HpqKbFilter Driver; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [2010-12-03 25912]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcDAud;@oem110.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2011-08-23 317440]
R3 JMCR;JMCR; C:\WINDOWS\System32\drivers\jmcr.sys [2012-07-31 175928]
R3 MEIx64;@oem127.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-01-19 202032]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-12-28 175616]
R3 ROCKEYNT;@oem93.inf,%Rockey.SVCDESC%;Feitian ROCKEY4 Device Service; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [2013-12-04 36904]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S3 Afc;PPdus ASPI Shell; C:\WINDOWS\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-05-28 112640]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-05-28 954368]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-28 117248]
S3 cpuz136;cpuz136; \??\C:\WINDOWS\TEMP\cpuz136\cpuz136_x64.sys []
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\windows\SysWOW64\FsUsbExDisk.SYS [2013-12-30 37344]
S3 GemCCID;GemCCID; C:\WINDOWS\system32\DRIVERS\GemCCID.sys [2015-11-04 139632]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys [2012-11-29 11552]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 mvusbews;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-11-08 19968]
S3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\SDSDefs\20160620.021\ENG64.SYS []
S3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.4.24\Definitions\SDSDefs\20160620.021\EX64.SYS []
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 Netaapl;@oem53.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2013-07-25 23040]
S3 nmwcd;@oem11.inf,%MFG% %SVC%;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 181248]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016-04-05 2021592]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 hpsrv;@oem19.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2012-09-24 31040]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-04-26 28552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-08-08 325912]
R2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-12-28 26624]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe [2016-06-17 289080]
R2 OneSyncSvc_47424;Hostitel synchronizace_47424; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-10-30 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_13abf95;Hostitel synchronizace_13abf95; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_15573a0;Hostitel synchronizace_15573a0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1d15f81;Hostitel synchronizace_1d15f81; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_28b5fc8;Hostitel synchronizace_28b5fc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_2e1ae09;Hostitel synchronizace_2e1ae09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3d903;Hostitel synchronizace_3d903; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4e5028;Hostitel synchronizace_4e5028; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_50e5d;Hostitel synchronizace_50e5d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_555ad;Hostitel synchronizace_555ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_57097;Hostitel synchronizace_57097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_57106;Hostitel synchronizace_57106; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_58614;Hostitel synchronizace_58614; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_fadbc8;Hostitel synchronizace_fadbc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DraftSight API Service;DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [2014-03-14 123392]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files (x86)\Firebird\bin\fbguard.exe [2007-12-12 65536]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files (x86)\Firebird\bin\fbserver.exe [2007-12-12 1531989]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2014-06-05 1432400]
S3 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2014-04-24 227904]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2014-08-06 203344]
S3 HP DS Service;HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [2011-10-17 13824]
S3 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2012-05-02 164864]
S3 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
S3 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
S3 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-29 281656]
S3 hpqcxs08;hpqcxs08; C:\WINDOWS\syswow64\svchost.exe [2015-10-30 37256]
S3 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\syswow64\svchost.exe [2015-10-30 37256]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2015-04-28 1102472]
S3 HPSIService;HP SI Service; C:\WINDOWS\system32\HPSIsvc.exe [2010-04-29 127800]
S3 HPSLPSVC;HP Network Devices Support; C:\windows\system32\svchost.exe [2015-10-30 43944]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-06-01 651576]
S3 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_13abf95;Služba zasílání zpráv_13abf95; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_15573a0;Služba zasílání zpráv_15573a0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_28b5fc8;Služba zasílání zpráv_28b5fc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_2e1ae09;Služba zasílání zpráv_2e1ae09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_3d903;Služba zasílání zpráv_3d903; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_47424;Služba zasílání zpráv_47424; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4e5028;Služba zasílání zpráv_4e5028; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_50e5d;Služba zasílání zpráv_50e5d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_555ad;Služba zasílání zpráv_555ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_57097;Služba zasílání zpráv_57097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_57106;Služba zasílání zpráv_57106; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_fadbc8;Služba zasílání zpráv_fadbc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 nlsX86cc;Nalpeiron Licensing Service; C:\windows\SysWOW64\NLSSRV32.EXE [2013-03-25 70152]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
S3 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_13abf95;Data kontaktů_13abf95; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_15573a0;Data kontaktů_15573a0; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_28b5fc8;Data kontaktů_28b5fc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_2e1ae09;Data kontaktů_2e1ae09; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_3d903;Data kontaktů_3d903; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_47424;Data kontaktů_47424; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4e5028;Data kontaktů_4e5028; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_50e5d;Data kontaktů_50e5d; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_555ad;Data kontaktů_555ad; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_57097;Data kontaktů_57097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_57106;Data kontaktů_57106; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_fadbc8;Data kontaktů_fadbc8; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-14 269504]
S4 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2016-01-28 693440]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-09 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-09 116648]
-----------------EOF-----------------
