VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu

https://forum.viry.cz:443/viewtopic.php?t=150449

Stránka 1 z 1

Prosím o kontrolu

Napsal: 03 lis 2016 22:13
od ferenc77
Logfile of random's system information tool 1.14 (written by random/random)
Run by Adam at 2016-11-03 22:10:01
Microsoft Windows 10 Home
System drive C: has 33 GB (65%) free of 51 GB
Total RAM: 1023 MB (14% free)
X86

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:10:20, on 3. 11. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\system32\dfrgui.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Adam\Desktop\RSIT.exe
C:\Program Files\trend micro\Adam_RSIT.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ShadowPlay] "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Adam\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\MSI\BToes Bluetooth Software\btsendto_ie_ctx.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 4501 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\Driver Booster SkipUAC (Adam) - C:\Program Files\IObit\Driver Booster\DriverBooster.exe /skipuac
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\Adam\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\SmartShare - C:\Program Files\LG Software\LG Smart Share\SmartShareStart.exe tray
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{8FE6D542-9977-46D7-8C39-31B2A173D4C7} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{F7C09E45-1389-4D8B-B6A0-EAE00EEE281A} - C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files\Outlook Express Attachment Extractor\Epe.exe" -d "C:\Program Files\Outlook Express Attachment Extractor"
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-3409903947-2537725115-4003705135-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ

prefs.js - "browser.startup.homepage" - "www.google.sk"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.205 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_205.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.111.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Asynchronous Plugin Rendering - extension - asyncrendering@mozilla.org - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\features\{fcca4f15-c506-483b-961d-88981e468652}\asyncrendering@mozilla.org.xpi
MEGA - extension - firefox@mega.co.nz - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\extensions\firefox@mega.co.nz.xpi

C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\pluginreg.dat
Plugin - Adobe Acrobat - 15.20.20039.7108 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - NVIDIA 3D VISION - 7.17.13.4200 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
Plugin - NVIDIA 3D Vision - 7.17.13.4200 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
Plugin - Java(TM) Platform SE 8 U111 - 11.111.2.14 - C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.1110.14 - 11.111.2.14 - C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npdeployJava1.dll
Plugin - Shockwave Flash - 23.0.0.205 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_205.dll
Plugin - Photodex Presenter Plugin - 3.50.0.2268 - C:\Users\Adam\AppData\Roaming\Mozilla\plugins\npPxPlay.dll

=========Google Chrome=========

C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentácie Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Web Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabuľky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google v režime offline 1.4
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.0
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.0
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5416.905.0.6
Homepage:
default_search_provider.search_url:
C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

======Registry dump======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-18 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-18 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap.dll [2016-10-18 1377752]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2016-10-18 2397120]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Adam\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-09-30 633024]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-09-28 6889176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16 1156824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AirDroid 3]
C:\Program Files\AirDroid\AirDroid.exe /start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2016-09-28 6889176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2016-10-18 2397120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Plex Media Server]
C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TVMOBiLiArtworkManager.lnk]
C:\PROGRA~1\TVMOBiLi\bin\ITUNES~1.EXE /path:C:\ProgramData\TVMOBiLi\cache []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Universal Media Server.lnk]
C:\Program Files\Universal Media Server\UMS.exe [2016-10-01 604875]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Adam^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ConnectAir.lnk]
C:\Program Files\ConnectAir\ConnectAir.exe -hide []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-11-03 22:10:03 ----D---- C:\Program Files\trend micro
2016-11-03 22:10:01 ----D---- C:\rsit
2016-10-29 14:24:25 ----A---- C:\WINDOWS\system32\nvStreaming.exe
2016-10-29 14:22:49 ----A---- C:\WINDOWS\system32\OpenCL.dll
2016-10-29 14:20:41 ----A---- C:\WINDOWS\system32\nvaudcap32v.dll
2016-10-29 14:20:39 ----A---- C:\WINDOWS\system32\nvhdap32.dll
2016-10-29 14:20:38 ----A---- C:\WINDOWS\system32\nvopencl.dll
2016-10-29 14:20:37 ----A---- C:\WINDOWS\system32\nvoglv32.dll
2016-10-29 14:20:36 ----A---- C:\WINDOWS\system32\NvIFR.dll
2016-10-29 14:20:36 ----A---- C:\WINDOWS\system32\NvFBC.dll
2016-10-29 14:20:36 ----A---- C:\WINDOWS\system32\nvdispgenco3234200.dll
2016-10-29 14:20:36 ----A---- C:\WINDOWS\system32\nvdispco3234200.dll
2016-10-29 14:20:36 ----A---- C:\WINDOWS\system32\nvd3dum.dll
2016-10-29 14:20:36 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2016-10-29 14:20:36 ----A---- C:\WINDOWS\system32\nvcuda.dll
2016-10-29 14:20:32 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2016-10-29 12:36:59 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-10-29 12:36:58 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-10-29 12:36:58 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-10-29 12:36:57 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-10-29 12:36:57 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-10-29 12:36:56 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-29 12:36:56 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-10-29 12:36:55 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-10-29 12:36:55 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-10-29 12:36:55 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-10-29 12:36:55 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-29 12:36:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-29 12:36:53 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-29 12:36:53 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-29 12:36:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-29 12:36:51 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-10-29 12:36:51 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-29 12:36:50 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-10-29 12:36:49 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-29 12:36:48 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-29 12:36:48 ----A---- C:\WINDOWS\system32\cdd.dll
2016-10-29 12:36:47 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-10-29 12:36:47 ----A---- C:\WINDOWS\system32\powercfg.exe
2016-10-29 12:36:47 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-29 12:36:47 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-10-29 12:36:46 ----A---- C:\WINDOWS\system32\efsext.dll
2016-10-29 12:36:45 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-10-29 12:36:45 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-29 12:36:43 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-10-29 12:36:43 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-10-29 12:36:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-29 12:36:39 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-10-29 12:36:39 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-10-29 12:36:38 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-29 12:36:38 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-29 12:36:37 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-29 12:36:36 ----A---- C:\WINDOWS\system32\msctf.dll
2016-10-29 12:36:35 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-10-29 12:36:35 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-10-29 12:36:34 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-29 12:36:32 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-29 12:36:31 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-29 12:36:29 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-10-29 12:36:28 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-29 12:36:25 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-10-29 12:36:25 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-29 12:36:24 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-29 12:36:22 ----A---- C:\WINDOWS\system32\mispace.dll
2016-10-29 12:36:22 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-10-29 12:36:22 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-10-29 12:36:21 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-10-29 12:36:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-10-29 12:36:21 ----A---- C:\WINDOWS\system32\esent.dll
2016-10-29 12:36:21 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-10-29 12:36:20 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-10-29 12:36:19 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-10-29 12:36:19 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-10-29 12:36:18 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-10-29 12:36:18 ----A---- C:\WINDOWS\system32\wer.dll
2016-10-29 12:36:18 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-10-29 12:36:17 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-29 12:36:16 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-10-29 12:36:16 ----A---- C:\WINDOWS\system32\user32.dll
2016-10-29 12:36:15 ----A---- C:\WINDOWS\system32\olepro32.dll
2016-10-29 12:36:15 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-10-29 12:36:15 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-10-29 12:36:14 ----A---- C:\WINDOWS\system32\weretw.dll
2016-10-29 12:36:14 ----A---- C:\WINDOWS\system32\ole32.dll
2016-10-29 12:36:14 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2016-10-29 12:36:14 ----A---- C:\WINDOWS\system32\cmifw.dll
2016-10-29 12:36:14 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-10-29 12:36:13 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-10-29 12:36:10 ----A---- C:\WINDOWS\system32\usocore.dll
2016-10-29 12:36:10 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-10-29 12:36:10 ----A---- C:\WINDOWS\system32\esentutl.exe
2016-10-29 12:36:10 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-10-29 12:36:08 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-29 12:35:57 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-29 12:35:51 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-10-29 12:35:45 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-29 12:35:42 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-10-29 12:35:41 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-10-29 12:35:41 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-29 12:35:41 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-29 12:35:40 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-10-29 12:35:40 ----A---- C:\WINDOWS\system32\energy.dll
2016-10-29 12:35:39 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-10-29 12:35:39 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-10-29 12:35:39 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-10-29 12:35:38 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-29 12:35:37 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-10-29 12:35:36 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-10-29 12:35:35 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-29 12:35:35 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-10-29 12:35:35 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2016-10-29 12:35:35 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2016-10-29 12:35:34 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-10-29 12:35:34 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-10-29 12:35:32 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-10-29 12:35:30 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-29 12:35:30 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-29 12:35:29 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-29 12:35:29 ----A---- C:\WINDOWS\splwow64.exe
2016-10-29 12:35:28 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-10-29 12:35:28 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-29 12:35:27 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-29 12:35:26 ----A---- C:\WINDOWS\system32\winmde.dll
2016-10-29 12:35:25 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-29 12:35:24 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-29 12:35:20 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-29 12:35:19 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-29 12:35:19 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-10-29 12:35:19 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-10-29 12:35:18 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-10-29 12:35:18 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-10-29 12:35:18 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-10-29 12:35:18 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-10-29 12:35:17 ----A---- C:\WINDOWS\system32\combase.dll
2016-10-29 12:35:16 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-10-29 12:35:15 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-10-29 12:35:15 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2016-10-29 12:35:15 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-10-29 12:35:15 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-10-29 12:35:14 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2016-10-29 12:35:14 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-29 12:35:14 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-10-29 12:35:13 ----A---- C:\WINDOWS\system32\wmpshell.dll
2016-10-29 12:35:13 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2016-10-29 12:35:13 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-10-29 12:35:13 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-10-29 12:35:13 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-29 12:35:13 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-29 12:35:12 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-10-29 12:35:11 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-10-29 12:35:10 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-29 12:35:08 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-29 12:35:07 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-29 12:35:02 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-29 12:35:02 ----A---- C:\WINDOWS\explorer.exe
2016-10-29 12:35:01 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-29 12:34:58 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-29 12:34:57 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-29 12:34:54 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-29 12:34:52 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-10-29 12:34:51 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-29 12:34:51 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-29 12:34:50 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-10-29 12:34:50 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-29 12:34:49 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-10-29 12:34:48 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-10-29 12:34:47 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-29 12:34:46 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-29 12:34:46 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-29 12:34:46 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-29 12:34:45 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-10-29 12:34:45 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-10-29 12:34:45 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-29 12:34:44 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-10-29 12:34:43 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-29 12:34:43 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-29 12:34:42 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-29 12:34:41 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-10-29 12:34:40 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-29 12:34:40 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-29 12:34:39 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-29 12:34:39 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-10-29 12:34:38 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-29 12:34:38 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-10-29 12:34:37 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-29 12:34:37 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-10-29 12:34:36 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-29 12:34:36 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-10-29 12:34:36 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-29 12:34:36 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-29 12:34:34 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-10-29 12:34:34 ----A---- C:\WINDOWS\system32\gameux.dll
2016-10-29 12:34:33 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-10-29 12:34:33 ----A---- C:\WINDOWS\system32\authui.dll
2016-10-29 12:34:32 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-10-29 12:34:32 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-10-29 12:34:32 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2016-10-29 12:34:31 ----A---- C:\WINDOWS\system32\autoplay.dll
2016-10-29 12:34:31 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2016-10-29 12:34:30 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-10-29 12:34:30 ----A---- C:\WINDOWS\system32\sud.dll
2016-10-29 12:34:29 ----A---- C:\WINDOWS\system32\systemcpl.dll
2016-10-29 12:34:29 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-10-29 12:34:26 ----A---- C:\WINDOWS\system32\stobject.dll
2016-10-29 12:34:26 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-10-29 12:34:26 ----A---- C:\WINDOWS\system32\msinfo32.exe
2016-10-29 12:34:25 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2016-10-29 12:34:25 ----A---- C:\WINDOWS\system32\fontext.dll
2016-10-29 12:34:25 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-10-29 12:34:24 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-10-29 12:34:24 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2016-10-29 12:34:24 ----A---- C:\WINDOWS\system32\chartv.dll
2016-10-29 12:34:24 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-10-21 13:57:35 ----AD---- C:\Program Files\Mozilla Firefox
2016-10-20 19:19:49 ----A---- C:\WINDOWS\system32\Msvbvm50.dll
2016-10-20 19:19:44 ----A---- C:\WINDOWS\system32\Vb5stkit.dll
2016-10-20 19:19:44 ----A---- C:\WINDOWS\system32\nems_reg.dll
2016-10-20 19:19:43 ----A---- C:\WINDOWS\system32\vbis4032.dll
2016-10-20 19:19:43 ----A---- C:\WINDOWS\system32\SockIntf.dll
2016-10-20 19:19:43 ----A---- C:\WINDOWS\system32\nems_ws.dll
2016-10-20 19:19:43 ----A---- C:\WINDOWS\system32\nems_bmp.dll
2016-10-20 19:19:43 ----A---- C:\WINDOWS\system32\dwspyvb.dll
2016-10-20 19:19:43 ----A---- C:\WINDOWS\system32\dwspy5.dll
2016-10-20 19:19:42 ----A---- C:\WINDOWS\system32\nems_ins.dll
2016-10-18 22:48:13 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-10-18 22:10:27 ----D---- C:\Program Files\Common Files\Java
2016-10-18 21:13:18 ----D---- C:\Program Files\WizTree
2016-10-16 20:09:27 ----D---- C:\Program Files\Google
2016-10-15 20:41:36 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-10-15 20:41:35 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-15 20:41:35 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-10-15 20:41:33 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-10-15 20:41:21 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-10-15 20:41:20 ----A---- C:\WINDOWS\system32\msi.dll
2016-10-15 20:41:19 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-15 20:41:18 ----A---- C:\WINDOWS\system32\wpx.dll
2016-10-15 20:41:18 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-10-15 20:41:18 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-10-15 20:41:17 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-15 20:41:17 ----A---- C:\WINDOWS\system32\drivers\MegaSas2i.sys
2016-10-15 20:41:16 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-10-15 20:41:15 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-10-15 20:41:14 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-15 20:41:13 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-15 20:41:13 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-15 20:41:13 ----A---- C:\WINDOWS\system32\dsreg.dll
2016-10-15 20:41:13 ----A---- C:\WINDOWS\system32\bcdedit.exe
2016-10-15 20:41:12 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-10-15 20:41:10 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-15 20:41:09 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-15 20:41:09 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-10-15 20:40:57 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-10-15 20:40:53 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-10-15 20:40:52 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-15 20:40:49 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-15 20:40:49 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-15 20:40:48 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-15 20:40:47 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-15 20:40:47 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-10-15 20:40:46 ----A---- C:\WINDOWS\system32\cloudAP.dll
2016-10-15 20:40:45 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-15 20:40:45 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-10-15 20:40:44 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-15 20:40:42 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-15 20:40:42 ----A---- C:\WINDOWS\system32\netshell.dll
2016-10-15 20:40:33 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-15 20:40:33 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-10-15 20:40:22 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-15 20:40:16 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-10-15 20:40:08 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-10-15 20:40:07 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-10-15 20:40:06 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-15 20:40:05 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-15 20:40:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-15 20:40:04 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-15 20:40:04 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-10-15 20:40:04 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-15 20:40:03 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2016-10-15 20:40:03 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-15 20:40:03 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-10-15 20:40:02 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-15 20:40:02 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2016-10-15 20:39:49 ----A---- C:\WINDOWS\system32\smartscreen.exe
2016-10-15 20:39:48 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-10-15 20:39:45 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-15 20:39:44 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-10-15 20:39:44 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-10-15 20:39:44 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-10-15 20:39:43 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-10-15 20:39:43 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-10-15 20:39:43 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-10-15 20:39:43 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-10-15 20:39:42 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-15 20:39:42 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-15 20:39:42 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-15 20:39:41 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2016-10-15 20:39:41 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-10-15 20:39:40 ----A---- C:\WINDOWS\system32\dialclient.dll
2016-10-15 20:39:39 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-10-15 20:39:38 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-10-15 20:39:37 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-10-10 19:23:03 ----D---- C:\ProgramData\Team MediaPortal
2016-10-10 19:22:15 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2016-10-10 19:22:15 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2016-10-10 19:22:14 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2016-10-10 19:22:14 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2016-10-10 19:22:14 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2016-10-10 19:22:14 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2016-10-10 19:22:14 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2016-10-10 19:22:13 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2016-10-10 19:22:13 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2016-10-10 19:22:13 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2016-10-10 19:22:12 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2016-10-10 19:22:12 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2016-10-10 19:22:12 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2016-10-10 19:22:12 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2016-10-10 19:22:12 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2016-10-10 19:22:11 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2016-10-10 19:22:11 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2016-10-10 19:22:11 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2016-10-10 19:22:11 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2016-10-10 19:22:11 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2016-10-10 19:22:11 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2016-10-10 19:22:10 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2016-10-10 19:22:10 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2016-10-10 19:22:09 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2016-10-10 19:22:09 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2016-10-10 19:22:09 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2016-10-10 19:22:09 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2016-10-10 19:22:09 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2016-10-10 19:22:09 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2016-10-10 19:22:08 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2016-10-10 19:22:08 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2016-10-10 19:22:08 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2016-10-10 19:22:08 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2016-10-10 19:22:07 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2016-10-10 19:22:07 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2016-10-10 19:22:07 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2016-10-10 19:22:07 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2016-10-10 19:22:06 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2016-10-10 19:22:06 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2016-10-10 19:22:06 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2016-10-10 19:22:06 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2016-10-10 19:22:06 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2016-10-10 19:22:05 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2016-10-10 19:22:05 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2016-10-10 19:22:04 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2016-10-10 19:22:04 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2016-10-10 19:22:04 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2016-10-10 19:22:04 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2016-10-10 19:22:04 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2016-10-10 19:22:04 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2016-10-10 19:22:04 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2016-10-10 19:22:04 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2016-10-10 19:22:03 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2016-10-10 19:22:03 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2016-10-10 19:22:03 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2016-10-10 19:22:02 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2016-10-10 19:22:02 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2016-10-10 19:22:02 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2016-10-10 19:22:02 ----A---- C:\WINDOWS\system32\d3dx10.dll
2016-10-10 19:22:02 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2016-10-10 19:22:01 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2016-10-10 19:22:01 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2016-10-10 19:22:01 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2016-10-10 19:22:01 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2016-10-10 19:22:00 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2016-10-10 19:22:00 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2016-10-10 19:22:00 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2016-10-10 19:21:58 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2016-10-10 19:21:57 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2016-10-10 19:21:57 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2016-10-10 19:21:57 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2016-10-10 19:21:57 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2016-10-10 19:21:56 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2016-10-10 19:21:56 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2016-10-10 19:19:34 ----D---- C:\WINDOWS\system32\directx
2016-10-10 18:06:18 ----D---- C:\ProgramData\UMS

======List of files/folders modified in the last 1 month======

2016-11-03 22:10:03 ----D---- C:\Program Files
2016-11-03 22:02:43 ----D---- C:\WINDOWS\Prefetch
2016-11-03 22:00:25 ----HD---- C:\Program Files\WindowsApps
2016-11-03 22:00:15 ----D---- C:\WINDOWS\Temp
2016-11-02 13:04:49 ----D---- C:\WINDOWS\system32\SleepStudy
2016-11-02 13:03:24 ----D---- C:\WINDOWS\system32\sru
2016-11-02 13:00:36 ----D---- C:\WINDOWS\system32\config
2016-11-02 13:00:14 ----RD---- C:\WINDOWS\Microsoft.NET
2016-10-31 16:40:52 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-31 16:40:51 ----D---- C:\WINDOWS\WinSxS
2016-10-30 19:17:46 ----D---- C:\WINDOWS\system32\Macromed
2016-10-30 19:07:12 ----D---- C:\WINDOWS\AppReadiness
2016-10-29 15:11:33 ----D---- C:\WINDOWS\rescache
2016-10-29 14:43:45 ----D---- C:\WINDOWS\system32\catroot2
2016-10-29 14:40:46 ----D---- C:\Windows
2016-10-29 14:28:04 ----D---- C:\WINDOWS\INF
2016-10-29 14:28:01 ----D---- C:\ProgramData\NVIDIA
2016-10-29 14:27:40 ----D---- C:\WINDOWS\system32\drivers
2016-10-29 14:27:40 ----D---- C:\WINDOWS\System32
2016-10-29 14:25:27 ----D---- C:\WINDOWS\system32\CatRoot
2016-10-29 14:06:33 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-29 13:56:16 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-10-29 13:56:16 ----D---- C:\WINDOWS\system32\wbem
2016-10-29 13:56:16 ----D---- C:\WINDOWS\system32\sk-SK
2016-10-29 13:56:15 ----D---- C:\WINDOWS\system32\oobe
2016-10-29 13:56:15 ----D---- C:\WINDOWS\system32\migration
2016-10-29 13:56:15 ----D---- C:\WINDOWS\system32\en-US
2016-10-29 13:56:15 ----D---- C:\WINDOWS\system32\Boot
2016-10-29 13:56:15 ----D---- C:\WINDOWS\system32\appraiser
2016-10-29 13:56:07 ----RSD---- C:\WINDOWS\Fonts
2016-10-29 13:56:07 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-10-29 13:56:07 ----D---- C:\WINDOWS\apppatch
2016-10-29 13:56:07 ----D---- C:\Program Files\Windows Media Player
2016-10-29 13:10:45 ----D---- C:\WINDOWS\CbsTemp
2016-10-25 00:30:58 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-10-19 17:15:01 ----D---- C:\WINDOWS\Logs
2016-10-18 23:26:44 ----D---- C:\Users\Adam\AppData\Roaming\vlc
2016-10-18 23:23:17 ----D---- C:\WINDOWS\system32\Tasks
2016-10-18 23:23:15 ----D---- C:\WINDOWS\Tasks
2016-10-18 23:23:14 ----SHD---- C:\WINDOWS\Installer
2016-10-18 23:23:14 ----SHD---- C:\Config.Msi
2016-10-18 23:04:40 ----HD---- C:\ProgramData
2016-10-18 23:04:19 ----D---- C:\Program Files\Java
2016-10-18 22:42:19 ----D---- C:\WINDOWS\System
2016-10-18 22:10:27 ----D---- C:\Program Files\Common Files
2016-10-18 22:09:43 ----D---- C:\ProgramData\Oracle
2016-10-18 22:01:43 ----A---- C:\WINDOWS\system32\WindowsAccessBridge.dll
2016-10-18 19:39:57 ----A---- C:\WINDOWS\system32\nvspcap.dll
2016-10-18 19:39:57 ----A---- C:\WINDOWS\system32\nvspbridge.dll
2016-10-18 19:39:57 ----A---- C:\WINDOWS\system32\NvRtmpStreamer32.dll
2016-10-18 15:52:40 ----A---- C:\WINDOWS\system32\nvwgf2um.dll
2016-10-18 15:52:40 ----A---- C:\WINDOWS\system32\nvhdagenco3220103.dll
2016-10-18 15:52:40 ----A---- C:\WINDOWS\system32\nvapi.dll
2016-10-18 14:49:00 ----A---- C:\WINDOWS\system32\nvsvc.dll
2016-10-18 14:49:00 ----A---- C:\WINDOWS\system32\nvcpl.dll
2016-10-18 14:48:58 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2016-10-18 14:48:58 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2016-10-18 14:48:58 ----A---- C:\WINDOWS\system32\nvshext.dll
2016-10-18 14:48:58 ----A---- C:\WINDOWS\system32\nvmctray.dll
2016-10-17 21:55:54 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-10-17 21:54:49 ----D---- C:\WINDOWS\SoftwareDistribution
2016-10-16 22:18:03 ----DC---- C:\WINDOWS\Panther
2016-10-16 22:18:03 ----D---- C:\WINDOWS\debug
2016-10-16 01:07:55 ----RSD---- C:\WINDOWS\assembly
2016-10-16 01:00:47 ----D---- C:\WINDOWS\system32\WDI
2016-10-16 00:29:30 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-10-16 00:29:29 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-10-16 00:29:29 ----D---- C:\WINDOWS\system32\migwiz
2016-10-16 00:29:24 ----D---- C:\WINDOWS\ShellExperiences
2016-10-16 00:29:24 ----D---- C:\Program Files\Windows Photo Viewer
2016-10-10 19:41:08 ----D---- C:\ProgramData\Package Cache
2016-10-10 18:52:11 ----D---- C:\ProgramData\PMS
2016-10-10 18:06:09 ----D---- C:\Program Files\Universal Media Server
2016-10-10 14:23:13 ----D---- C:\Program Files\Winamp

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-07-14 199608]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2016-08-27 71336]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 38240]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-08-27 206472]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-08-27 156320]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2016-08-27 162472]
R1 EpfwLWF;@oem15.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2016-08-27 52904]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS [2016-02-28 23840]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 58368]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2016-08-27 121504]
R2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2016-07-16 9216]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-09-30 130560]
R3 NVHDA;@oem5.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32v.sys [2016-10-18 162592]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-10-18 10716096]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-10-18 26048]
R3 nvvad_WaveExtensible;@oem8.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad32v.sys [2016-08-04 50744]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2016-07-16 494080]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2016-08-27 14976]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 56672]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 12800]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 12288]
S3 DFX11_1;DFX Audio Enhancer 11.1; C:\WINDOWS\system32\drivers\dfx11_1.sys [2012-12-13 24424]
S3 dg_ssudbus;@oem16.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 88576]
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys [2015-11-25 31832]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2016-07-16 22016]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 25600]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2016-07-16 61936]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 30208]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 94720]
S3 jrvad_service;JRiver Media Center 20 (service); C:\WINDOWS\system32\drivers\JRiverWDMDriver.sys [2015-01-26 30168]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 62976]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 76800]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll"=%windir%\system32\inetsrv\apphostsvc.dll
R2 CDPUserSvc_28bd2c0;CDPUserSvc_28bd2c0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-08-27 2172360]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-10-18 930240]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-09-30 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-10-18 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-10-18 2016704]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-10-18 677312]
R2 OneSyncSvc_28bd2c0;Sync Host_28bd2c0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2016-10-18 424384]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-10-18 2904000]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_28bd2c0;MessagingService_28bd2c0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 PimIndexMaintenanceSvc_28bd2c0;Kontaktné údaje_28bd2c0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 UnistoreSvc_28bd2c0;Ukladací priestor používateľských údajov_28bd2c0; C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2016-07-16 47280]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-10-21 172488]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

Re: Prosím o kontrolu

Napsal: 04 lis 2016 09:56
od JaRon
ahoj,
PC ma dost malo pamate, AV problem tam nevidim :)

Re: Prosím o kontrolu

Napsal: 04 led 2017 18:25
od ferenc77
Zdravím,

aby som nezakladal novú tému, tak dám sem aktuálny log....akosi som sa pozabudol, ospravedlňujem sa :)

Logfile of random's system information tool 1.14 (written by random/random)
Run by Adam at 2017-01-04 18:22:52
Microsoft Windows 10 Home
System drive C: has 32 GB (63%) free of 51 GB
Total RAM: 1023 MB (23% free)
X86

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:23:12, on 4. 1. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Adam\Desktop\RSIT.exe
C:\Program Files\trend micro\Adam_RSIT.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ShadowPlay] "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Adam\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\MSI\BToes Bluetooth Software\btsendto_ie_ctx.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 4675 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\Driver Booster SkipUAC (Adam) - C:\Program Files\IObit\Driver Booster\DriverBooster.exe /skipuac
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\Adam\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\SmartShare - C:\Program Files\LG Software\LG Smart Share\SmartShareStart.exe tray
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{8FE6D542-9977-46D7-8C39-31B2A173D4C7} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{F7C09E45-1389-4D8B-B6A0-EAE00EEE281A} - C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files\Outlook Express Attachment Extractor\Epe.exe" -d "C:\Program Files\Outlook Express Attachment Extractor"
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-3409903947-2537725115-4003705135-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ

prefs.js - "browser.startup.homepage" - "www.google.sk"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.207 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.111.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\addons.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\extensions.json
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h278jswl.Predvolený používateľ\pluginreg.dat
Plugin - Adobe Acrobat - 15.20.20039.7108 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - NVIDIA 3D VISION - 7.17.13.4201 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
Plugin - NVIDIA 3D Vision - 7.17.13.4201 - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
Plugin - Java(TM) Platform SE 8 U111 - 11.111.2.14 - C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.1110.14 - 11.111.2.14 - C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npdeployJava1.dll
Plugin - Shockwave Flash - 23.0.0.207 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll
Plugin - Photodex Presenter Plugin - 3.50.0.2268 - C:\Users\Adam\AppData\Roaming\Mozilla\plugins\npPxPlay.dll

=========Google Chrome=========

C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentácie Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Web Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabuľky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google v režime offline 1.4
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.0
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.0
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5416.905.0.6
Homepage:
default_search_provider.search_url:
C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

======Registry dump======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-18 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-18 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap.dll [2016-10-18 1377752]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2016-10-18 2397120]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Adam\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-09-30 633024]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2016-12-06 7175384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21 1156824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AirDroid 3]
C:\Program Files\AirDroid\AirDroid.exe /start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2016-12-06 7175384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2016-10-18 2397120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Plex Media Server]
C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TVMOBiLiArtworkManager.lnk]
C:\PROGRA~1\TVMOBiLi\bin\ITUNES~1.EXE /path:C:\ProgramData\TVMOBiLi\cache []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Universal Media Server.lnk]
C:\Program Files\Universal Media Server\UMS.exe [2016-11-28 604875]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Adam^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ConnectAir.lnk]
C:\Program Files\ConnectAir\ConnectAir.exe -hide []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-01-04 15:12:31 ----D---- C:\ProgramData\UMS
2017-01-04 15:11:42 ----D---- C:\Program Files\Universal Media Server
2016-12-27 20:48:12 ----D---- C:\Program Files\Common Files\Nero
2016-12-21 16:54:05 ----AD---- C:\Program Files\Mozilla Firefox
2016-12-16 16:26:52 ----A---- C:\WINDOWS\system32\nvStreaming.exe
2016-12-16 15:54:02 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-12-16 15:53:59 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-12-16 15:53:58 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-12-16 15:53:56 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-12-16 15:53:53 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-12-16 15:53:51 ----A---- C:\WINDOWS\system32\msi.dll
2016-12-16 15:53:50 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-12-16 15:53:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-12-16 15:53:49 ----A---- C:\WINDOWS\system32\winresume.exe
2016-12-16 15:53:49 ----A---- C:\WINDOWS\system32\InputService.dll
2016-12-16 15:53:49 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-12-16 15:53:48 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-12-16 15:53:48 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-12-16 15:53:48 ----A---- C:\WINDOWS\system32\bcrypt.dll
2016-12-16 15:53:47 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-12-16 15:53:47 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-16 15:53:47 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-16 15:53:47 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-16 15:53:46 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-12-16 15:53:45 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2016-12-16 15:53:44 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-16 15:53:41 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-16 15:53:38 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-12-16 15:53:38 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-12-16 15:53:38 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-12-16 15:53:37 ----A---- C:\WINDOWS\system32\cdp.dll
2016-12-16 15:53:35 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-12-16 15:53:35 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-16 15:53:31 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-12-16 15:53:29 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-12-16 15:53:28 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-12-16 15:53:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-16 15:53:27 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-12-16 15:53:27 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-12-16 15:53:27 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-12-16 15:53:27 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-12-16 15:53:26 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-12-16 15:53:26 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-12-16 15:53:26 ----A---- C:\WINDOWS\system32\win32k.sys
2016-12-16 15:53:26 ----A---- C:\WINDOWS\system32\cdd.dll
2016-12-16 15:53:25 ----A---- C:\WINDOWS\system32\user32.dll
2016-12-16 15:53:25 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-12-16 15:53:24 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-16 15:53:24 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-12-16 15:53:23 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-12-16 15:53:23 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-16 15:53:23 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-12-16 15:53:20 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-12-16 15:53:17 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-16 15:53:13 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-16 15:53:12 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-12-16 15:53:11 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-16 15:53:09 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-10 12:12:29 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-10 12:12:29 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-10 12:12:29 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-10 12:12:28 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-12-10 12:12:28 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-10 12:12:23 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-12-10 12:12:16 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-12-10 12:12:15 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-12-10 12:12:15 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2016-12-10 12:12:14 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-12-10 12:12:14 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-10 12:12:13 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-12-10 12:12:11 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-12-10 12:12:11 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-12-10 12:12:11 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-10 12:12:11 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-12-10 12:12:11 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-10 12:12:11 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-12-10 12:12:10 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-10 12:12:10 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-12-10 12:12:10 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-10 12:12:09 ----A---- C:\WINDOWS\system32\umpoext.dll
2016-12-10 12:12:08 ----A---- C:\WINDOWS\system32\drivers\modem.sys
2016-12-10 12:12:07 ----A---- C:\WINDOWS\system32\twinui.dll
2016-12-10 12:12:07 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-10 12:12:06 ----A---- C:\WINDOWS\system32\msctf.dll
2016-12-10 12:12:06 ----A---- C:\WINDOWS\system32\lsm.dll
2016-12-10 12:12:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 12:12:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-10 12:12:05 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-12-10 12:12:05 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-12-10 12:12:05 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-12-10 12:12:04 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-12-10 12:12:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-12-10 12:12:04 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-12-10 12:12:03 ----A---- C:\WINDOWS\system32\shell32.dll
2016-12-10 12:12:01 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-12-10 12:12:01 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-12-10 12:12:01 ----A---- C:\WINDOWS\system32\sendmail.dll
2016-12-10 12:12:01 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-10 12:12:01 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-10 12:12:01 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-10 12:12:00 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-12-10 12:12:00 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-12-10 12:11:59 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-12-10 12:11:58 ----A---- C:\WINDOWS\system32\wsecedit.dll
2016-12-10 12:11:58 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-10 12:11:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-10 12:11:57 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-12-10 12:11:55 ----A---- C:\WINDOWS\system32\wscinterop.dll
2016-12-10 12:11:53 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-12-10 12:11:53 ----A---- C:\WINDOWS\system32\services.exe
2016-12-10 12:11:53 ----A---- C:\WINDOWS\system32\RTWorkQ.dll
2016-12-10 12:11:53 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-10 12:11:53 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-10 12:11:52 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-12-10 12:11:52 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-12-10 12:11:52 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-12-10 12:11:51 ----A---- C:\WINDOWS\system32\vpnike.dll
2016-12-10 12:11:51 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-12-10 12:11:51 ----A---- C:\WINDOWS\system32\ProvSysprep.dll
2016-12-10 12:11:50 ----A---- C:\WINDOWS\system32\sppnp.dll
2016-12-10 12:11:50 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-12-10 12:11:50 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-12-10 12:11:48 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-12-10 12:11:48 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-12-10 12:11:47 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-12-10 12:11:46 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-12-10 12:11:45 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 12:11:45 ----A---- C:\WINDOWS\system32\netshell.dll
2016-12-10 12:11:45 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-12-10 12:11:45 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-10 12:11:44 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-12-10 12:11:44 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-10 12:11:42 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-12-10 12:11:41 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-12-10 12:11:40 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-12-10 12:11:40 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-12-10 12:11:40 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-10 12:11:40 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-12-10 12:11:40 ----A---- C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-10 12:11:39 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-12-10 12:11:39 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-12-10 12:11:39 ----A---- C:\WINDOWS\system32\moshost.dll
2016-12-10 12:11:39 ----A---- C:\WINDOWS\system32\mos.dll
2016-12-10 12:11:39 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-12-10 12:11:39 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-10 12:11:39 ----A---- C:\WINDOWS\system32\MapRouter.dll
2016-12-10 12:11:38 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2016-12-10 12:11:38 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-12-10 12:11:38 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-12-10 12:11:38 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-12-10 12:11:38 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-12-10 12:11:37 ----A---- C:\WINDOWS\system32\migisol.dll
2016-12-10 12:11:36 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-12-10 12:11:36 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-12-10 12:11:35 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-10 12:11:33 ----A---- C:\WINDOWS\system32\lpremove.exe
2016-12-10 12:11:33 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-12-10 12:11:33 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-12-10 12:11:28 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-12-10 12:11:26 ----A---- C:\WINDOWS\system32\wininet.dll
2016-12-10 12:11:18 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-12-10 12:11:17 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-10 12:11:17 ----A---- C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-10 12:11:16 ----A---- C:\WINDOWS\system32\gameux.dll
2016-12-10 12:11:16 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-12-10 12:11:15 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-10 12:11:15 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-12-10 12:11:15 ----A---- C:\WINDOWS\explorer.exe
2016-12-10 12:11:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-10 12:11:14 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-10 12:11:14 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2016-12-10 12:11:13 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-10 12:11:13 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-12-10 12:11:13 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-12-10 12:11:13 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-12-10 12:11:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-10 12:11:12 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-12-10 12:11:11 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-12-10 12:11:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-12-10 12:11:11 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-12-10 12:11:11 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-12-10 12:11:11 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-12-10 12:11:11 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-10 12:11:11 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-10 12:11:10 ----A---- C:\WINDOWS\system32\ReportingCSP.dll
2016-12-10 12:11:10 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-12-10 12:11:09 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-12-10 12:11:08 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\xolehlp.dll
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\wincorlib.dll
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\ole32.dll
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\combase.dll
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-12-10 12:11:06 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-12-10 12:11:05 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2016-12-10 12:11:05 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-10 12:11:05 ----A---- C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-10 12:11:04 ----A---- C:\WINDOWS\system32\mtxclu.dll
2016-12-10 12:11:00 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-12-10 12:10:55 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-12-10 12:10:54 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-12-10 12:10:54 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-10 12:10:54 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-12-10 12:10:54 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-10 12:10:54 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-10 12:10:54 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-10 12:10:54 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-12-10 12:10:54 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-12-10 12:10:53 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-12-10 12:10:53 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-12-10 12:10:53 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-10 12:10:49 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-10 12:10:49 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-12-10 12:10:45 ----A---- C:\WINDOWS\system32\EDPCleanup.exe
2016-12-10 12:10:45 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-12-10 12:10:44 ----A---- C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-10 12:10:44 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-12-10 12:10:44 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-12-10 12:10:37 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-12-10 12:10:37 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-12-10 12:10:37 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-12-09 11:31:06 ----A---- C:\WINDOWS\system32\nvoglv32.dll
2016-12-09 11:18:14 ----A---- C:\WINDOWS\system32\NvIFR.dll
2016-12-09 11:17:48 ----A---- C:\WINDOWS\system32\nvhdap32.dll
2016-12-09 11:17:42 ----A---- C:\WINDOWS\system32\nvhdagenco3220103.dll
2016-12-09 11:17:40 ----A---- C:\WINDOWS\system32\drivers\nvhda32v.sys
2016-12-09 11:17:36 ----A---- C:\WINDOWS\system32\NvFBC.dll
2016-12-09 11:17:30 ----A---- C:\WINDOWS\system32\nvdispgenco3234201.dll
2016-12-09 11:17:30 ----A---- C:\WINDOWS\system32\nvdispco3234201.dll
2016-12-09 11:10:44 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2016-12-09 11:05:42 ----A---- C:\WINDOWS\system32\nvopencl.dll
2016-12-09 11:04:30 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2016-12-09 10:59:30 ----A---- C:\WINDOWS\system32\nvcuda.dll

======List of files/folders modified in the last 1 month======

2017-01-04 18:23:00 ----D---- C:\Program Files\trend micro
2017-01-04 18:17:43 ----HD---- C:\Program Files\WindowsApps
2017-01-04 18:13:55 ----D---- C:\WINDOWS\SoftwareDistribution
2017-01-04 18:13:53 ----D---- C:\Windows
2017-01-04 18:12:26 ----D---- C:\WINDOWS\Temp
2017-01-04 18:11:46 ----D---- C:\WINDOWS\system32\sru
2017-01-04 15:12:31 ----HD---- C:\ProgramData
2017-01-04 15:11:42 ----D---- C:\Program Files
2017-01-04 15:07:36 ----D---- C:\WINDOWS\System32
2017-01-04 15:07:36 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-04 15:04:49 ----D---- C:\WINDOWS\Prefetch
2017-01-04 12:45:33 ----D---- C:\WINDOWS\system32\Macromed
2017-01-03 22:35:16 ----RD---- C:\WINDOWS\Microsoft.NET
2017-01-03 19:22:59 ----D---- C:\WINDOWS\system32\SleepStudy
2016-12-29 19:18:33 ----D---- C:\WINDOWS\INF
2016-12-27 22:23:54 ----D---- C:\ProgramData\NVIDIA
2016-12-27 22:22:41 ----D---- C:\WINDOWS\system32\catroot2
2016-12-27 21:51:10 ----D---- C:\Users\Adam\AppData\Roaming\vlc
2016-12-27 21:42:41 ----SHD---- C:\WINDOWS\Installer
2016-12-27 21:42:41 ----SHD---- C:\Config.Msi
2016-12-27 21:41:22 ----D---- C:\ProgramData\Nero
2016-12-27 21:38:48 ----D---- C:\WINDOWS\system32\Tasks
2016-12-27 21:22:04 ----D---- C:\Users\Adam\AppData\Roaming\Nero
2016-12-27 21:07:16 ----D---- C:\ProgramData\Package Cache
2016-12-27 20:48:12 ----D---- C:\Program Files\Common Files
2016-12-26 18:19:38 ----D---- C:\WINDOWS\Minidump
2016-12-26 18:13:39 ----D---- C:\WINDOWS\system32\config
2016-12-26 13:19:58 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-12-23 14:50:45 ----D---- C:\WINDOWS\AppReadiness
2016-12-21 15:15:58 ----D---- C:\WINDOWS\system32\DriverStore
2016-12-21 13:25:52 ----D---- C:\WINDOWS\WinSxS
2016-12-17 15:03:36 ----RSD---- C:\WINDOWS\assembly
2016-12-16 17:02:34 ----D---- C:\WINDOWS\rescache
2016-12-16 16:36:40 ----D---- C:\WINDOWS\system32\drivers
2016-12-16 16:34:39 ----D---- C:\WINDOWS\system32\en-US
2016-12-16 16:34:37 ----D---- C:\WINDOWS\ShellExperiences
2016-12-16 16:34:36 ----D---- C:\WINDOWS\apppatch
2016-12-16 16:34:34 ----D---- C:\WINDOWS\system32\Boot
2016-12-16 16:20:49 ----D---- C:\WINDOWS\system32\CatRoot
2016-12-16 16:15:39 ----D---- C:\WINDOWS\CbsTemp
2016-12-12 00:56:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-12-10 15:28:40 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-12-10 15:28:40 ----D---- C:\WINDOWS\system32\wbem
2016-12-10 15:28:40 ----D---- C:\WINDOWS\system32\Sysprep
2016-12-10 15:28:40 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-12-10 15:28:40 ----D---- C:\WINDOWS\system32\oobe
2016-12-10 15:28:39 ----D---- C:\WINDOWS\system32\Dism
2016-12-10 15:28:31 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-12-10 15:28:31 ----D---- C:\WINDOWS\servicing
2016-12-10 15:28:31 ----D---- C:\WINDOWS\bcastdvr
2016-12-10 15:28:31 ----D---- C:\Program Files\Internet Explorer
2016-12-09 11:38:28 ----A---- C:\WINDOWS\system32\OpenCL.dll
2016-12-09 11:05:44 ----A---- C:\WINDOWS\system32\nvwgf2um.dll
2016-12-09 11:05:36 ----A---- C:\WINDOWS\system32\nvd3dum.dll
2016-12-09 10:59:22 ----A---- C:\WINDOWS\system32\nvapi.dll

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-07-14 199608]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2016-11-24 71304]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 42336]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-11-24 206472]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-11-24 156288]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2016-11-24 162952]
R1 EpfwLWF;@oem15.inf,%EpfwLWF_Desc%;ESET Personal Firewall; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2016-11-24 52872]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS [2016-02-28 23840]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 58368]
R2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2016-07-16 9216]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-09-30 130560]
R3 NVHDA;@oem28.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32v.sys [2016-12-09 171960]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-12-09 10720832]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-10-18 26048]
R3 nvvad_WaveExtensible;@oem8.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad32v.sys [2016-08-04 50744]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2016-07-16 494080]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2016-08-27 14976]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 56672]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 12800]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 12288]
S3 DFX11_1;DFX Audio Enhancer 11.1; C:\WINDOWS\system32\drivers\dfx11_1.sys [2012-12-13 24424]
S3 dg_ssudbus;@oem16.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 88576]
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys [2015-11-25 31832]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2016-07-16 22016]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 25600]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2016-07-16 61936]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 30208]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 94720]
S3 jrvad_service;JRiver Media Center 20 (service); C:\WINDOWS\system32\drivers\JRiverWDMDriver.sys [2015-01-26 30168]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 62976]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 76800]
S4 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2016-11-24 122496]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll"=%windir%\system32\inetsrv\apphostsvc.dll
R2 CDPUserSvc_249c204;CDPUserSvc_249c204; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-11-24 2167696]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-10-18 930240]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-09-30 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-10-18 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-10-18 2016704]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-11-14 677312]
R2 OneSyncSvc_249c204;Sync Host_249c204; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2016-11-14 426040]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-10-18 2904000]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_249c204;MessagingService_249c204; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 PimIndexMaintenanceSvc_249c204;Kontaktné údaje_249c204; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S3 UnistoreSvc_249c204;Ukladací priestor používateľských údajov_249c204; C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2016-07-16 47280]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-21 172488]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

Re: Prosím o kontrolu

Napsal: 05 led 2017 12:31
od JaRon
ahoj,
vycisti registre CCleanerom, inac OK

Re: Prosím o kontrolu

Napsal: 05 led 2017 12:59
od ferenc77
Ďakujem

Re: Prosím o kontrolu

Napsal: 05 led 2017 13:41
od JaRon
za malo :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz