VIRY.CZ

Dobrý den prosím o kontrolu, je možný keylogger. Děkuji



Logfile of random's system information tool 1.16 (written by random/random)
Run by E707 at 2017-03-20 18:16:06
Microsoft Windows 10 Home
System drive C: has 26 GB (8%) free of 307 GB
Total RAM: 8183 MB (68% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:16:10, on 20.3.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe
C:\Program Files (x86)\ASUS\EPU-6 Engine\SixEngine.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
C:\Users\E707\AppData\Local\Dropbox\Update\DropboxUpdate.exe
C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Opera\43.0.2442.1144\opera_crashreporter.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
C:\Users\E707\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\E707_RSIT.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [KeePass 2 PreLoad] "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
O4 - HKLM\..\Run: [TurboV EVO] "C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe" -b
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\E707\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: Universal Media Server.lnk = C:\Program Files (x86)\Universal Media Server\UMS.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyClientService - GOG.com - C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator 2015 Realtime Shield Service (ST2012_Svc) - Crawler Group, LLC - C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @oem48.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\WINDOWS\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10664 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_23_0_0_205_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-1970623136-699288781-1442233091-1000Core1d238cc66fb794d.job - C:\Users\E707\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-1970623136-699288781-1442233091-1000UA1d238cc6729e481.job - C:\Users\E707\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler

=========Google Chrome=========

C:\Users\E707\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 0 Avast SafePrice 12.0.199
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension gomekmidlodglbbmalcneegieacbdmki 1 Avast Online Security 12.0.199
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh 1 Google Now 1.2.0.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage:
default_search_provider.search_url:
C:\Users\E707\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx


======Registry dump======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-03-19 205512]
"KeePass 2 PreLoad"=C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2016-06-11 2779136]
"TurboV EVO"=C:\Program Files (x86)\ASUS\TurboV EVO\TurboV_EVO.exe [2009-11-06 8619008]
"NUSB3MON"=C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2009-10-21 106496]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-09-21 2583040]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Dropbox Update"=C:\Users\E707\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-07 143144]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Universal Media Server.lnk - C:\Program Files (x86)\Universal Media Server\UMS.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PAexec]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.RTV1"=rtvcvfw32.dll
"vidc.pDAD"=prodad-codec.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-03-20 18:16:07 ----D---- C:\Program Files (x86)\trend micro
2017-03-20 18:16:06 ----D---- C:\rsit
2017-03-19 12:26:29 ----D---- C:\Program Files (x86)\Common Files\Skype
2017-03-19 12:26:28 ----RD---- C:\Program Files (x86)\Skype
2017-03-19 12:12:42 ----D---- C:\ProgramData\SWCUTemp
2017-03-14 19:54:21 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-14 19:54:20 ----A---- C:\WINDOWS\SysWOW64\windows.storage.dll
2017-03-14 19:54:20 ----A---- C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-03-14 19:54:19 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-03-14 19:54:19 ----A---- C:\WINDOWS\SysWOW64\mos.dll
2017-03-14 19:54:18 ----A---- C:\WINDOWS\SysWOW64\wininet.dll
2017-03-14 19:54:18 ----A---- C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-03-14 19:54:18 ----A---- C:\WINDOWS\SysWOW64\BingMaps.dll
2017-03-14 19:54:17 ----A---- C:\WINDOWS\SysWOW64\tquery.dll
2017-03-14 19:54:17 ----A---- C:\WINDOWS\SysWOW64\shell32.dll
2017-03-14 19:54:17 ----A---- C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-03-14 19:54:16 ----A---- C:\WINDOWS\SysWOW64\twinui.dll
2017-03-14 19:54:16 ----A---- C:\WINDOWS\SysWOW64\explorer.exe
2017-03-14 19:54:15 ----A---- C:\WINDOWS\SysWOW64\storagewmi.dll
2017-03-14 19:54:15 ----A---- C:\WINDOWS\SysWOW64\msxml6.dll
2017-03-14 19:54:15 ----A---- C:\WINDOWS\SysWOW64\mssrch.dll
2017-03-14 19:54:15 ----A---- C:\WINDOWS\SysWOW64\mispace.dll
2017-03-14 19:54:15 ----A---- C:\WINDOWS\SysWOW64\dwmcore.dll
2017-03-14 19:54:15 ----A---- C:\WINDOWS\SysWOW64\d3d11.dll
2017-03-14 19:54:14 ----A---- C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-03-14 19:54:14 ----A---- C:\WINDOWS\SysWOW64\mfcore.dll
2017-03-14 19:54:14 ----A---- C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-03-14 19:54:14 ----A---- C:\WINDOWS\SysWOW64\dbgeng.dll
2017-03-14 19:54:13 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-14 19:54:13 ----A---- C:\WINDOWS\SysWOW64\urlmon.dll
2017-03-14 19:54:13 ----A---- C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-03-14 19:54:13 ----A---- C:\WINDOWS\SysWOW64\MapRouter.dll
2017-03-14 19:54:13 ----A---- C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-03-14 19:54:13 ----A---- C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-03-14 19:54:12 ----A---- C:\WINDOWS\SysWOW64\WWAHost.exe
2017-03-14 19:54:12 ----A---- C:\WINDOWS\SysWOW64\wsp_health.dll
2017-03-14 19:54:12 ----A---- C:\WINDOWS\SysWOW64\wsp_fs.dll
2017-03-14 19:54:12 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-03-14 19:54:12 ----A---- C:\WINDOWS\SysWOW64\msctf.dll
2017-03-14 19:54:12 ----A---- C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-03-14 19:54:12 ----A---- C:\WINDOWS\SysWOW64\DWrite.dll
2017-03-14 19:54:12 ----A---- C:\WINDOWS\SysWOW64\AppContracts.dll
2017-03-14 19:54:11 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-03-14 19:54:11 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-03-14 19:54:11 ----A---- C:\WINDOWS\SysWOW64\win32kfull.sys
2017-03-14 19:54:11 ----A---- C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-03-14 19:54:11 ----A---- C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-03-14 19:54:11 ----A---- C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-03-14 19:54:11 ----A---- C:\WINDOWS\SysWOW64\hevcdecoder.dll
2017-03-14 19:54:11 ----A---- C:\WINDOWS\SysWOW64\dxgi.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\msftedit.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\iertutil.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\gdi32full.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\comsvcs.dll
2017-03-14 19:54:10 ----A---- C:\WINDOWS\SysWOW64\clusapi.dll
2017-03-14 19:54:09 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-03-14 19:54:09 ----A---- C:\WINDOWS\SysWOW64\schannel.dll
2017-03-14 19:54:09 ----A---- C:\WINDOWS\SysWOW64\ReAgent.dll
2017-03-14 19:54:09 ----A---- C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2017-03-14 19:54:09 ----A---- C:\WINDOWS\SysWOW64\inetcomm.dll
2017-03-14 19:54:08 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-14 19:54:08 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-03-14 19:54:08 ----A---- C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2017-03-14 19:54:08 ----A---- C:\WINDOWS\SysWOW64\vbscript.dll
2017-03-14 19:54:08 ----A---- C:\WINDOWS\SysWOW64\TextInputFramework.dll
2017-03-14 19:54:08 ----A---- C:\WINDOWS\SysWOW64\mprddm.dll
2017-03-14 19:54:08 ----A---- C:\WINDOWS\SysWOW64\mfsvr.dll
2017-03-14 19:54:08 ----A---- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-03-14 19:54:07 ----A---- C:\WINDOWS\SysWOW64\wpnapps.dll
2017-03-14 19:54:07 ----A---- C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-03-14 19:54:07 ----A---- C:\WINDOWS\SysWOW64\resutils.dll
2017-03-14 19:54:07 ----A---- C:\WINDOWS\SysWOW64\mstscax.dll
2017-03-14 19:54:07 ----A---- C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-03-14 19:54:07 ----A---- C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\wer.dll
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\usercpl.dll
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\twinapi.dll
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\mf.dll
2017-03-14 19:54:06 ----A---- C:\WINDOWS\SysWOW64\authui.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\uReFS.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\quartz.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\dnsapi.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\dhcpcore6.dll
2017-03-14 19:54:05 ----A---- C:\WINDOWS\SysWOW64\atmfd.dll
2017-03-14 19:54:04 ----A---- C:\WINDOWS\SysWOW64\winmde.dll
2017-03-14 19:54:04 ----A---- C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-03-14 19:54:04 ----A---- C:\WINDOWS\SysWOW64\policymanager.dll
2017-03-14 19:54:04 ----A---- C:\WINDOWS\SysWOW64\msxml3.dll
2017-03-14 19:54:04 ----A---- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-03-14 19:54:04 ----A---- C:\WINDOWS\SysWOW64\LockAppHost.exe
2017-03-14 19:54:04 ----A---- C:\WINDOWS\SysWOW64\gameux.dll
2017-03-14 19:54:03 ----A---- C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-03-14 19:54:03 ----A---- C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-03-14 19:54:03 ----A---- C:\WINDOWS\SysWOW64\daxexec.dll
2017-03-14 19:54:03 ----A---- C:\WINDOWS\SysWOW64\cdp.dll
2017-03-14 19:54:03 ----A---- C:\WINDOWS\SysWOW64\AppointmentApis.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\wintrust.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\winhttp.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\PCPTpm12.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\nshwfp.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\mmc.exe
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\mfds.dll
2017-03-14 19:54:02 ----A---- C:\WINDOWS\SysWOW64\LogonController.dll
2017-03-14 19:54:01 ----A---- C:\WINDOWS\SysWOW64\wuapi.dll
2017-03-14 19:54:01 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2017-03-14 19:54:01 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-14 19:54:01 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-14 19:54:01 ----A---- C:\WINDOWS\SysWOW64\SHCore.dll
2017-03-14 19:54:01 ----A---- C:\WINDOWS\SysWOW64\EmailApis.dll
2017-03-14 19:54:01 ----A---- C:\WINDOWS\SysWOW64\CompPkgSup.dll
2017-03-14 19:54:01 ----A---- C:\WINDOWS\SysWOW64\basecsp.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\wlanapi.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\WinTypes.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\mfplat.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-03-14 19:54:00 ----A---- C:\WINDOWS\SysWOW64\AudioSes.dll
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\Windows.Web.dll
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\mstsc.exe
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\InputService.dll
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\gpapi.dll
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\evr.dll
2017-03-14 19:53:59 ----A---- C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2017-03-14 19:53:58 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2017-03-14 19:53:58 ----A---- C:\WINDOWS\SysWOW64\ShareHost.dll
2017-03-14 19:53:58 ----A---- C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-03-14 19:53:58 ----A---- C:\WINDOWS\SysWOW64\netiohlp.dll
2017-03-14 19:53:58 ----A---- C:\WINDOWS\SysWOW64\mssph.dll
2017-03-14 19:53:58 ----A---- C:\WINDOWS\SysWOW64\MFPlay.dll
2017-03-14 19:53:58 ----A---- C:\WINDOWS\SysWOW64\input.dll
2017-03-14 19:53:58 ----A---- C:\WINDOWS\SysWOW64\efswrt.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\wsp_sr.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\rasgcw.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\mssvp.dll
2017-03-14 19:53:57 ----A---- C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\netiougc.exe
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\MCCSEngineShared.dll
2017-03-14 19:53:56 ----A---- C:\WINDOWS\SysWOW64\imapi2fs.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\thumbcache.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\scksp.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\icm32.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2017-03-14 19:53:55 ----A---- C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\wlidprov.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\WinRtTracing.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\mssphtb.dll
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-03-14 19:53:54 ----A---- C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\wfdprov.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\PrintDialogs.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\Pimstore.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\oleacc.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\netshell.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\mscms.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\ChatApis.dll
2017-03-14 19:53:53 ----A---- C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\usoapi.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\sud.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\SettingSync.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\mtxclu.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\msutb.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\ExSMime.dll
2017-03-14 19:53:52 ----A---- C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\wlanui.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\TSWorkspace.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\themecpl.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\msdtcuiu.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\azroleui.dll
2017-03-14 19:53:51 ----A---- C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\regedit.exe
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\RADCUI.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\MSPhotography.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\ErrorDetails.dll
2017-03-14 19:53:50 ----A---- C:\WINDOWS\SysWOW64\DisplayManager.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\WwaApi.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\wcnwiz.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\vssapi.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\Unistore.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\tcpipcfg.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\StructuredQuery.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\puiobj.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\ProximityCommon.dll
2017-03-14 19:53:49 ----A---- C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\vaultcli.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\puiapi.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\mscandui.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\findnetprinters.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\deviceaccess.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\cemapi.dll
2017-03-14 19:53:48 ----A---- C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\XInputUap.dll
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\tbauth.dll
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\olepro32.dll
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\mssitlb.dll
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\mspaint.exe
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\dmenrollengine.dll
2017-03-14 19:53:47 ----A---- C:\WINDOWS\SysWOW64\accountaccessor.dll
2017-03-14 19:53:46 ----A---- C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2017-03-14 19:53:46 ----A---- C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-03-14 19:53:46 ----A---- C:\WINDOWS\SysWOW64\ContactApis.dll
2017-03-14 19:53:46 ----A---- C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2017-03-14 19:53:46 ----A---- C:\WINDOWS\SysWOW64\AuthBroker.dll
2017-03-14 19:53:46 ----A---- C:\WINDOWS\SysWOW64\aadtb.dll
2017-03-14 19:53:45 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 19:53:45 ----A---- C:\WINDOWS\SysWOW64\tapi32.dll
2017-03-14 19:53:45 ----A---- C:\WINDOWS\SysWOW64\odbcconf.dll
2017-03-14 19:53:45 ----A---- C:\WINDOWS\SysWOW64\msctfui.dll
2017-03-14 19:53:45 ----A---- C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-03-14 19:53:45 ----A---- C:\WINDOWS\SysWOW64\apprepsync.dll
2017-03-14 19:53:45 ----A---- C:\WINDOWS\SysWOW64\apprepapi.dll
2017-03-14 19:53:44 ----A---- C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-14 19:53:44 ----A---- C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-14 19:53:44 ----A---- C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2017-03-14 19:53:44 ----A---- C:\WINDOWS\SysWOW64\msctfp.dll
2017-03-14 19:53:44 ----A---- C:\WINDOWS\SysWOW64\fontext.dll
2017-03-14 19:53:44 ----A---- C:\WINDOWS\SysWOW64\ddrawex.dll
2017-03-14 19:53:43 ----A---- C:\WINDOWS\SysWOW64\VCardParser.dll
2017-03-14 19:53:43 ----A---- C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-03-14 19:53:43 ----A---- C:\WINDOWS\SysWOW64\hgcpl.dll
2017-03-14 19:53:43 ----A---- C:\WINDOWS\SysWOW64\GamePanelExternalHook.dll
2017-03-14 19:53:43 ----A---- C:\WINDOWS\SysWOW64\ddraw.dll
2017-03-14 19:53:43 ----A---- C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-03-14 19:53:38 ----A---- C:\WINDOWS\SysWOW64\xpsrchvw.exe
2017-03-14 19:53:37 ----A---- C:\WINDOWS\SysWOW64\wmpmde.dll
2017-03-14 19:53:28 ----A---- C:\WINDOWS\SysWOW64\WebcamUi.dll
2017-03-14 19:53:27 ----A---- C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2017-03-14 19:53:23 ----A---- C:\WINDOWS\SysWOW64\wmp.dll
2017-03-14 19:53:09 ----A---- C:\WINDOWS\SysWOW64\KernelBase.dll
2017-03-14 19:52:52 ----A---- C:\WINDOWS\SysWOW64\Wpc.dll
2017-03-14 19:52:03 ----A---- C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-14 19:52:01 ----A---- C:\WINDOWS\SysWOW64\edgehtml.dll
2017-03-14 19:51:58 ----A---- C:\WINDOWS\SysWOW64\mshtml.dll
2017-03-14 19:51:55 ----A---- C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-14 19:51:50 ----A---- C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-14 19:51:44 ----A---- C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-03-14 19:51:41 ----A---- C:\WINDOWS\HelpPane.exe
2017-03-14 19:51:22 ----A---- C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2017-03-14 19:51:21 ----A---- C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-03-14 19:51:18 ----A---- C:\WINDOWS\SysWOW64\jscript9diag.dll
2017-03-14 19:51:18 ----A---- C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-03-14 19:50:59 ----A---- C:\WINDOWS\SysWOW64\aepic.dll
2017-03-14 19:50:58 ----A---- C:\WINDOWS\explorer.exe
2017-03-14 19:50:48 ----A---- C:\WINDOWS\SysWOW64\UIRibbon.dll
2017-03-14 19:50:38 ----A---- C:\WINDOWS\regedit.exe
2017-03-14 19:50:32 ----A---- C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-03-14 19:50:02 ----A---- C:\WINDOWS\SysWOW64\OneDriveSetup.exe
2017-03-05 12:44:49 ----D---- C:\Users\E707\AppData\Roaming\NuGet
2017-02-21 11:12:39 ----A---- C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvopencl.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\NvIFR.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\NvFBC.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-02-21 11:09:56 ----A---- C:\WINDOWS\SysWOW64\nvcuda.dll
2017-02-21 11:09:54 ----A---- C:\WINDOWS\SysWOW64\nvcompiler.dll

======List of files/folders modified in the last 1 month======

2017-03-20 18:16:07 ----RD---- C:\Program Files (x86)
2017-03-20 18:15:33 ----D---- C:\WINDOWS\Prefetch
2017-03-20 18:14:03 ----D---- C:\WINDOWS\Temp
2017-03-20 18:10:42 ----D---- C:\WINDOWS\WinSxS
2017-03-20 18:10:41 ----D---- C:\WINDOWS\CbsTemp
2017-03-20 18:10:35 ----SHD---- C:\System Volume Information
2017-03-20 18:10:01 ----D---- C:\WINDOWS\Logs
2017-03-20 18:07:14 ----D---- C:\ProgramData\NVIDIA
2017-03-20 18:07:04 ----D---- C:\WINDOWS\SoftwareDistribution
2017-03-20 18:07:01 ----D---- C:\Windows
2017-03-19 16:55:57 ----D---- C:\Users\E707\AppData\Roaming\MPC-HC
2017-03-19 16:55:57 ----D---- C:\Program Files (x86)\Steam
2017-03-19 16:55:45 ----D---- C:\WINDOWS\INF
2017-03-19 16:55:44 ----D---- C:\WINDOWS\debug
2017-03-19 16:52:43 ----D---- C:\WINDOWS\LiveKernelReports
2017-03-19 15:16:51 ----RD---- C:\WINDOWS\Microsoft.NET
2017-03-19 14:42:19 ----D---- C:\WINDOWS\rescache
2017-03-19 13:25:05 ----RSD---- C:\WINDOWS\assembly
2017-03-19 12:27:45 ----D---- C:\WINDOWS\AppReadiness
2017-03-19 12:26:36 ----SHDC---- C:\WINDOWS\Installer
2017-03-19 12:26:35 ----D---- C:\ProgramData\Skype
2017-03-19 12:26:29 ----D---- C:\Program Files (x86)\Common Files
2017-03-19 12:25:57 ----D---- C:\ProgramData\Package Cache
2017-03-19 12:25:03 ----D---- C:\WINDOWS\SysWOW64
2017-03-19 12:17:35 ----D---- C:\WINDOWS\System32
2017-03-19 12:12:42 ----HD---- C:\ProgramData
2017-03-19 12:06:35 ----RD---- C:\Users
2017-03-16 22:15:23 ----SD---- C:\WINDOWS\SysWOW64\F12
2017-03-16 22:15:23 ----D---- C:\WINDOWS\SysWOW64\sr-Latn-CS
2017-03-16 22:15:23 ----D---- C:\WINDOWS\SysWOW64\setup
2017-03-16 22:15:23 ----D---- C:\WINDOWS\SysWOW64\migration
2017-03-16 22:15:23 ----D---- C:\WINDOWS\SysWOW64\en-US
2017-03-16 22:15:23 ----D---- C:\WINDOWS\SysWOW64\cs-CZ
2017-03-16 22:15:06 ----RD---- C:\WINDOWS\PrintDialog
2017-03-16 22:15:06 ----D---- C:\WINDOWS\ShellExperiences
2017-03-16 22:15:05 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-03-16 22:15:05 ----D---- C:\WINDOWS\bcastdvr
2017-03-16 22:15:05 ----D---- C:\WINDOWS\AppPatch
2017-03-16 22:15:05 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-03-16 22:15:05 ----D---- C:\Program Files (x86)\Windows Mail
2017-03-16 22:15:05 ----D---- C:\Program Files (x86)\Windows Defender
2017-03-16 22:15:05 ----D---- C:\Program Files (x86)\Internet Explorer
2017-03-16 21:01:12 ----D---- C:\ProgramData\Microsoft Help
2017-03-15 18:09:51 ----D---- C:\ProgramData\Spyware Terminator
2017-03-15 18:09:51 ----AD---- C:\Program Files (x86)\Spyware Terminator
2017-03-10 07:17:56 ----A---- C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-03-10 07:10:59 ----D---- C:\Users\E707\AppData\Roaming\Dropbox
2017-03-09 21:59:01 ----SD---- C:\Users\E707\AppData\Roaming\Microsoft
2017-03-09 21:08:06 ----D---- C:\ProgramData\NVIDIA Corporation
2017-03-09 21:07:46 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-03-05 13:25:40 ----D---- C:\Users\E707\AppData\Roaming\KeePass
2017-03-04 09:09:22 ----A---- C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-03-03 08:21:11 ----AD---- C:\Program Files (x86)\Opera
2017-02-23 20:35:21 ----A---- C:\WINDOWS\SysWOW64\nvspcap.dll
2017-02-23 20:35:21 ----A---- C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-02-23 16:32:00 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2017-02-23 16:30:51 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-02-23 10:45:49 ----D---- C:\MSI
2017-02-21 11:12:32 ----D---- C:\Program Files (x86)\VulkanRT

File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys []
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys []
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys []
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys []
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys []
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys []
R1 AsIO;AsIO; SysWow64\drivers\AsIO.sys []
R1 AsUpIO;AsUpIO; SysWow64\drivers\AsUpIO.sys []
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys []
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys []
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys []
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys []
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys []
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys []
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys []
R2 sp_rsdrv2;Spyware Terminator Driver Filter; C:\WINDOWS\system32\DRIVERS\stflt.sys []
R3 BCM43XX;@oem1.inf,%BCM43XX_Service_DispName%;Ovladač síťového adaptéru ASUS 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl664.sys []
R3 dtlitescsibus;@oem18.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys []
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys []
R3 MTsensor;@oem11.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys []
R3 NVHDA;@oem54.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys []
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_0cc477a6fec64d8c\nvlddmkm.sys [2017-02-10 14516664]
R3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-02-23 27584]
R3 nvvad_WaveExtensible;@oem50.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys []
R3 nvvhci;@oem52.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys []
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys []
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys []
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys []
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys []
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys []
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys []
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys []
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys []
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys []
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys []
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys []
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys []
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys []
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys []
S3 PcaSp60;@oem47.inf,%PCASP60_Desc%;Rawether NDIS 6.X SPR Protocol Driver; C:\WINDOWS\system32\DRIVERS\PcaSp60.sys [2010-09-07 38912]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2015-05-27 13536]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-08-19 90112]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-03-19 262736]
R2 CDPUserSvc_19bc3f1;CDPUserSvc_19bc3f1; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
R2 GamingApp_Service;GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [2014-03-13 20512]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe []
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23 462784]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-02-10 462784]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-02-23 425408]
R2 OneSyncSvc_19bc3f1;Hostitel synchronizace_19bc3f1; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
R2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-02-11 2184208]
R2 ST2012_Svc;Spyware Terminator 2015 Realtime Shield Service; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [2017-03-15 3292416]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-03-19 7147320]
R3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23 462784]
R3 PimIndexMaintenanceSvc_19bc3f1;Data kontaktů_19bc3f1; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-27 317400]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1268568]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 38792]
S3 GalaxyClientService;GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [2016-12-20 284224]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2016-12-20 6625856]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2013-01-02 171632]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
S3 MessagingService_19bc3f1;Služba zasílání zpráv_19bc3f1; C:\WINDOWS\system32\svchost.exe [2016-07-16 38792]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2017-02-11 2122248]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 38792]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-01-19 1464096]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 38792]

-----------------EOF-----------------

Zdravím, nejprve odinstaluj Spyware Terminator.


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.


Spusť skener Cure It podle TOHOTO návodu

po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.

(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)

tady je report z Adwcleaner

# AdwCleaner v6.044 - Log vytvořen 21/03/2017 v 07:43:49
# Aktualizováno dne 28/02/2017 z Malwarebytes
# Databáze : 2017-03-20.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : E707 - E707-PC
# Spuštěno z : C:\Users\E707\Downloads\adwcleaner_6.044.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****



***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****

[-] Klíč smazán: HKU\S-1-5-21-1970623136-699288781-1442233091-1000\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: [x64] HKCU\Software\PRODUCTSETUP


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1006 Bajty] - [21/03/2017 07:43:49]
C:\AdwCleaner\AdwCleaner[S0].txt - [1489 Bajty] - [21/03/2017 07:42:52]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1152 Bajty] ##########

A tady z CureIt

Total 16165841825 bytes in 51878 files scanned (66683 objects)
Total 51938 files (66650 objects) are clean
There are no infected objects detected
Total 33 files are raised error condition
Scan time is 00:08:25.941

Bezva uklizeno, vykazuje PC nějaké nestandardní chování ?

Zatím jsem neměl čas to pořádně vyzkoušet, ale podle toho mála co jsem tam byl jede normálně. Někdo mi hacknul mail tak jsem jen chtěl mít jistotu, že tam není nějaký sajrajt. Děkuji moc za pomoc. Zdravím

E707 píše:Zatím jsem neměl čas to pořádně vyzkoušet......

Tak mu dej ještě nějaký den a pak písni než to tu zamknu.

Zatím vše ok, myslím, že to můžeme zamknout. díky moc

E707 píše:díky moc

Není zač a