Dobrý den, prosím o pomoc po startu mi samo vyskočí okno http://gamereleasedate.info/spage.html
zasílám log je dlouhý tak na dvakrát díky jasina
Logfile of random's system information tool 1.16 (written by random/random)
Run by Tom at 2017-04-28 07:09:42
Microsoft Windows 10 Home
System drive C: has 82 GB (18%) free of 457 GB
Total RAM: 7128 MB (68% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:09:44, on 28. 4. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\trend micro\Tom_RSITx64.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
O4 - HKLM\..\Run: [windows] wscript.exe //B "C:\Users\Tom\AppData\Local\Temp\windows.vbs"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
O4 - HKLM\..\Run: [PlaysTV] "C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe" --startup
O4 - HKLM\..\Run: [Raptr] "C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe" --startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Lync] "C:\Program Files\Microsoft Office\Office15\lync.exe" /fromrunkey
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Tom\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [windows] wscript.exe //B "C:\Users\Tom\AppData\Local\Temp\windows.vbs"
O4 - HKCU\..\Run: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h
O4 - HKCU\..\Run: [Tom] explorer.exe http://kb-ribaki.org
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Odeslat do OneNote.lnk = C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: WinToFlash Suggestor - {A52C66B3-D4A9-4d10-A67D-2BEF0A85AB3F} - (no file)
O9 - Extra 'Tools' menuitem: WinToFlash Suggestor options - {A52C66B3-D4A9-4d10-A67D-2BEF0A85AB3F} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: LUService - Lenovo(beijing) Limited - C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo PhoneCompanionPusher Service (PhoneCompanionPusher) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
O23 - Service: Lenovo PhoneCompanionVap Service (PhoneCompanionVap) - Lenovo - C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: tbaseprovisioning - Advanced Micro Devices, Inc. - C:\WINDOWS\SysWOW64\tbaseprovisioning.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10838 bytes
====== Enumerating Processes ======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-33d78256-747b-4ec8-bfe3-70a9bc627eb4 -SystemEventPortName:HostProcess-bdb872c4-4186-4a4f-bda1-d4c0aaa4f9e2 -IoCancelEventPortName:HostProcess-c0f07e73-d68a-44d4-9057-dcb32d5e848a -NonStateChangingEventPortName:HostProcess-bc977cc3-1b94-4eec-9a02-b59db587e43e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9149b526-7aa7-45a0-810c-380090fac801 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\SysWOW64\tbaseprovisioning.exe
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\atieclxx.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\WLANExt.exe 2554254048976
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
C:\windows\system32\CxAudMsg64.exe
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Elantech\ETDCtrl.exe"
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\taskhostw.exe
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2652
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\AMD Quick Stream\AMDQuickStream.exe" -h
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe"
C:\Program Files (x86)\Lenovo\Lenovo Updates\LU.exe
"C:\WINDOWS\system32\notepad.exe"
C:\WINDOWS\system32\AUDIODG.EXE 0x2a4
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Tom\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
====== Scheduled tasks folder ======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\AMD Updater - "C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe" /AUTOUPDATEIN
C:\WINDOWS\system32\tasks\AVG EUpdate Task - avgsetupx.exe /eu
C:\WINDOWS\system32\tasks\AVGPCTuneUp_Task_BkGndMaintenance - C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe $(Arg0)
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Java Update Scheduler - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\tasks\klcp_update - "C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe" /verysilent /update /freq=30
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\Opera scheduled Autoupdate 1479458424 - C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\PDVDServ Task - C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\WINDOWS\system32\tasks\Tom - cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Tom /t REG_SZ /d "explorer.exe http://kb-ribaki.org"
C:\WINDOWS\system32\tasks\TuneUpUtilities_Task_BkGndMaintenance2013 - C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe $(Arg0)
C:\WINDOWS\system32\tasks\{8928F8A5-CB89-426F-AD82-09D502875FC2} - C:\WINDOWS\system32\pcalua.exe -a I:\MafiaLauncher.exe -d I:\
C:\WINDOWS\system32\tasks\{A9378A21-EB10-4E42-AAF6-66E261CD6702} - C:\windows\system32\pcalua.exe -a "F:\Gta san Andreas\Programy a CZ\gtasa120cz.exe" -d "F:\Gta san Andreas\Programy a CZ"
C:\WINDOWS\system32\tasks\{CEBA43FB-7200-4D12-AD68-93862541946E} - C:\WINDOWS\system32\pcalua.exe -a C:\Users\Tom\Downloads\gtasa120cz\gtasa120cz.exe -d C:\Users\Tom\Downloads\gtasa120cz
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - C:\windows\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemovalTools\MRT_HB - C:\WINDOWS\system32\MRT.exe /EHB /Q
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office 15 Subscription Heartbeat - %ProgramFiles%\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack - "C:\Program Files\Microsoft Office\Office15\msoia.exe" scan upload mininterval:2880
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn - "C:\Program Files\Microsoft Office\Office15\msoia.exe" scan upload
C:\WINDOWS\system32\tasks\Lenovo\Dependency Package Auto Update - C:\Program Files\Lenovo\iMController\AutoUpdate.exe
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program 64 - "%ProgramFiles(x86)%\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe"
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program 64 35 - "%ProgramFiles(x86)%\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe"
C:\WINDOWS\system32\tasks\Abelssoft\StartBackgroundguardWithWindows - C:\Program Files (x86)\CheckDrive\CheckDrive.exe -backgroundGuard
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosím o kontrolu logu
tady je zbytek co se tam nevešel, dík jasina
=========Mozilla firefox=========
ProfilePath - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.194 Plugin
"Path"=C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.194 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\
{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\addons.json
Personas Plus - extension - personas@christopher.beard
Forecastfox Weather - extension - {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
FlashGot Mass Downloader - extension - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d}
Download Flash and Video - extension - {bee6eb20-01e0-ebd1-da83-080329fb9a3a}
Mozilla Firefox hotfix - extension - firefox-hotfix@mozilla.org
C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions.json
Forecastfox - extension - {0538E3E3-7E9B-4d49-8831-A227C80A7AD3} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FlashGot - extension - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
Personas Plus - extension - personas@christopher.beard - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\personas@christopher.beard.xpi
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Flash and Video Download - extension - {bee6eb20-01e0-ebd1-da83-080329fb9a3a} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\pluginreg.dat
Plugin - Shockwave Flash - 24.0.0.194 - C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll
=========Google Chrome=========
C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension felcaaldnbdncclmgdcncolpebgiejap
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={29524A52-BF00-4CBA-A2FC-75D56D1D9E76}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{29524A52-BF00-4CBA-A2FC-75D56D1D9E76}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={67C334C0-408D-4E6D-B5A7-0ADD6AFFA252}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{67C334C0-408D-4E6D-B5A7-0ADD6AFFA252}]
"URL"=http://www.google.com/search?q={searchT ... utEncoding?}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-03-14 229064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-02 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2017-02-23 2351920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-02 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-03-14 163528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2017-02-23 1743664]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCN"=C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [2016-12-16 8029064]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2016-08-15 3805928]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2014-11-05 836592]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-11-05 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-11-05 10842096]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2015-07-08 5595848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Lync"=C:\Program Files\Microsoft Office\Office15\lync.exe [2017-03-14 28084424]
"uTorrent"=C:\Users\Tom\AppData\Roaming\uTorrent\uTorrent.exe [2017-03-15 2147520]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-12-23 833240]
"windows"=wscript.exe //B C:\Users\Tom\AppData\Local\Temp\windows.vbs []
"AppEx Accelerator UI"=C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [2015-04-06 488640]
"Tom"=explorer.exe http://kb-ribaki.org []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-21 767176]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2016-12-06 240400]
"windows"=wscript.exe //B C:\Users\Tom\AppData\Local\Temp\windows.vbs []
"PWRISOVM.EXE"=C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2016-02-10 418952]
"PlaysTV"=C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [2017-02-10 51928]
"Raptr"=C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [2016-09-29 58584]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Odeslat do OneNote.lnk - C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\codectweaktool.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\databasecompare.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gdsmux.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\graphstudionext.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\graphstudionext64.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\groove.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\infopath.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\lync.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\madhcctrl.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mediainfo.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mpc-hc64.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoev.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msotd.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoxmled.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ocpubmgr.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenote.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenotem.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outlook.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdvdlaunchpolicy.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\playstv_launcher.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2go.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2goexpress.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\poweriso.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pwrisovm.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\raptrstub.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spreadsheetcompare.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninstall.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winword.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zps.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-04-28 06:56:02 ----D---- C:\rsit
2017-04-28 06:56:02 ----D---- C:\Program Files\trend micro
2017-04-28 06:19:33 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2017-04-28 06:19:30 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2017-04-28 06:19:02 ----D---- C:\Program Files\Malwarebytes
2017-04-28 06:18:46 ----D---- C:\ProgramData\Malwarebytes
2017-04-27 23:34:12 ----SHD---- C:\Config.Msi
2017-04-27 18:07:20 ----D---- C:\ProgramData\BitDefender
2017-04-27 13:15:35 ----D---- C:\Program Files\Common Files\adaware
2017-04-27 10:14:35 ----D---- C:\Program Files (x86)\Spyware Terminator
2017-04-27 09:49:34 ----A---- C:\WINDOWS\SYSWOW64\subinacl.exe
2017-04-27 09:49:22 ----D---- C:\Program Files\Common Files\Microsoft
2017-04-27 09:49:22 ----D---- C:\Program Files\Adware-Removal-Tool
2017-04-25 13:11:07 ----D---- C:\AMD
2017-04-22 17:18:41 ----D---- C:\Users\Tom\AppData\Roaming\Kodi
2017-04-22 17:15:25 ----D---- C:\Program Files (x86)\Kodi
2017-04-21 12:37:18 ----D---- C:\Users\Tom\AppData\Roaming\MyPhoneExplorer
2017-04-21 12:37:06 ----D---- C:\Program Files (x86)\MyPhoneExplorer
2017-04-15 09:01:56 ----D---- C:\WINDOWS\Panther
2017-04-14 08:48:24 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-04-13 10:06:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-13 10:06:35 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-04-13 10:06:34 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-04-13 10:06:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-04-13 10:06:33 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-04-13 10:06:32 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-04-13 10:06:32 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-04-13 10:06:32 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-04-13 10:06:29 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-04-13 10:06:29 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-04-13 10:06:29 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-04-13 10:06:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-04-13 10:06:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-04-13 10:06:27 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-04-13 10:06:27 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\ipsecsnp.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\apds.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\sbe.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\ipsmsnap.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\system32\drivers\BasicDisplay.sys
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2017-04-13 10:06:08 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-04-13 10:06:06 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-04-13 10:06:06 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-04-13 10:06:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-04-13 10:06:02 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-13 10:06:01 ----A---- C:\WINDOWS\system32\shell32.dll
2017-04-13 10:05:59 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-04-13 10:05:58 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-04-13 10:05:57 ----A---- C:\WINDOWS\system32\mos.dll
2017-04-13 10:05:56 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-04-13 10:05:56 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-04-13 10:05:55 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-04-13 10:05:55 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-04-13 10:05:55 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-04-13 10:05:54 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-04-13 10:05:54 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-04-13 10:05:54 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-04-13 10:05:53 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-04-13 10:05:53 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-04-13 10:05:53 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-04-13 10:05:52 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-04-13 10:05:52 ----A---- C:\WINDOWS\system32\usocore.dll
2017-04-13 10:05:52 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\LsaIso.exe
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2017-04-13 10:05:38 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-04-13 10:05:38 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\localspl.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-04-13 10:05:36 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2017-04-13 10:05:35 ----A---- C:\WINDOWS\system32\wpninprc.dll
2017-04-13 10:05:35 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-04-13 10:05:35 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-04-13 10:05:35 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-04-13 10:05:34 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-04-13 10:05:31 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-04-13 10:05:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-04-13 10:05:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-04-13 10:05:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-04-13 10:05:27 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-04-13 10:05:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-04-13 10:05:24 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-13 10:05:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-04-13 10:05:23 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-04-13 10:05:22 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-04-13 10:05:22 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\quartz.dll
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\ole32.dll
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\system32\wininet.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\HelpPane.exe
2017-04-13 10:05:19 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-04-13 10:05:19 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-04-13 10:05:19 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-04-13 10:05:19 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-04-13 10:05:18 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-04-13 10:05:18 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-04-13 10:05:17 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-04-13 10:05:17 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-04-13 10:05:16 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-04-13 10:05:16 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-04-13 10:05:16 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-04-13 10:05:16 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-04-13 10:05:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-04-13 10:05:14 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-04-13 10:05:14 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\dafpos.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\FontProvider.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\DdcWnsListener.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2017-04-13 10:05:02 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-04-13 10:05:01 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-04-13 10:05:01 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-04-13 10:05:01 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-04-13 10:05:00 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-04-13 10:05:00 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-04-13 10:04:59 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-04-13 10:04:57 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-04-13 10:04:57 ----A---- C:\WINDOWS\system32\twinui.dll
2017-04-13 10:04:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-04-13 10:04:56 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\sbe.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\qedit.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\wer.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-04-13 10:04:51 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-04-13 10:04:51 ----A---- C:\WINDOWS\system32\invagent.dll
2017-04-13 10:04:51 ----A---- C:\WINDOWS\system32\devinv.dll
2017-04-13 10:04:51 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\psmsrv.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-04-13 10:04:48 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-04-13 10:04:48 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\cdp.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\atmlib.dll
====== List of files/folders modified in the last 1 month ======
2017-04-28 07:06:03 ----D---- C:\WINDOWS\Prefetch
2017-04-28 06:56:02 ----RD---- C:\Program Files
2017-04-28 06:55:20 ----D---- C:\WINDOWS\Temp
2017-04-28 06:53:20 ----D---- C:\WINDOWS\System32
2017-04-28 06:53:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-28 06:48:33 ----D---- C:\WINDOWS\system32\sru
2017-04-28 06:34:15 ----AD---- C:\ProgramData\Temp
2017-04-28 06:29:49 ----D---- C:\WINDOWS\system32\drivers
2017-04-28 06:18:46 ----HD---- C:\ProgramData
2017-04-28 06:18:46 ----D---- C:\WINDOWS\system32\drivers\etc
2017-04-28 06:05:53 ----D---- C:\WINDOWS\system32\config
2017-04-28 06:01:11 ----D---- C:\WINDOWS\AppReadiness
2017-04-28 06:01:10 ----HD---- C:\Program Files\WindowsApps
2017-04-28 05:45:57 ----D---- C:\WINDOWS\system32\SleepStudy
2017-04-28 04:40:10 ----SHD---- C:\System Volume Information
2017-04-28 01:31:22 ----D---- C:\WINDOWS\system32\Tasks
2017-04-28 01:31:22 ----D---- C:\WINDOWS\AutoKMS
2017-04-28 01:29:29 ----D---- C:\Windows
2017-04-28 00:22:40 ----AD---- C:\Program Files (x86)\LEGO Marvel Super Heroes.v 1.0.0.48513 + 2 DLC
2017-04-27 23:34:15 ----SHD---- C:\WINDOWS\Installer
2017-04-27 18:03:01 ----AD---- C:\Users\Tom\AppData\Roaming\.minecraft
2017-04-27 17:42:30 ----RD---- C:\WINDOWS\Microsoft.NET
2017-04-27 13:15:35 ----D---- C:\Program Files\Common Files
2017-04-27 10:14:35 ----RD---- C:\Program Files (x86)
2017-04-27 09:49:34 ----D---- C:\WINDOWS\SysWOW64
2017-04-27 09:46:27 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-04-27 09:45:16 ----D---- C:\AdwCleaner
2017-04-27 07:53:29 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-04-23 22:23:46 ----D---- C:\Users\Tom\AppData\Roaming\vlc
2017-04-22 19:23:39 ----D---- C:\WINDOWS\INF
2017-04-22 10:28:23 ----D---- C:\WINDOWS\CbsTemp
2017-04-22 10:28:18 ----D---- C:\WINDOWS\system32\appraiser
2017-04-22 10:28:14 ----D---- C:\WINDOWS\system32\catroot2
2017-04-22 10:26:38 ----D---- C:\WINDOWS\WinSxS
2017-04-21 16:29:21 ----AD---- C:\Program Files (x86)\Opera
2017-04-21 12:37:11 ----D---- C:\Program Files (x86)\Common Files
2017-04-21 09:15:46 ----D---- C:\WINDOWS\system32\DriverStore
2017-04-21 08:12:03 ----RSD---- C:\WINDOWS\assembly
2017-04-14 22:45:12 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-04-14 22:45:12 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-04-14 22:45:12 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-04-14 22:45:12 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-04-14 22:45:12 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-04-14 22:45:08 ----D---- C:\WINDOWS\system32\wbem
2017-04-14 22:45:08 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-04-14 22:45:07 ----SD---- C:\WINDOWS\system32\F12
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\setup
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\migration
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\en-US
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\Dism
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\cs-CZ
2017-04-14 22:45:03 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-04-14 22:45:03 ----RD---- C:\Program Files\Windows Defender
2017-04-14 22:45:03 ----D---- C:\WINDOWS\ShellExperiences
2017-04-14 22:45:03 ----D---- C:\WINDOWS\Provisioning
2017-04-14 22:45:03 ----D---- C:\Program Files\Windows Photo Viewer
2017-04-14 22:45:03 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-04-14 22:45:03 ----D---- C:\Program Files (x86)\Windows Defender
2017-04-14 21:13:25 ----D---- C:\ProgramData\Microsoft Help
2017-04-14 21:13:20 ----D---- C:\WINDOWS\system32\MRT
2017-04-14 21:08:14 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-04-14 21:02:55 ----AD---- C:\Program Files\Microsoft Silverlight
2017-04-14 21:02:55 ----AD---- C:\Program Files (x86)\Microsoft Silverlight
2017-04-14 20:38:49 ----A---- C:\WINDOWS\win.ini
2017-04-14 19:52:26 ----D---- C:\hry
2017-04-14 19:28:50 ----D---- C:\Users\Tom\AppData\Roaming\Warner Bros. Interactive Entertainment
2017-04-01 20:52:38 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-04-01 14:19:35 ----AD---- C:\Program Files\AMD
2017-04-01 11:52:09 ----D---- C:\ProgramData\AMD
2017-03-29 19:35:23 ----D---- C:\WINDOWS\system32\CatRoot
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2014-03-21 81608]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2014-03-21 23752]
R0 amdkmpfd;@oem30.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-06-04 73976]
R0 amdpsp;@oem95.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [2016-08-23 254864]
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-07-14 251632]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-07-14 72400]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-03-10 246000]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-03-10 169792]
R1 EpfwLWF;@oem88.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-07-14 53360]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2007-11-07 104912]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2016-02-10 137280]
R2 APXACC;@oem25.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2015-04-03 229056]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-03-10 222280]
R3 ACPIVPC;@oem48.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-11-05 35576]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0309839.inf_amd64_168acb088d48fafb\atikmdag.sys [2016-12-23 26587656]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0309839.inf_amd64_168acb088d48fafb\atikmpag.sys [2016-12-23 527256]
R3 AtiHDAudioService;@oem94.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-07-24 101376]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-27 84992]
R3 CnxtHdAudService;@oem69.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-05-19 1543912]
R3 ETD;@oem92.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2016-08-15 594008]
R3 rt640x64;@oem42.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-22 886528]
R3 RtkBtFilter;@oem33.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2015-12-05 593624]
R3 RTSUER;@oem70.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-03 410880]
R3 RTWlanE;@oem97.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane.sys [2016-11-11 6382080]
R3 SNP2UVC;@oem21.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2015-12-05 3481696]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2016-02-15 32304]
S0 amdkmafd;@oem22.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2016-08-18 49448]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 amdkmcsp;@oem95.inf,%amdkmcsp.SVCDESC%;AMD Kernel Mode CSP Service; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [2016-08-23 100752]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-09-27 114176]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-11-11 967168]
S3 ew_usbccgpfilter;@oem105.inf,%busupper.SVCDESC%;HwHandSet_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [2016-11-25 18816]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-27 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2017-04-28 251848]
S3 MBAMWebProtection;MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys []
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2016-12-23 295832]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-12-06 1146128]
R2 CDPUserSvc_3ea56;CDPUserSvc_3ea56; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2013-07-26 206552]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2015-07-08 1353720]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2016-08-15 134888]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-11-05 198192]
R2 LUService;LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [2014-04-21 37624]
R2 OneSyncSvc_3ea56;Hostitel synchronizace_3ea56; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2014-11-05 288240]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-25 390632]
R2 tbaseprovisioning;tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [2016-08-23 51224]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2017-02-21 5906704]
R3 PimIndexMaintenanceSvc_3ea56;Data kontaktů_3ea56; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-06-03 533760]
S3 MessagingService_3ea56;Služba zasílání zpráv_3ea56; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2014-11-05 308720]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-04-27 173512]
S4 PlaysService;Plays.tv Update Service (PlaysService); C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [2017-02-10 55000]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
=========Mozilla firefox=========
ProfilePath - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.194 Plugin
"Path"=C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.194 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\
{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\addons.json
Personas Plus - extension - personas@christopher.beard
Forecastfox Weather - extension - {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
FlashGot Mass Downloader - extension - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d}
Download Flash and Video - extension - {bee6eb20-01e0-ebd1-da83-080329fb9a3a}
Mozilla Firefox hotfix - extension - firefox-hotfix@mozilla.org
C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions.json
Forecastfox - extension - {0538E3E3-7E9B-4d49-8831-A227C80A7AD3} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
Adblock Plus - extension - {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FlashGot - extension - {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
Personas Plus - extension - personas@christopher.beard - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\personas@christopher.beard.xpi
Video DownloadHelper - extension - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Flash and Video Download - extension - {bee6eb20-01e0-ebd1-da83-080329fb9a3a} - C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
C:\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\e1dr2vdh.default\pluginreg.dat
Plugin - Shockwave Flash - 24.0.0.194 - C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll
=========Google Chrome=========
C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension felcaaldnbdncclmgdcncolpebgiejap
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Tom\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
======Registry dump ======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={29524A52-BF00-4CBA-A2FC-75D56D1D9E76}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{29524A52-BF00-4CBA-A2FC-75D56D1D9E76}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={67C334C0-408D-4E6D-B5A7-0ADD6AFFA252}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{67C334C0-408D-4E6D-B5A7-0ADD6AFFA252}]
"URL"=http://www.google.com/search?q={searchT ... utEncoding?}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-03-14 229064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-02 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~2\Office15\GROOVEEX.DLL [2017-02-23 2351920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-02 234560]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-03-14 163528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2017-02-23 1743664]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCN"=C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [2016-12-16 8029064]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2016-08-15 3805928]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2014-11-05 836592]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2014-11-05 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2014-11-05 10842096]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2015-07-08 5595848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Lync"=C:\Program Files\Microsoft Office\Office15\lync.exe [2017-03-14 28084424]
"uTorrent"=C:\Users\Tom\AppData\Roaming\uTorrent\uTorrent.exe [2017-03-15 2147520]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2014-12-23 833240]
"windows"=wscript.exe //B C:\Users\Tom\AppData\Local\Temp\windows.vbs []
"AppEx Accelerator UI"=C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [2015-04-06 488640]
"Tom"=explorer.exe http://kb-ribaki.org []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-21 767176]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2011-12-07 214312]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2016-12-06 240400]
"windows"=wscript.exe //B C:\Users\Tom\AppData\Local\Temp\windows.vbs []
"PWRISOVM.EXE"=C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2016-02-10 418952]
"PlaysTV"=C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [2017-02-10 51928]
"Raptr"=C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [2016-09-29 58584]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
C:\Users\Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Odeslat do OneNote.lnk - C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\codectweaktool.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\databasecompare.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gdsmux.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\graphstudionext.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\graphstudionext64.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\groove.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\infopath.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\lync.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\madhcctrl.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mediainfo.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mpc-hc64.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoev.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msotd.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoxmled.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ocpubmgr.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenote.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenotem.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outlook.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdvdlaunchpolicy.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\playstv_launcher.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2go.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2goexpress.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\poweriso.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pwrisovm.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\raptrstub.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spreadsheetcompare.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninstall.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winword.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zps.exe]
"Debugger" = "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
====== File associations ======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
====== List of files/folders created in the last 1 month ======
2017-04-28 06:56:02 ----D---- C:\rsit
2017-04-28 06:56:02 ----D---- C:\Program Files\trend micro
2017-04-28 06:19:33 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2017-04-28 06:19:30 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2017-04-28 06:19:02 ----D---- C:\Program Files\Malwarebytes
2017-04-28 06:18:46 ----D---- C:\ProgramData\Malwarebytes
2017-04-27 23:34:12 ----SHD---- C:\Config.Msi
2017-04-27 18:07:20 ----D---- C:\ProgramData\BitDefender
2017-04-27 13:15:35 ----D---- C:\Program Files\Common Files\adaware
2017-04-27 10:14:35 ----D---- C:\Program Files (x86)\Spyware Terminator
2017-04-27 09:49:34 ----A---- C:\WINDOWS\SYSWOW64\subinacl.exe
2017-04-27 09:49:22 ----D---- C:\Program Files\Common Files\Microsoft
2017-04-27 09:49:22 ----D---- C:\Program Files\Adware-Removal-Tool
2017-04-25 13:11:07 ----D---- C:\AMD
2017-04-22 17:18:41 ----D---- C:\Users\Tom\AppData\Roaming\Kodi
2017-04-22 17:15:25 ----D---- C:\Program Files (x86)\Kodi
2017-04-21 12:37:18 ----D---- C:\Users\Tom\AppData\Roaming\MyPhoneExplorer
2017-04-21 12:37:06 ----D---- C:\Program Files (x86)\MyPhoneExplorer
2017-04-15 09:01:56 ----D---- C:\WINDOWS\Panther
2017-04-14 08:48:24 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-04-13 10:06:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-13 10:06:35 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-04-13 10:06:34 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-04-13 10:06:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-04-13 10:06:33 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-04-13 10:06:32 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-04-13 10:06:32 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-04-13 10:06:32 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-04-13 10:06:31 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-04-13 10:06:30 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-04-13 10:06:29 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-04-13 10:06:29 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-04-13 10:06:29 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-04-13 10:06:28 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-04-13 10:06:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-04-13 10:06:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-04-13 10:06:27 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-04-13 10:06:27 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-04-13 10:06:26 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-04-13 10:06:25 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-04-13 10:06:24 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-04-13 10:06:23 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-04-13 10:06:22 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-04-13 10:06:21 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-04-13 10:06:20 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-04-13 10:06:19 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-04-13 10:06:18 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2017-04-13 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-04-13 10:06:17 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-04-13 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-04-13 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\mfmjpegdec.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-04-13 10:06:14 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\ipsecsnp.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-04-13 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\apds.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\sbe.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\ipsmsnap.dll
2017-04-13 10:06:12 ----A---- C:\WINDOWS\system32\drivers\BasicDisplay.sys
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\XblAuthTokenBrokerExt.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\XblAuthManagerProxy.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-04-13 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-04-13 10:06:10 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-04-13 10:06:09 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2017-04-13 10:06:08 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-04-13 10:06:06 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-04-13 10:06:06 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-04-13 10:06:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-04-13 10:06:05 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-04-13 10:06:04 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-04-13 10:06:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-04-13 10:06:02 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-13 10:06:01 ----A---- C:\WINDOWS\system32\shell32.dll
2017-04-13 10:05:59 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-04-13 10:05:58 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-04-13 10:05:57 ----A---- C:\WINDOWS\system32\mos.dll
2017-04-13 10:05:56 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-04-13 10:05:56 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-04-13 10:05:55 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-04-13 10:05:55 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-04-13 10:05:55 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-04-13 10:05:54 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-04-13 10:05:54 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-04-13 10:05:54 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-04-13 10:05:53 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-04-13 10:05:53 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-04-13 10:05:53 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-04-13 10:05:52 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-04-13 10:05:52 ----A---- C:\WINDOWS\system32\usocore.dll
2017-04-13 10:05:52 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\LsaIso.exe
2017-04-13 10:05:51 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2017-04-13 10:05:50 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-04-13 10:05:49 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-04-13 10:05:48 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-04-13 10:05:47 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2017-04-13 10:05:38 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-04-13 10:05:38 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\localspl.dll
2017-04-13 10:05:37 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-04-13 10:05:36 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2017-04-13 10:05:35 ----A---- C:\WINDOWS\system32\wpninprc.dll
2017-04-13 10:05:35 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-04-13 10:05:35 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-04-13 10:05:35 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-04-13 10:05:34 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-04-13 10:05:31 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-04-13 10:05:30 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-04-13 10:05:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-04-13 10:05:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-04-13 10:05:27 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-04-13 10:05:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-04-13 10:05:24 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-13 10:05:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-04-13 10:05:23 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-04-13 10:05:22 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-04-13 10:05:22 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\quartz.dll
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\ole32.dll
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-04-13 10:05:21 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\system32\wininet.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-04-13 10:05:20 ----A---- C:\WINDOWS\HelpPane.exe
2017-04-13 10:05:19 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-04-13 10:05:19 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-04-13 10:05:19 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-04-13 10:05:19 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-04-13 10:05:18 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-04-13 10:05:18 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-04-13 10:05:17 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-04-13 10:05:17 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-04-13 10:05:16 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-04-13 10:05:16 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-04-13 10:05:16 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-04-13 10:05:16 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-04-13 10:05:15 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-04-13 10:05:14 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-04-13 10:05:14 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-04-13 10:05:14 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-04-13 10:05:13 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-04-13 10:05:12 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-04-13 10:05:11 ----A---- C:\WINDOWS\system32\dafpos.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-04-13 10:05:10 ----A---- C:\WINDOWS\system32\FontProvider.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-04-13 10:05:09 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-04-13 10:05:08 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\DdcWnsListener.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-04-13 10:05:07 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-04-13 10:05:06 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2017-04-13 10:05:02 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-04-13 10:05:01 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-04-13 10:05:01 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-04-13 10:05:01 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-04-13 10:05:00 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-04-13 10:05:00 ----A---- C:\WINDOWS\system32\actxprxy.dll
2017-04-13 10:04:59 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-04-13 10:04:58 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-04-13 10:04:57 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-04-13 10:04:57 ----A---- C:\WINDOWS\system32\twinui.dll
2017-04-13 10:04:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-04-13 10:04:56 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-04-13 10:04:55 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\sbe.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\qedit.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-04-13 10:04:54 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\wer.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-04-13 10:04:53 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-04-13 10:04:52 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-04-13 10:04:51 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-04-13 10:04:51 ----A---- C:\WINDOWS\system32\invagent.dll
2017-04-13 10:04:51 ----A---- C:\WINDOWS\system32\devinv.dll
2017-04-13 10:04:51 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\psmsrv.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-04-13 10:04:50 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-04-13 10:04:49 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-04-13 10:04:48 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-04-13 10:04:48 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-04-13 10:04:47 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\XblAuthManagerProxy.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-04-13 10:04:46 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\cdp.dll
2017-04-13 10:04:45 ----A---- C:\WINDOWS\system32\atmlib.dll
====== List of files/folders modified in the last 1 month ======
2017-04-28 07:06:03 ----D---- C:\WINDOWS\Prefetch
2017-04-28 06:56:02 ----RD---- C:\Program Files
2017-04-28 06:55:20 ----D---- C:\WINDOWS\Temp
2017-04-28 06:53:20 ----D---- C:\WINDOWS\System32
2017-04-28 06:53:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-28 06:48:33 ----D---- C:\WINDOWS\system32\sru
2017-04-28 06:34:15 ----AD---- C:\ProgramData\Temp
2017-04-28 06:29:49 ----D---- C:\WINDOWS\system32\drivers
2017-04-28 06:18:46 ----HD---- C:\ProgramData
2017-04-28 06:18:46 ----D---- C:\WINDOWS\system32\drivers\etc
2017-04-28 06:05:53 ----D---- C:\WINDOWS\system32\config
2017-04-28 06:01:11 ----D---- C:\WINDOWS\AppReadiness
2017-04-28 06:01:10 ----HD---- C:\Program Files\WindowsApps
2017-04-28 05:45:57 ----D---- C:\WINDOWS\system32\SleepStudy
2017-04-28 04:40:10 ----SHD---- C:\System Volume Information
2017-04-28 01:31:22 ----D---- C:\WINDOWS\system32\Tasks
2017-04-28 01:31:22 ----D---- C:\WINDOWS\AutoKMS
2017-04-28 01:29:29 ----D---- C:\Windows
2017-04-28 00:22:40 ----AD---- C:\Program Files (x86)\LEGO Marvel Super Heroes.v 1.0.0.48513 + 2 DLC
2017-04-27 23:34:15 ----SHD---- C:\WINDOWS\Installer
2017-04-27 18:03:01 ----AD---- C:\Users\Tom\AppData\Roaming\.minecraft
2017-04-27 17:42:30 ----RD---- C:\WINDOWS\Microsoft.NET
2017-04-27 13:15:35 ----D---- C:\Program Files\Common Files
2017-04-27 10:14:35 ----RD---- C:\Program Files (x86)
2017-04-27 09:49:34 ----D---- C:\WINDOWS\SysWOW64
2017-04-27 09:46:27 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-04-27 09:45:16 ----D---- C:\AdwCleaner
2017-04-27 07:53:29 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-04-23 22:23:46 ----D---- C:\Users\Tom\AppData\Roaming\vlc
2017-04-22 19:23:39 ----D---- C:\WINDOWS\INF
2017-04-22 10:28:23 ----D---- C:\WINDOWS\CbsTemp
2017-04-22 10:28:18 ----D---- C:\WINDOWS\system32\appraiser
2017-04-22 10:28:14 ----D---- C:\WINDOWS\system32\catroot2
2017-04-22 10:26:38 ----D---- C:\WINDOWS\WinSxS
2017-04-21 16:29:21 ----AD---- C:\Program Files (x86)\Opera
2017-04-21 12:37:11 ----D---- C:\Program Files (x86)\Common Files
2017-04-21 09:15:46 ----D---- C:\WINDOWS\system32\DriverStore
2017-04-21 08:12:03 ----RSD---- C:\WINDOWS\assembly
2017-04-14 22:45:12 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-04-14 22:45:12 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-04-14 22:45:12 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-04-14 22:45:12 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-04-14 22:45:12 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-04-14 22:45:08 ----D---- C:\WINDOWS\system32\wbem
2017-04-14 22:45:08 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-04-14 22:45:07 ----SD---- C:\WINDOWS\system32\F12
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\setup
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\migration
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\en-US
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\Dism
2017-04-14 22:45:07 ----D---- C:\WINDOWS\system32\cs-CZ
2017-04-14 22:45:03 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-04-14 22:45:03 ----RD---- C:\Program Files\Windows Defender
2017-04-14 22:45:03 ----D---- C:\WINDOWS\ShellExperiences
2017-04-14 22:45:03 ----D---- C:\WINDOWS\Provisioning
2017-04-14 22:45:03 ----D---- C:\Program Files\Windows Photo Viewer
2017-04-14 22:45:03 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-04-14 22:45:03 ----D---- C:\Program Files (x86)\Windows Defender
2017-04-14 21:13:25 ----D---- C:\ProgramData\Microsoft Help
2017-04-14 21:13:20 ----D---- C:\WINDOWS\system32\MRT
2017-04-14 21:08:14 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-04-14 21:02:55 ----AD---- C:\Program Files\Microsoft Silverlight
2017-04-14 21:02:55 ----AD---- C:\Program Files (x86)\Microsoft Silverlight
2017-04-14 20:38:49 ----A---- C:\WINDOWS\win.ini
2017-04-14 19:52:26 ----D---- C:\hry
2017-04-14 19:28:50 ----D---- C:\Users\Tom\AppData\Roaming\Warner Bros. Interactive Entertainment
2017-04-01 20:52:38 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-04-01 14:19:35 ----AD---- C:\Program Files\AMD
2017-04-01 11:52:09 ----D---- C:\ProgramData\AMD
2017-03-29 19:35:23 ----D---- C:\WINDOWS\system32\CatRoot
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2014-03-21 81608]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2014-03-21 23752]
R0 amdkmpfd;@oem30.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-06-04 73976]
R0 amdpsp;@oem95.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [2016-08-23 254864]
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2015-07-14 251632]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2015-07-14 72400]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2015-03-10 246000]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2015-03-10 169792]
R1 EpfwLWF;@oem88.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2015-07-14 53360]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2007-11-07 104912]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2016-02-10 137280]
R2 APXACC;@oem25.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2015-04-03 229056]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2015-03-10 222280]
R3 ACPIVPC;@oem48.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-11-05 35576]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0309839.inf_amd64_168acb088d48fafb\atikmdag.sys [2016-12-23 26587656]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0309839.inf_amd64_168acb088d48fafb\atikmpag.sys [2016-12-23 527256]
R3 AtiHDAudioService;@oem94.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-07-24 101376]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-27 84992]
R3 CnxtHdAudService;@oem69.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-05-19 1543912]
R3 ETD;@oem92.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2016-08-15 594008]
R3 rt640x64;@oem42.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-22 886528]
R3 RtkBtFilter;@oem33.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2015-12-05 593624]
R3 RTSUER;@oem70.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-03 410880]
R3 RTWlanE;@oem97.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\System32\drivers\rtwlane.sys [2016-11-11 6382080]
R3 SNP2UVC;@oem21.inf,%SERVICE_DISPLAY_NAME%;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2015-12-05 3481696]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2016-02-15 32304]
S0 amdkmafd;@oem22.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2016-08-18 49448]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 amdkmcsp;@oem95.inf,%amdkmcsp.SVCDESC%;AMD Kernel Mode CSP Service; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [2016-08-23 100752]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-09-27 114176]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-11-11 967168]
S3 ew_usbccgpfilter;@oem105.inf,%busupper.SVCDESC%;HwHandSet_CompositeFilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [2016-11-25 18816]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-27 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2017-04-28 251848]
S3 MBAMWebProtection;MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys []
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2016-12-23 295832]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-12-06 1146128]
R2 CDPUserSvc_3ea56;CDPUserSvc_3ea56; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2013-07-26 206552]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2015-07-08 1353720]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2016-08-15 134888]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2014-11-05 198192]
R2 LUService;LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [2014-04-21 37624]
R2 OneSyncSvc_3ea56;Hostitel synchronizace_3ea56; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2014-11-05 288240]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-25 390632]
R2 tbaseprovisioning;tbaseprovisioning; C:\WINDOWS\SysWOW64\tbaseprovisioning.exe [2016-08-23 51224]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2017-02-21 5906704]
R3 PimIndexMaintenanceSvc_3ea56;Data kontaktů_3ea56; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-06-03 533760]
S3 MessagingService_3ea56;Služba zasílání zpráv_3ea56; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2014-11-05 308720]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-04-27 173512]
S4 PlaysService;Plays.tv Update Service (PlaysService); C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [2017-02-10 55000]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
Re: prosím o kontrolu logu
ahoj,
1. citat:
DelFix https://toolslib.net/downloads/finish/2/
•Stahnete a spustte
•Ponechte zatrzitkou pouze u volby Remove disinfection tools
•Kliknete na Run
2. vloz oba logy FRST
1. citat:
DelFix https://toolslib.net/downloads/finish/2/
•Stahnete a spustte
•Ponechte zatrzitkou pouze u volby Remove disinfection tools
•Kliknete na Run
2. vloz oba logy FRST
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
vlozen FRST jako příloha
Výpis z delfix je zde a v raru jsou oba dva z FRST. Díky mockrát za pomoc jasina
########## - EOF - ##########
# DelFix v1.013 - Logfile created 28/04/2017 at 08:23:08
# Updated 17/04/2016 by Xplode
# Username : Tom - LENOVO-PC
# Operating System : Windows 10 Home (64 bits)
~ Removing disinfection tools ...
Deleted : C:\USBFix
Deleted : C:\RSIT
Deleted : C:\AdwCleaner
Deleted : C:\Users\Tom\Desktop\hijackthis.log
Deleted : C:\Users\Tom\Desktop\log.txt
Deleted : C:\Users\Tom\Downloads\hijackthis.exe
Deleted : C:\Users\Tom\Downloads\hijackthis.log
Deleted : C:\Users\Tom\Downloads\RSITx64.exe
Deleted : C:\Users\Tom\Downloads\UsbFix_2016_8.103.exe
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
########## - EOF - ##########
########## - EOF - ##########
# DelFix v1.013 - Logfile created 28/04/2017 at 08:23:08
# Updated 17/04/2016 by Xplode
# Username : Tom - LENOVO-PC
# Operating System : Windows 10 Home (64 bits)
~ Removing disinfection tools ...
Deleted : C:\USBFix
Deleted : C:\RSIT
Deleted : C:\AdwCleaner
Deleted : C:\Users\Tom\Desktop\hijackthis.log
Deleted : C:\Users\Tom\Desktop\log.txt
Deleted : C:\Users\Tom\Downloads\hijackthis.exe
Deleted : C:\Users\Tom\Downloads\hijackthis.log
Deleted : C:\Users\Tom\Downloads\RSITx64.exe
Deleted : C:\Users\Tom\Downloads\UsbFix_2016_8.103.exe
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
########## - EOF - ##########
- Přílohy
-
- FRST.rar
- (28.55 KiB) Staženo 66 x
Re: prosím o kontrolu logu
pokracujeme:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
Kód: Vybrat vše
Start
HKLM-x32\...\Run: [windows] => wscript.exe //B "C:\Users\Tom\AppData\Local\Temp\windows.vbs" <===== ATTENTION
HKU\S-1-5-21-920062605-3406302541-2452091426-1002\...\Run: [windows] => wscript.exe //B "C:\Users\Tom\AppData\Local\Temp\windows.vbs" <===== ATTENTION
HKU\S-1-5-21-920062605-3406302541-2452091426-1002\...\Run: [Tom] => explorer.exe hxxp://kb-ribaki.org <===== ATTENTION
S3 MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys [X]
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51 [157]
2017-04-27 18:07 - 2017-04-27 18:07 - 00000000 ____D C:\ProgramData\BitDefender
2017-04-27 13:20 - 2017-04-27 13:20 - 00000000 ____D C:\Users\Tom\AppData\Local\AdAwareDesktop
2017-04-27 13:15 - 2017-04-27 13:15 - 00000000 ____D C:\Users\Tom\AppData\Local\AdAwareUpdater
2017-04-27 13:15 - 2017-04-27 13:15 - 00000000 ____D C:\Program Files\Common Files\adaware
2017-04-27 10:14 - 2017-04-27 12:58 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2017-04-27 10:12 - 2017-04-27 10:12 - 02558896 _____ C:\Users\Tom\Downloads\Adaware_Installer.exe
2017-04-27 10:09 - 2017-04-27 10:10 - 09694960 _____ (Crawler Group ) C:\Users\Tom\Downloads\SpywareTerminatorSetup.exe
2017-04-28 01:31 - 2015-06-25 10:41 - 00000000 ____D C:\WINDOWS\AutoKMS
EmptyTemp:
Reboot:
End
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: prosím o kontrolu logu
Prosím co s tím texťákem mám dělat?? Díky jasina
Re: prosím o kontrolu logu
prepac, neskopirovalo sa mi to cele 
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
Kód: Vybrat vše
Start
HKLM-x32\...\Run: [windows] => wscript.exe //B "C:\Users\Tom\AppData\Local\Temp\windows.vbs" <===== ATTENTION
HKU\S-1-5-21-920062605-3406302541-2452091426-1002\...\Run: [windows] => wscript.exe //B "C:\Users\Tom\AppData\Local\Temp\windows.vbs" <===== ATTENTION
HKU\S-1-5-21-920062605-3406302541-2452091426-1002\...\Run: [Tom] => explorer.exe hxxp://kb-ribaki.org <===== ATTENTION
S3 MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys [X]
AlternateDataStreams: C:\ProgramData\Temp:1CE11B51 [157]
2017-04-27 18:07 - 2017-04-27 18:07 - 00000000 ____D C:\ProgramData\BitDefender
2017-04-27 13:20 - 2017-04-27 13:20 - 00000000 ____D C:\Users\Tom\AppData\Local\AdAwareDesktop
2017-04-27 13:15 - 2017-04-27 13:15 - 00000000 ____D C:\Users\Tom\AppData\Local\AdAwareUpdater
2017-04-27 13:15 - 2017-04-27 13:15 - 00000000 ____D C:\Program Files\Common Files\adaware
2017-04-27 10:14 - 2017-04-27 12:58 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2017-04-27 10:12 - 2017-04-27 10:12 - 02558896 _____ C:\Users\Tom\Downloads\Adaware_Installer.exe
2017-04-27 10:09 - 2017-04-27 10:10 - 09694960 _____ (Crawler Group ) C:\Users\Tom\Downloads\SpywareTerminatorSetup.exe
2017-04-28 01:31 - 2015-06-25 10:41 - 00000000 ____D C:\WINDOWS\AutoKMS
EmptyTemp:
Reboot:
End
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txtFRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: prosím o kontrolu logu
Díky, jsem nevěděl, že musí být fixlist ve stejném adrešáři jako FRST.
Tady je nový scan, příloze.
Vypadá to dobře, už mi ta stránka nevyskakuje.
Moc děkuji jasina
Tady je nový scan, příloze.
Vypadá to dobře, už mi ta stránka nevyskakuje.
Moc děkuji jasina
- Přílohy
-
- FRST po FIX.rar
- (28.2 KiB) Staženo 57 x
Re: prosím o kontrolu logu
log vypada OK
pokial je tam ESET, doporucujem odinstalovat AVG
rado sa stalo
pokial je tam ESET, doporucujem odinstalovat AVG
rado sa stalo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: prosím o kontrolu logu
Díky, ESET mám, ale AVG jen jako TUNEUP bez antiviru. jasina
Přispějete na provoz fóra?