Dobrý den,
pár dní sleduji podivné chování mého PC. Když v prohlížeči (používám hlavně Chrome) projdu několik adres, tak najednou se postupně adresy vrátí na začátek, jako kdybych mačkal tlačítko Zpět. To stejné dělá třeba i ve Steamu. Nedělá to vždy, ale čím dál častěji. Po restartu PC to většinou napoprvé přestane a PC jede normálně. Někdy dochází k tomu, že ikony na ploše "zamrznou" a nejde je spustit, ani se neohraničí. Zkusil jsem nepotřebné věci v PC promazat, vyčistit CCleanerem, jednou jsem použil i AdwCleaner, ale uvedené potíže přetrvávají. Proto prosím o kontrolu logu, předem děkuji.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mave at 2017-07-10 09:13:47
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 65 GB (57%) free of 114 GB
Total RAM: 14274 MB (83% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:13:53, on 10.7.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18698)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
D:\PROGRAMY\Steam\steam.exe
D:\PROGRAMY\Steam\bin\cef\cef.win7\steamwebhelper.exe
D:\PROGRAMY\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files\trend micro\Mave.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "D:\PROGRAMY\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\PROGRAMY\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\PROGRAMY\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8387 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Windows\system32\svchost.exe -k imgsvc
"E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-112c04df-6942-432c-9079-ae1e8feaf7ad -SystemEventPortName:HostProcess-893e11e0-77f3-46fb-b156-86caf0edfe70 -IoCancelEventPortName:HostProcess-c5677f36-69e1-4aaa-944f-e44c5df8b379 -NonStateChangingEventPortName:HostProcess-d1fa4375-aafd-4ac8-a9be-b6b65e331ae1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9dceb5fc-a31a-4be4-ab56-f27f6f02ff3c -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "1445739678508781502658295694-14370127382109312384519175311033243433-2005262894
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\DllHost.exe /Processid:{FCC74B77-EC3E-4DD8-A80B-008A702075A9}
"D:\PROGRAMY\Steam\steam.exe" steam://uninstall/622590
D:\PROGRAMY\Steam\bin\cef\cef.win7\steamwebhelper.exe "-cachedir=C:\Users\Mave\AppData\Local\Steam\htmlcache" "-steampid=3488" "-buildid=1496897923" "-steamid=0" "-clientui=D:\PROGRAMY\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=D:\PROGRAMY\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Mave\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3071.115 --initial-client-data=0x80,0x84,0x88,0x7c,0x8c,0x7fef25b19d0,0x7fef25b19b8,0x7fef25b19e8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=4516 --on-initialized-event-handle=312 --parent-handle=316 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1144 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,11,19,20,21,24,43,76 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1180 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8205 --gpu-driver-date=5-1-2017 --service-request-channel-token=63F8DF6EBF90ABFC6A1D6B13ACFADB90 --mojo-platform-channel-handle=1152 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1144 --primordial-pipe-token=C62FFD5F27516392CBC954B3132E9AF0 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=C62FFD5F27516392CBC954B3132E9AF0 --renderer-client-id=4 --mojo-platform-channel-handle=2428 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1144 --primordial-pipe-token=92943A476366FA4781CF55C0A6F630ED --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=92943A476366FA4781CF55C0A6F630ED --renderer-client-id=5 --mojo-platform-channel-handle=2512 /prefetch:1
"D:\PROGRAMY\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --disable-smooth-scrolling --enable-pinch --primordial-pipe-token=80707FD7A2E4E0B53D4C981688B43C35 --lang=en-US --lang=cs-CZ --log-file="D:\PROGRAMY\Steam\logs\cef_log.txt" --product-version="Valve Steam Client" --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=80707FD7A2E4E0B53D4C981688B43C35 --renderer-client-id=5 --mojo-platform-channel-handle=2480 /prefetch:1
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1144 --primordial-pipe-token=7FD86CD00FB9A2AE67DEE5958D7B289B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=7FD86CD00FB9A2AE67DEE5958D7B289B --renderer-client-id=22 --mojo-platform-channel-handle=4608 /prefetch:1
"E:\STÁHNUTO\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=D:\PROGRAMY\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.131.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.131.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-09 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-09 234560]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2016-11-14 1353680]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-05-03 1893496]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=D:\PROGRAMY\Steam\steam.exe [2017-06-08 3042592]
"DAEMON Tools Lite Automount"=E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe [2016-11-17 4958912]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2016-10-25 292848]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2016-03-11 1314432]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15 587288]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-07-10 09:13:47 ----D---- C:\rsit
2017-07-10 09:13:47 ----D---- C:\Program Files\trend micro
2017-06-23 00:19:18 ----D---- C:\ProgramData\GOG.com
2017-06-21 09:37:42 ----D---- C:\Users\Mave\AppData\Roaming\Io Interactive
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ie4uinit.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\urlmon.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-06-16 16:50:41 ----A---- C:\Windows\system32\msfeeds.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\iedkcs32.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\dxtrans.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\vbscript.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iesetup.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iertutil.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\ieapfltr.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\webcheck.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmled.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieUnatt.exe
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieui.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieframe.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\dxtmsft.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\wininet.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jsproxy.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9diag.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript.dll
2017-06-16 16:50:37 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-06-16 16:50:36 ----A---- C:\Windows\system32\msrating.dll
2017-06-16 16:50:35 ----A---- C:\Windows\system32\mshtml.dll
2017-06-16 16:50:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-06-16 16:50:29 ----A---- C:\Windows\system32\wuaueng.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\win32k.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\shell32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ntdll.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\tquery.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\schannel.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcss.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcrt4.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\mssrch.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\lsasrv.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\KernelBase.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\afd.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\tquery.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64win.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\winsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\srcore.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\smss.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\secur32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rstrui.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\PrintBrmUi.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ntvdm64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\lsass.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\localspl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\netio.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\appid.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\csrsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\conhost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cdosys.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\HelpPane.exe
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\user.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups2.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wucltux.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuauclt.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wow64cpu.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\sspisrv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msmmsp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\FntCache.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\cdd.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\apisetschema.dll
======List of files/folders modified in the last 1 month======
2017-07-10 09:13:49 ----D---- C:\Windows\Temp
2017-07-10 09:13:47 ----RD---- C:\Program Files
2017-07-10 09:06:19 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-10 09:06:19 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-07-10 09:06:15 ----RD---- C:\Program Files (x86)
2017-07-10 08:23:18 ----D---- C:\Windows\inf
2017-07-10 08:23:18 ----D---- C:\Windows
2017-07-10 08:08:18 ----D---- C:\Windows\System32
2017-07-10 08:08:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-07-10 08:03:53 ----D---- C:\ProgramData\NVIDIA
2017-07-10 08:01:30 ----D---- C:\Windows\system32\config
2017-07-08 20:45:58 ----SHD---- C:\System Volume Information
2017-07-08 20:35:01 ----D---- C:\Windows\Tasks
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wfp
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wbem
2017-07-08 20:34:43 ----D---- C:\Windows\system32\DriverStore
2017-07-08 20:34:43 ----D---- C:\Windows\system32\catroot2
2017-07-08 20:34:43 ----D---- C:\Users\Mave\AppData\Roaming\vlc
2017-07-08 20:34:37 ----D---- C:\Windows\registration
2017-07-07 07:42:01 ----D---- C:\Users\Mave\AppData\Roaming\DAEMON Tools Lite
2017-07-07 07:42:00 ----D---- C:\Windows\debug
2017-07-03 17:44:15 ----D---- C:\Windows\system32\drivers
2017-07-03 14:00:31 ----A---- C:\Windows\SYSWOW64\EasyAntiCheat.exe
2017-07-01 15:00:27 ----D---- C:\ProgramData\Origin
2017-07-01 15:00:19 ----D---- C:\Users\Mave\AppData\Roaming\Origin
2017-07-01 08:55:30 ----D---- C:\Windows\SysWOW64
2017-07-01 08:15:59 ----SHD---- C:\Windows\Installer
2017-07-01 08:11:08 ----D---- C:\Program Files (x86)\Google
2017-07-01 08:10:59 ----D---- C:\Windows\system32\Tasks
2017-07-01 08:09:57 ----SD---- C:\Users\Mave\AppData\Roaming\Microsoft
2017-06-27 01:08:22 ----D---- C:\Users\Mave\AppData\Roaming\TS3Client
2017-06-23 00:19:18 ----HD---- C:\ProgramData
2017-06-22 13:32:45 ----D---- C:\Windows\rescache
2017-06-19 12:49:08 ----D---- C:\Windows\Microsoft.NET
2017-06-19 12:46:55 ----RSD---- C:\Windows\assembly
2017-06-17 23:21:14 ----D---- C:\Program Files (x86)\Rockstar Games
2017-06-17 23:21:06 ----D---- C:\Program Files\Rockstar Games
2017-06-16 17:01:02 ----D---- C:\Windows\winsxs
2017-06-16 17:00:22 ----D---- C:\Program Files\Microsoft Silverlight
2017-06-16 17:00:22 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-06-16 16:59:54 ----D---- C:\Program Files\Internet Explorer
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migration
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migration
2017-06-16 16:59:53 ----D---- C:\Windows\system32\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\system32\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\Boot
2017-06-16 16:59:53 ----D---- C:\Windows\PolicyDefinitions
2017-06-16 16:59:53 ----D---- C:\Windows\AppPatch
2017-06-16 16:59:53 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-16 16:53:33 ----D---- C:\Windows\system32\MRT
2017-06-16 16:52:09 ----AC---- C:\Windows\system32\MRT.exe
2017-06-16 16:26:23 ----D---- C:\Users\Mave\AppData\Roaming\New Technology Studio
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2016-10-25 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2016-10-25 15232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2016-11-20 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2016-11-20 47672]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2016-10-25 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2016-10-25 786416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-03 99288]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 npusbio;npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [2013-07-10 38400]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2017-05-02 218040]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-05-03 57976]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-10-25 805088]
S3 cpuz130;cpuz130; \??\C:\Users\Mave\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2016-11-25 18816]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-21 79976]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-03 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-03 390616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-11-14 119864]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-03 450168]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-11-17 1473216]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-11-14 361816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-07-14 107192]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-07-14 128696]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S2 Origin Web Helper Service;Origin Web Helper Service; D:\PROGRAMY\Origin\OriginWebHelperService.exe [2017-07-01 3148184]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-06-26 1522184]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2017-07-03 383016]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-05-14 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-07-10 175560]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 Origin Client Service;Origin Client Service; D:\PROGRAMY\Origin\OriginClientService.exe [2017-07-01 2168208]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-14 52920]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
WIN se vrací zpět, občas zamrznou ikony
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: WIN se vrací zpět, občas zamrznou ikony
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: WIN se vrací zpět, občas zamrznou ikony
Zde je log. Je vidět, že tam pořad něco je, protože asi předevčírem jsem pomocí AdwCleaneru odstranil stejný počet chyb.
# AdwCleaner v6.047 - Log vytvořen 10/07/2017 v 17:23:45
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-07-07.1 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Mave - MAVE-PC
# Spuštěno z : C:\Users\Mave\Desktop\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
[-] Soubor smazán: C:\Windows\Reimage.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Klíč smazán: HKU\S-1-5-21-3370106269-411842426-194423340-1000\Software\Reimage
[-] Klíč smazán: HKU\S-1-5-21-3370106269-411842426-194423340-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Klíč smazán po restartu: HKCU\Software\Reimage
[#] Klíč smazán po restartu: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Klíč smazán po restartu: [x64] HKCU\Software\Reimage
[#] Klíč smazán po restartu: [x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Reimage
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2041 Bajty] - [10/07/2017 17:23:45]
C:\AdwCleaner\AdwCleaner[S0].txt - [2418 Bajty] - [10/07/2017 17:23:34]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2187 Bajty] ##########
# AdwCleaner v6.047 - Log vytvořen 10/07/2017 v 17:23:45
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-07-07.1 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Mave - MAVE-PC
# Spuštěno z : C:\Users\Mave\Desktop\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
[-] Soubor smazán: C:\Windows\Reimage.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Klíč smazán: HKU\S-1-5-21-3370106269-411842426-194423340-1000\Software\Reimage
[-] Klíč smazán: HKU\S-1-5-21-3370106269-411842426-194423340-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Klíč smazán po restartu: HKCU\Software\Reimage
[#] Klíč smazán po restartu: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Klíč smazán po restartu: [x64] HKCU\Software\Reimage
[#] Klíč smazán po restartu: [x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Reimage
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2041 Bajty] - [10/07/2017 17:23:45]
C:\AdwCleaner\AdwCleaner[S0].txt - [2418 Bajty] - [10/07/2017 17:23:34]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2187 Bajty] ##########
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: WIN se vrací zpět, občas zamrznou ikony
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: WIN se vrací zpět, občas zamrznou ikony
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mave at 2017-07-10 17:38:08
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 66 GB (58%) free of 114 GB
Total RAM: 14274 MB (85% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:38:10, on 10.7.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18698)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
D:\PROGRAMY\FreeCommander\FreeCommander.exe
C:\Program Files\trend micro\Mave.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "D:\PROGRAMY\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\PROGRAMY\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\PROGRAMY\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8294 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Mave\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3071.115 --initial-client-data=0x80,0x84,0x88,0x7c,0x8c,0x7feed3c19d0,0x7feed3c19b8,0x7feed3c19e8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=3280 --on-initialized-event-handle=312 --parent-handle=316 /prefetch:6
C:\Windows\system32\SearchIndexer.exe /Embedding
"E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1156 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,11,19,20,21,24,43,76 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1180 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8205 --gpu-driver-date=5-1-2017 --service-request-channel-token=66CA792691EDFF4AFED56850760A225B --mojo-platform-channel-handle=1180 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=443D45D3D31F15E535951FB7D67B5D2D --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=443D45D3D31F15E535951FB7D67B5D2D --renderer-client-id=4 --mojo-platform-channel-handle=2300 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=15F412E0F7C9F9C002C59582FE03E64A --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=15F412E0F7C9F9C002C59582FE03E64A --renderer-client-id=5 --mojo-platform-channel-handle=2328 /prefetch:1
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8cc71a50-f841-4835-97e4-508f3524d375 -SystemEventPortName:HostProcess-07600c8e-1c71-4390-8f43-1e0c35d3acc3 -IoCancelEventPortName:HostProcess-9ef7cc9c-e127-43a6-a027-15e022097f3d -NonStateChangingEventPortName:HostProcess-a5556dff-572b-4780-9d7a-614d082c0ab2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c959e9f1-3fec-485c-9804-5ea96c3bfb8f -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=C47A93DC27D674C00E2042103B7FA1E1 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=C47A93DC27D674C00E2042103B7FA1E1 --renderer-client-id=8 --mojo-platform-channel-handle=4208 /prefetch:1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "-445609662-47688432441419080965306503-2054183094-2503841403104484291810939527
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=B4F170793E21F2D6D776FAF7D9E22AA1 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=B4F170793E21F2D6D776FAF7D9E22AA1 --renderer-client-id=15 --mojo-platform-channel-handle=4812 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=CD0BF4FB568B4DD13588AA8A976C9876 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=CD0BF4FB568B4DD13588AA8A976C9876 --renderer-client-id=16 --mojo-platform-channel-handle=2344 /prefetch:1
"D:\PROGRAMY\FreeCommander\FreeCommander.exe"
"D:\PROGRAMY\FreeCommander\FcContextMenu64.exe" "-POSITION=1313,838" "-FILE=C:\Users\Mave\AppData\Local\Temp\FreeCommander3112\B9DC.tmp" -SENDER=2293900 -AUTOCLOSE=20
"E:\STÁHNUTO\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"D:\PROGRAMY\FreeCommander\FcContextMenu64.exe" -CLOSE
=========Mozilla firefox=========
ProfilePath - C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=D:\PROGRAMY\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.131.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.131.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-09 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-09 234560]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2016-11-14 1353680]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-05-03 1893496]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=D:\PROGRAMY\Steam\steam.exe [2017-06-08 3042592]
"DAEMON Tools Lite Automount"=E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe [2016-11-17 4958912]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2016-10-25 292848]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2016-03-11 1314432]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15 587288]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-07-10 17:22:56 ----D---- C:\AdwCleaner
2017-07-10 16:35:09 ----A---- C:\Windows\system32\drivers\hidgamemap.sys
2017-07-10 16:34:29 ----D---- C:\ProgramData\Disc-Soft
2017-07-10 12:02:56 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2017-07-10 09:13:47 ----D---- C:\rsit
2017-07-10 09:13:47 ----D---- C:\Program Files\trend micro
2017-06-23 00:19:18 ----D---- C:\ProgramData\GOG.com
2017-06-21 09:37:42 ----D---- C:\Users\Mave\AppData\Roaming\Io Interactive
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ie4uinit.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\urlmon.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-06-16 16:50:41 ----A---- C:\Windows\system32\msfeeds.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\iedkcs32.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\dxtrans.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\vbscript.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iesetup.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iertutil.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\ieapfltr.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\webcheck.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmled.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieUnatt.exe
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieui.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieframe.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\dxtmsft.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\wininet.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jsproxy.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9diag.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript.dll
2017-06-16 16:50:37 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-06-16 16:50:36 ----A---- C:\Windows\system32\msrating.dll
2017-06-16 16:50:35 ----A---- C:\Windows\system32\mshtml.dll
2017-06-16 16:50:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-06-16 16:50:29 ----A---- C:\Windows\system32\wuaueng.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\win32k.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\shell32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ntdll.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\tquery.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\schannel.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcss.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcrt4.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\mssrch.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\lsasrv.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\KernelBase.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\afd.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\tquery.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64win.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\winsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\srcore.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\smss.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\secur32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rstrui.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\PrintBrmUi.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ntvdm64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\lsass.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\localspl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\netio.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\appid.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\csrsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\conhost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cdosys.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\HelpPane.exe
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\user.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups2.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wucltux.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuauclt.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wow64cpu.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\sspisrv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msmmsp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\FntCache.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\cdd.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\apisetschema.dll
======List of files/folders modified in the last 1 month======
2017-07-10 17:38:09 ----D---- C:\Windows\Temp
2017-07-10 17:37:54 ----D---- C:\Windows\system32\config
2017-07-10 17:30:40 ----D---- C:\Windows\System32
2017-07-10 17:30:40 ----D---- C:\Windows\inf
2017-07-10 17:30:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-07-10 17:26:21 ----D---- C:\ProgramData\NVIDIA
2017-07-10 17:23:44 ----D---- C:\Windows
2017-07-10 16:35:22 ----SHD---- C:\System Volume Information
2017-07-10 16:35:22 ----D---- C:\Windows\system32\DriverStore
2017-07-10 16:35:17 ----D---- C:\Windows\system32\drivers
2017-07-10 16:34:29 ----HD---- C:\ProgramData
2017-07-10 15:46:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-10 09:13:47 ----RD---- C:\Program Files
2017-07-10 09:06:19 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-07-10 09:06:15 ----RD---- C:\Program Files (x86)
2017-07-08 20:35:01 ----D---- C:\Windows\Tasks
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wfp
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wbem
2017-07-08 20:34:43 ----D---- C:\Windows\system32\catroot2
2017-07-08 20:34:43 ----D---- C:\Users\Mave\AppData\Roaming\vlc
2017-07-08 20:34:37 ----D---- C:\Windows\registration
2017-07-07 07:42:01 ----D---- C:\Users\Mave\AppData\Roaming\DAEMON Tools Lite
2017-07-07 07:42:00 ----D---- C:\Windows\debug
2017-07-03 14:00:31 ----A---- C:\Windows\SYSWOW64\EasyAntiCheat.exe
2017-07-01 15:00:27 ----D---- C:\ProgramData\Origin
2017-07-01 15:00:19 ----D---- C:\Users\Mave\AppData\Roaming\Origin
2017-07-01 08:55:30 ----D---- C:\Windows\SysWOW64
2017-07-01 08:15:59 ----SHD---- C:\Windows\Installer
2017-07-01 08:11:08 ----D---- C:\Program Files (x86)\Google
2017-07-01 08:10:59 ----D---- C:\Windows\system32\Tasks
2017-07-01 08:09:57 ----SD---- C:\Users\Mave\AppData\Roaming\Microsoft
2017-06-27 01:08:22 ----D---- C:\Users\Mave\AppData\Roaming\TS3Client
2017-06-22 13:32:45 ----D---- C:\Windows\rescache
2017-06-19 12:49:08 ----D---- C:\Windows\Microsoft.NET
2017-06-19 12:46:55 ----RSD---- C:\Windows\assembly
2017-06-17 23:21:14 ----D---- C:\Program Files (x86)\Rockstar Games
2017-06-17 23:21:06 ----D---- C:\Program Files\Rockstar Games
2017-06-16 17:01:02 ----D---- C:\Windows\winsxs
2017-06-16 17:00:22 ----D---- C:\Program Files\Microsoft Silverlight
2017-06-16 17:00:22 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-06-16 16:59:54 ----D---- C:\Program Files\Internet Explorer
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migration
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migration
2017-06-16 16:59:53 ----D---- C:\Windows\system32\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\system32\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\Boot
2017-06-16 16:59:53 ----D---- C:\Windows\PolicyDefinitions
2017-06-16 16:59:53 ----D---- C:\Windows\AppPatch
2017-06-16 16:59:53 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-16 16:53:33 ----D---- C:\Windows\system32\MRT
2017-06-16 16:52:09 ----AC---- C:\Windows\system32\MRT.exe
2017-06-16 16:26:23 ----D---- C:\Users\Mave\AppData\Roaming\New Technology Studio
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hidgamemap;Game Controller Mapper; C:\Windows\system32\DRIVERS\hidgamemap.sys [2017-07-10 112312]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2016-10-25 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2016-10-25 15232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2016-11-20 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2016-11-20 47672]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2016-10-25 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2016-10-25 786416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-03 99288]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 npusbio;npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [2013-07-10 38400]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2017-05-02 218040]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-05-03 57976]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-10-25 805088]
R3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-21 79976]
S3 cpuz130;cpuz130; \??\C:\Users\Mave\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2016-11-25 18816]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-03 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-03 390616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-11-14 119864]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-03 450168]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-11-17 1473216]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-11-14 361816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-07-14 107192]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-07-14 128696]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S2 Origin Web Helper Service;Origin Web Helper Service; D:\PROGRAMY\Origin\OriginWebHelperService.exe [2017-07-01 3148184]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-06-26 1522184]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2017-07-03 383016]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-05-14 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-07-10 175560]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 Origin Client Service;Origin Client Service; D:\PROGRAMY\Origin\OriginClientService.exe [2017-07-01 2168208]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-14 52920]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
-----------------EOF-----------------
Run by Mave at 2017-07-10 17:38:08
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 66 GB (58%) free of 114 GB
Total RAM: 14274 MB (85% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:38:10, on 10.7.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18698)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
D:\PROGRAMY\FreeCommander\FreeCommander.exe
C:\Program Files\trend micro\Mave.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "D:\PROGRAMY\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\PROGRAMY\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\PROGRAMY\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8294 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Mave\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3071.115 --initial-client-data=0x80,0x84,0x88,0x7c,0x8c,0x7feed3c19d0,0x7feed3c19b8,0x7feed3c19e8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=3280 --on-initialized-event-handle=312 --parent-handle=316 /prefetch:6
C:\Windows\system32\SearchIndexer.exe /Embedding
"E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1156 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,11,19,20,21,24,43,76 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x1180 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8205 --gpu-driver-date=5-1-2017 --service-request-channel-token=66CA792691EDFF4AFED56850760A225B --mojo-platform-channel-handle=1180 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=443D45D3D31F15E535951FB7D67B5D2D --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=443D45D3D31F15E535951FB7D67B5D2D --renderer-client-id=4 --mojo-platform-channel-handle=2300 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=15F412E0F7C9F9C002C59582FE03E64A --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=15F412E0F7C9F9C002C59582FE03E64A --renderer-client-id=5 --mojo-platform-channel-handle=2328 /prefetch:1
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8cc71a50-f841-4835-97e4-508f3524d375 -SystemEventPortName:HostProcess-07600c8e-1c71-4390-8f43-1e0c35d3acc3 -IoCancelEventPortName:HostProcess-9ef7cc9c-e127-43a6-a027-15e022097f3d -NonStateChangingEventPortName:HostProcess-a5556dff-572b-4780-9d7a-614d082c0ab2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c959e9f1-3fec-485c-9804-5ea96c3bfb8f -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=C47A93DC27D674C00E2042103B7FA1E1 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=C47A93DC27D674C00E2042103B7FA1E1 --renderer-client-id=8 --mojo-platform-channel-handle=4208 /prefetch:1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "-445609662-47688432441419080965306503-2054183094-2503841403104484291810939527
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=B4F170793E21F2D6D776FAF7D9E22AA1 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=B4F170793E21F2D6D776FAF7D9E22AA1 --renderer-client-id=15 --mojo-platform-channel-handle=4812 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1156 --primordial-pipe-token=CD0BF4FB568B4DD13588AA8A976C9876 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=CD0BF4FB568B4DD13588AA8A976C9876 --renderer-client-id=16 --mojo-platform-channel-handle=2344 /prefetch:1
"D:\PROGRAMY\FreeCommander\FreeCommander.exe"
"D:\PROGRAMY\FreeCommander\FcContextMenu64.exe" "-POSITION=1313,838" "-FILE=C:\Users\Mave\AppData\Local\Temp\FreeCommander3112\B9DC.tmp" -SENDER=2293900 -AUTOCLOSE=20
"E:\STÁHNUTO\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"D:\PROGRAMY\FreeCommander\FcContextMenu64.exe" -CLOSE
=========Mozilla firefox=========
ProfilePath - C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=D:\PROGRAMY\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.131.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.131.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-09 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-09 234560]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2016-11-14 1353680]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-05-03 1893496]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=D:\PROGRAMY\Steam\steam.exe [2017-06-08 3042592]
"DAEMON Tools Lite Automount"=E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe [2016-11-17 4958912]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2016-10-25 292848]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2016-03-11 1314432]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15 587288]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-07-10 17:22:56 ----D---- C:\AdwCleaner
2017-07-10 16:35:09 ----A---- C:\Windows\system32\drivers\hidgamemap.sys
2017-07-10 16:34:29 ----D---- C:\ProgramData\Disc-Soft
2017-07-10 12:02:56 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2017-07-10 09:13:47 ----D---- C:\rsit
2017-07-10 09:13:47 ----D---- C:\Program Files\trend micro
2017-06-23 00:19:18 ----D---- C:\ProgramData\GOG.com
2017-06-21 09:37:42 ----D---- C:\Users\Mave\AppData\Roaming\Io Interactive
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ie4uinit.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\urlmon.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-06-16 16:50:41 ----A---- C:\Windows\system32\msfeeds.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\iedkcs32.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\dxtrans.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\vbscript.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iesetup.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iertutil.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\ieapfltr.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\webcheck.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmled.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieUnatt.exe
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieui.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieframe.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\dxtmsft.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\wininet.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jsproxy.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9diag.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript.dll
2017-06-16 16:50:37 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-06-16 16:50:36 ----A---- C:\Windows\system32\msrating.dll
2017-06-16 16:50:35 ----A---- C:\Windows\system32\mshtml.dll
2017-06-16 16:50:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-06-16 16:50:29 ----A---- C:\Windows\system32\wuaueng.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\win32k.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\shell32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ntdll.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\tquery.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\schannel.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcss.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcrt4.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\mssrch.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\lsasrv.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\KernelBase.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\afd.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\tquery.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64win.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\winsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\srcore.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\smss.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\secur32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rstrui.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\PrintBrmUi.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ntvdm64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\lsass.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\localspl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\netio.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\appid.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\csrsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\conhost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cdosys.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\HelpPane.exe
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\user.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups2.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wucltux.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuauclt.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wow64cpu.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\sspisrv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msmmsp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\FntCache.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\cdd.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\apisetschema.dll
======List of files/folders modified in the last 1 month======
2017-07-10 17:38:09 ----D---- C:\Windows\Temp
2017-07-10 17:37:54 ----D---- C:\Windows\system32\config
2017-07-10 17:30:40 ----D---- C:\Windows\System32
2017-07-10 17:30:40 ----D---- C:\Windows\inf
2017-07-10 17:30:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-07-10 17:26:21 ----D---- C:\ProgramData\NVIDIA
2017-07-10 17:23:44 ----D---- C:\Windows
2017-07-10 16:35:22 ----SHD---- C:\System Volume Information
2017-07-10 16:35:22 ----D---- C:\Windows\system32\DriverStore
2017-07-10 16:35:17 ----D---- C:\Windows\system32\drivers
2017-07-10 16:34:29 ----HD---- C:\ProgramData
2017-07-10 15:46:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-10 09:13:47 ----RD---- C:\Program Files
2017-07-10 09:06:19 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-07-10 09:06:15 ----RD---- C:\Program Files (x86)
2017-07-08 20:35:01 ----D---- C:\Windows\Tasks
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wfp
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wbem
2017-07-08 20:34:43 ----D---- C:\Windows\system32\catroot2
2017-07-08 20:34:43 ----D---- C:\Users\Mave\AppData\Roaming\vlc
2017-07-08 20:34:37 ----D---- C:\Windows\registration
2017-07-07 07:42:01 ----D---- C:\Users\Mave\AppData\Roaming\DAEMON Tools Lite
2017-07-07 07:42:00 ----D---- C:\Windows\debug
2017-07-03 14:00:31 ----A---- C:\Windows\SYSWOW64\EasyAntiCheat.exe
2017-07-01 15:00:27 ----D---- C:\ProgramData\Origin
2017-07-01 15:00:19 ----D---- C:\Users\Mave\AppData\Roaming\Origin
2017-07-01 08:55:30 ----D---- C:\Windows\SysWOW64
2017-07-01 08:15:59 ----SHD---- C:\Windows\Installer
2017-07-01 08:11:08 ----D---- C:\Program Files (x86)\Google
2017-07-01 08:10:59 ----D---- C:\Windows\system32\Tasks
2017-07-01 08:09:57 ----SD---- C:\Users\Mave\AppData\Roaming\Microsoft
2017-06-27 01:08:22 ----D---- C:\Users\Mave\AppData\Roaming\TS3Client
2017-06-22 13:32:45 ----D---- C:\Windows\rescache
2017-06-19 12:49:08 ----D---- C:\Windows\Microsoft.NET
2017-06-19 12:46:55 ----RSD---- C:\Windows\assembly
2017-06-17 23:21:14 ----D---- C:\Program Files (x86)\Rockstar Games
2017-06-17 23:21:06 ----D---- C:\Program Files\Rockstar Games
2017-06-16 17:01:02 ----D---- C:\Windows\winsxs
2017-06-16 17:00:22 ----D---- C:\Program Files\Microsoft Silverlight
2017-06-16 17:00:22 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-06-16 16:59:54 ----D---- C:\Program Files\Internet Explorer
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migration
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migration
2017-06-16 16:59:53 ----D---- C:\Windows\system32\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\system32\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\Boot
2017-06-16 16:59:53 ----D---- C:\Windows\PolicyDefinitions
2017-06-16 16:59:53 ----D---- C:\Windows\AppPatch
2017-06-16 16:59:53 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-16 16:53:33 ----D---- C:\Windows\system32\MRT
2017-06-16 16:52:09 ----AC---- C:\Windows\system32\MRT.exe
2017-06-16 16:26:23 ----D---- C:\Users\Mave\AppData\Roaming\New Technology Studio
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hidgamemap;Game Controller Mapper; C:\Windows\system32\DRIVERS\hidgamemap.sys [2017-07-10 112312]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2016-10-25 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2016-10-25 15232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2016-11-20 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2016-11-20 47672]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2016-10-25 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2016-10-25 786416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-03 99288]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 npusbio;npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [2013-07-10 38400]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2017-05-02 218040]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-05-03 57976]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-10-25 805088]
R3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-21 79976]
S3 cpuz130;cpuz130; \??\C:\Users\Mave\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2016-11-25 18816]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-03 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-03 390616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-11-14 119864]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-03 450168]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-11-17 1473216]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-11-14 361816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-07-14 107192]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-07-14 128696]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S2 Origin Web Helper Service;Origin Web Helper Service; D:\PROGRAMY\Origin\OriginWebHelperService.exe [2017-07-01 3148184]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-06-26 1522184]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2017-07-03 383016]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-05-14 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-07-10 175560]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 Origin Client Service;Origin Client Service; D:\PROGRAMY\Origin\OriginClientService.exe [2017-07-01 2168208]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-14 52920]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: WIN se vrací zpět, občas zamrznou ikony
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: WIN se vrací zpět, občas zamrznou ikony
Omlouvám se, ale musel jsem valit do práce na noční, takže ten postup s OTM udělám až zítra. Doufám, že nové zapnutí PC nebude mít vliv na již provedené věci co jsme podnikli.
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: WIN se vrací zpět, občas zamrznou ikony
OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: WIN se vrací zpět, občas zamrznou ikony
Zde je novy log z RSIT
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mave at 2017-07-11 08:02:12
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 67 GB (59%) free of 114 GB
Total RAM: 14274 MB (88% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:02:14, on 11.7.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18698)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\Mave.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [Steam] "D:\PROGRAMY\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\PROGRAMY\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\PROGRAMY\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8075 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
taskeng.exe {14948B15-37CA-4957-BE3F-6F43241961E6}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\Windows\system32\svchost.exe -k imgsvc
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a7fb7a40-dbf3-4e81-80d0-1025b1babe43 -SystemEventPortName:HostProcess-9166a882-ad3e-4525-bc73-0d092b57ec64 -IoCancelEventPortName:HostProcess-b99ff02f-bbb5-4288-a13e-b8eac8c5c973 -NonStateChangingEventPortName:HostProcess-ac50f47a-2e82-4028-a453-38a1772f86d6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a7e2d77c-d2ee-4afc-9a35-84953370de78 -DeviceGroupId:WpdFsGroup
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
taskeng.exe {CF431051-DE14-4DC9-B146-8923BE559594}
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "-14266465301774230161-1152707446-2129824440-1419939578824454966-955302429-732043631
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
taskmgr.exe /3
"C:\Users\Mave\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
=========Mozilla firefox=========
ProfilePath - C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=D:\PROGRAMY\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.131.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.131.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-09 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-09 234560]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2016-11-14 1353680]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-05-03 1893496]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=D:\PROGRAMY\Steam\steam.exe [2017-06-08 3042592]
"DAEMON Tools Lite Automount"=E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe [2016-11-17 4958912]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2016-10-25 292848]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2016-03-11 1314432]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-07-11 07:58:00 ----D---- C:\_OTM
2017-07-10 17:22:56 ----D---- C:\AdwCleaner
2017-07-10 16:35:09 ----A---- C:\Windows\system32\drivers\hidgamemap.sys
2017-07-10 16:34:29 ----D---- C:\ProgramData\Disc-Soft
2017-07-10 12:02:56 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2017-07-10 09:13:47 ----D---- C:\rsit
2017-07-10 09:13:47 ----D---- C:\Program Files\trend micro
2017-06-23 00:19:18 ----D---- C:\ProgramData\GOG.com
2017-06-21 09:37:42 ----D---- C:\Users\Mave\AppData\Roaming\Io Interactive
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ie4uinit.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\urlmon.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-06-16 16:50:41 ----A---- C:\Windows\system32\msfeeds.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\iedkcs32.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\dxtrans.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\vbscript.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iesetup.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iertutil.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\ieapfltr.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\webcheck.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmled.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieUnatt.exe
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieui.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieframe.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\dxtmsft.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\wininet.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jsproxy.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9diag.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript.dll
2017-06-16 16:50:37 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-06-16 16:50:36 ----A---- C:\Windows\system32\msrating.dll
2017-06-16 16:50:35 ----A---- C:\Windows\system32\mshtml.dll
2017-06-16 16:50:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-06-16 16:50:29 ----A---- C:\Windows\system32\wuaueng.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\win32k.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\shell32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ntdll.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\tquery.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\schannel.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcss.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcrt4.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\mssrch.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\lsasrv.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\KernelBase.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\afd.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\tquery.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64win.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\winsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\srcore.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\smss.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\secur32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rstrui.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\PrintBrmUi.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ntvdm64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\lsass.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\localspl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\netio.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\appid.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\csrsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\conhost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cdosys.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\HelpPane.exe
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\user.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups2.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wucltux.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuauclt.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wow64cpu.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\sspisrv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msmmsp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\FntCache.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\cdd.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\apisetschema.dll
======List of files/folders modified in the last 1 month======
2017-07-11 08:02:06 ----D---- C:\Windows\Temp
2017-07-11 08:01:12 ----D---- C:\ProgramData\NVIDIA
2017-07-11 07:58:46 ----D---- C:\Windows\system32\config
2017-07-10 17:30:40 ----D---- C:\Windows\System32
2017-07-10 17:30:40 ----D---- C:\Windows\inf
2017-07-10 17:30:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-07-10 17:23:44 ----D---- C:\Windows
2017-07-10 16:35:22 ----SHD---- C:\System Volume Information
2017-07-10 16:35:22 ----D---- C:\Windows\system32\DriverStore
2017-07-10 16:35:17 ----D---- C:\Windows\system32\drivers
2017-07-10 16:34:29 ----HD---- C:\ProgramData
2017-07-10 15:46:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-10 09:13:47 ----RD---- C:\Program Files
2017-07-10 09:06:19 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-07-10 09:06:15 ----RD---- C:\Program Files (x86)
2017-07-08 20:35:01 ----D---- C:\Windows\Tasks
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wfp
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wbem
2017-07-08 20:34:43 ----D---- C:\Windows\system32\catroot2
2017-07-08 20:34:43 ----D---- C:\Users\Mave\AppData\Roaming\vlc
2017-07-08 20:34:37 ----D---- C:\Windows\registration
2017-07-07 07:42:01 ----D---- C:\Users\Mave\AppData\Roaming\DAEMON Tools Lite
2017-07-07 07:42:00 ----D---- C:\Windows\debug
2017-07-03 14:00:31 ----A---- C:\Windows\SYSWOW64\EasyAntiCheat.exe
2017-07-01 15:00:27 ----D---- C:\ProgramData\Origin
2017-07-01 15:00:19 ----D---- C:\Users\Mave\AppData\Roaming\Origin
2017-07-01 08:55:30 ----D---- C:\Windows\SysWOW64
2017-07-01 08:15:59 ----SHD---- C:\Windows\Installer
2017-07-01 08:11:08 ----D---- C:\Program Files (x86)\Google
2017-07-01 08:10:59 ----D---- C:\Windows\system32\Tasks
2017-07-01 08:09:57 ----SD---- C:\Users\Mave\AppData\Roaming\Microsoft
2017-06-27 01:08:22 ----D---- C:\Users\Mave\AppData\Roaming\TS3Client
2017-06-22 13:32:45 ----D---- C:\Windows\rescache
2017-06-19 12:49:08 ----D---- C:\Windows\Microsoft.NET
2017-06-19 12:46:55 ----RSD---- C:\Windows\assembly
2017-06-17 23:21:14 ----D---- C:\Program Files (x86)\Rockstar Games
2017-06-17 23:21:06 ----D---- C:\Program Files\Rockstar Games
2017-06-16 17:01:02 ----D---- C:\Windows\winsxs
2017-06-16 17:00:22 ----D---- C:\Program Files\Microsoft Silverlight
2017-06-16 17:00:22 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-06-16 16:59:54 ----D---- C:\Program Files\Internet Explorer
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migration
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migration
2017-06-16 16:59:53 ----D---- C:\Windows\system32\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\system32\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\Boot
2017-06-16 16:59:53 ----D---- C:\Windows\PolicyDefinitions
2017-06-16 16:59:53 ----D---- C:\Windows\AppPatch
2017-06-16 16:59:53 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-16 16:53:33 ----D---- C:\Windows\system32\MRT
2017-06-16 16:52:09 ----AC---- C:\Windows\system32\MRT.exe
2017-06-16 16:26:23 ----D---- C:\Users\Mave\AppData\Roaming\New Technology Studio
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hidgamemap;Game Controller Mapper; C:\Windows\system32\DRIVERS\hidgamemap.sys [2017-07-10 112312]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2016-10-25 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2016-10-25 15232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2016-11-20 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2016-11-20 47672]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2016-10-25 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2016-10-25 786416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-03 99288]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 npusbio;npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [2013-07-10 38400]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2017-05-02 218040]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-05-03 57976]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-10-25 805088]
R3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-21 79976]
S3 cpuz130;cpuz130; \??\C:\Users\Mave\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2016-11-25 18816]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-03 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-03 390616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-11-14 119864]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-03 450168]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-11-17 1473216]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-11-14 361816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-07-14 107192]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-07-14 128696]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S2 Origin Web Helper Service;Origin Web Helper Service; D:\PROGRAMY\Origin\OriginWebHelperService.exe [2017-07-01 3148184]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-06-26 1522184]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2017-07-03 383016]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-05-14 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-07-10 175560]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 Origin Client Service;Origin Client Service; D:\PROGRAMY\Origin\OriginClientService.exe [2017-07-01 2168208]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-14 52920]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
-----------------EOF-----------------
A ZDE JE LOG Z OTM
Files moved on Reboot...
C:\Users\Mave\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Mave\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully.
File move failed. C:\Windows\temp\05776BDB-9259-424C-B7F8-8391DE19F8AFcc0.1d2e2774d023d19\nisfull.vdm scheduled to be moved on reboot.
Registry entries deleted on Reboot...
Logfile of random's system information tool 1.10 (written by random/random)
Run by Mave at 2017-07-11 08:02:12
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 67 GB (59%) free of 114 GB
Total RAM: 14274 MB (88% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:02:14, on 11.7.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18698)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\trend micro\Mave.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKCU\..\Run: [Steam] "D:\PROGRAMY\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Windows\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - D:\PROGRAMY\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - D:\PROGRAMY\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8075 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
taskeng.exe {14948B15-37CA-4957-BE3F-6F43241961E6}
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
C:\Windows\system32\svchost.exe -k imgsvc
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a7fb7a40-dbf3-4e81-80d0-1025b1babe43 -SystemEventPortName:HostProcess-9166a882-ad3e-4525-bc73-0d092b57ec64 -IoCancelEventPortName:HostProcess-b99ff02f-bbb5-4288-a13e-b8eac8c5c973 -NonStateChangingEventPortName:HostProcess-ac50f47a-2e82-4028-a453-38a1772f86d6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:a7e2d77c-d2ee-4afc-9a35-84953370de78 -DeviceGroupId:WpdFsGroup
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
taskeng.exe {CF431051-DE14-4DC9-B146-8923BE559594}
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe "-14266465301774230161-1152707446-2129824440-1419939578824454966-955302429-732043631
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
taskmgr.exe /3
"C:\Users\Mave\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
=========Mozilla firefox=========
ProfilePath - C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=D:\PROGRAMY\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.131.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.131.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
C:\Users\Mave\AppData\Roaming\Mozilla\Firefox\Profiles\8wxz1aiy.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-05-09 571456]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-09 234560]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2016-11-14 1353680]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2017-05-03 1893496]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-09-30 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=D:\PROGRAMY\Steam\steam.exe [2017-06-08 3042592]
"DAEMON Tools Lite Automount"=E:\= PROGRAMY =\DAEMON Tools Lite\DTAgent.exe [2016-11-17 4958912]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2016-10-25 292848]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"CanonQuickMenu"=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [2016-03-11 1314432]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-07-11 07:58:00 ----D---- C:\_OTM
2017-07-10 17:22:56 ----D---- C:\AdwCleaner
2017-07-10 16:35:09 ----A---- C:\Windows\system32\drivers\hidgamemap.sys
2017-07-10 16:34:29 ----D---- C:\ProgramData\Disc-Soft
2017-07-10 12:02:56 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2017-07-10 09:13:47 ----D---- C:\rsit
2017-07-10 09:13:47 ----D---- C:\Program Files\trend micro
2017-06-23 00:19:18 ----D---- C:\ProgramData\GOG.com
2017-06-21 09:37:42 ----D---- C:\Users\Mave\AppData\Roaming\Io Interactive
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-06-16 16:50:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\inseng.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\iernonce.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-06-16 16:50:42 ----A---- C:\Windows\system32\ie4uinit.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-06-16 16:50:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\urlmon.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-06-16 16:50:41 ----A---- C:\Windows\system32\msfeeds.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\iedkcs32.dll
2017-06-16 16:50:41 ----A---- C:\Windows\system32\dxtrans.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-06-16 16:50:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\vbscript.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iesetup.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\iertutil.dll
2017-06-16 16:50:40 ----A---- C:\Windows\system32\ieapfltr.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-06-16 16:50:39 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\webcheck.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\mshtmled.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieUnatt.exe
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieui.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\ieframe.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\dxtmsft.dll
2017-06-16 16:50:39 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\wininet.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jsproxy.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9diag.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript9.dll
2017-06-16 16:50:38 ----A---- C:\Windows\system32\jscript.dll
2017-06-16 16:50:37 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-06-16 16:50:36 ----A---- C:\Windows\system32\msrating.dll
2017-06-16 16:50:35 ----A---- C:\Windows\system32\mshtml.dll
2017-06-16 16:50:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-06-16 16:50:29 ----A---- C:\Windows\system32\wuaueng.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\win32k.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\shell32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ole32.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\occache.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\ntdll.dll
2017-06-16 16:50:29 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-06-16 16:50:29 ----A---- C:\Windows\system32\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\shell32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\tquery.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\schannel.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcss.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\rpcrt4.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\oleaut32.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\mssrch.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\lsasrv.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\KernelBase.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\kerberos.dll
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\srv.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\drivers\afd.sys
2017-06-16 16:50:28 ----A---- C:\Windows\system32\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\tquery.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64win.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wow64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wintrust.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\winsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\win32spl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\wdigest.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\usp10.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\TSpkg.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\sspicli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\srcore.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\smss.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\secur32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rundll32.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rstrui.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\rpchttp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\PrintBrmUi.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\oleres.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ntvdm64.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ncrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msv1_0.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssvp.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssphtb.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\mssph.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\msscntrs.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\MigAutoPlay.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\lsass.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\localspl.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\kernel32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\gdi32.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\ExplorerFrame.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\tdx.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\netio.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\drivers\appid.sys
2017-06-16 16:50:27 ----A---- C:\Windows\system32\csrsrv.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptnet.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cryptbase.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\conhost.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\certcli.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\cdosys.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\bcrypt.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\atmfd.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidsvc.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-06-16 16:50:27 ----A---- C:\Windows\system32\appidapi.dll
2017-06-16 16:50:27 ----A---- C:\Windows\system32\adtschema.dll
2017-06-16 16:50:27 ----A---- C:\Windows\HelpPane.exe
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-06-16 16:50:26 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\user.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuwebv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups2.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wups.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wudriver.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wucltux.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuauclt.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapp.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wuapi.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\wow64cpu.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\sspisrv.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\srclient.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssprxy.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\mssitlb.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msshooks.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msobjs.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msmmsp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\msaudite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\lpk.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\fontsub.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\FntCache.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\DWrite.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\dciman32.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\credssp.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\comcat.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\cdd.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\auditpol.exe
2017-06-16 16:50:26 ----A---- C:\Windows\system32\atmlib.dll
2017-06-16 16:50:26 ----A---- C:\Windows\system32\apisetschema.dll
======List of files/folders modified in the last 1 month======
2017-07-11 08:02:06 ----D---- C:\Windows\Temp
2017-07-11 08:01:12 ----D---- C:\ProgramData\NVIDIA
2017-07-11 07:58:46 ----D---- C:\Windows\system32\config
2017-07-10 17:30:40 ----D---- C:\Windows\System32
2017-07-10 17:30:40 ----D---- C:\Windows\inf
2017-07-10 17:30:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-07-10 17:23:44 ----D---- C:\Windows
2017-07-10 16:35:22 ----SHD---- C:\System Volume Information
2017-07-10 16:35:22 ----D---- C:\Windows\system32\DriverStore
2017-07-10 16:35:17 ----D---- C:\Windows\system32\drivers
2017-07-10 16:34:29 ----HD---- C:\ProgramData
2017-07-10 15:46:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-07-10 09:13:47 ----RD---- C:\Program Files
2017-07-10 09:06:19 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-07-10 09:06:15 ----RD---- C:\Program Files (x86)
2017-07-08 20:35:01 ----D---- C:\Windows\Tasks
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wfp
2017-07-08 20:35:01 ----D---- C:\Windows\system32\wbem
2017-07-08 20:34:43 ----D---- C:\Windows\system32\catroot2
2017-07-08 20:34:43 ----D---- C:\Users\Mave\AppData\Roaming\vlc
2017-07-08 20:34:37 ----D---- C:\Windows\registration
2017-07-07 07:42:01 ----D---- C:\Users\Mave\AppData\Roaming\DAEMON Tools Lite
2017-07-07 07:42:00 ----D---- C:\Windows\debug
2017-07-03 14:00:31 ----A---- C:\Windows\SYSWOW64\EasyAntiCheat.exe
2017-07-01 15:00:27 ----D---- C:\ProgramData\Origin
2017-07-01 15:00:19 ----D---- C:\Users\Mave\AppData\Roaming\Origin
2017-07-01 08:55:30 ----D---- C:\Windows\SysWOW64
2017-07-01 08:15:59 ----SHD---- C:\Windows\Installer
2017-07-01 08:11:08 ----D---- C:\Program Files (x86)\Google
2017-07-01 08:10:59 ----D---- C:\Windows\system32\Tasks
2017-07-01 08:09:57 ----SD---- C:\Users\Mave\AppData\Roaming\Microsoft
2017-06-27 01:08:22 ----D---- C:\Users\Mave\AppData\Roaming\TS3Client
2017-06-22 13:32:45 ----D---- C:\Windows\rescache
2017-06-19 12:49:08 ----D---- C:\Windows\Microsoft.NET
2017-06-19 12:46:55 ----RSD---- C:\Windows\assembly
2017-06-17 23:21:14 ----D---- C:\Program Files (x86)\Rockstar Games
2017-06-17 23:21:06 ----D---- C:\Program Files\Rockstar Games
2017-06-16 17:01:02 ----D---- C:\Windows\winsxs
2017-06-16 17:00:22 ----D---- C:\Program Files\Microsoft Silverlight
2017-06-16 17:00:22 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2017-06-16 16:59:54 ----D---- C:\Program Files\Internet Explorer
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\migration
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migwiz
2017-06-16 16:59:53 ----D---- C:\Windows\system32\migration
2017-06-16 16:59:53 ----D---- C:\Windows\system32\en-US
2017-06-16 16:59:53 ----D---- C:\Windows\system32\cs-CZ
2017-06-16 16:59:53 ----D---- C:\Windows\system32\Boot
2017-06-16 16:59:53 ----D---- C:\Windows\PolicyDefinitions
2017-06-16 16:59:53 ----D---- C:\Windows\AppPatch
2017-06-16 16:59:53 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-16 16:53:33 ----D---- C:\Windows\system32\MRT
2017-06-16 16:52:09 ----AC---- C:\Windows\system32\MRT.exe
2017-06-16 16:26:23 ----D---- C:\Users\Mave\AppData\Roaming\New Technology Studio
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hidgamemap;Game Controller Mapper; C:\Windows\system32\DRIVERS\hidgamemap.sys [2017-07-10 112312]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2016-10-25 20464]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2016-08-25 295000]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2016-10-25 15232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2016-11-20 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2016-11-20 47672]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2016-10-25 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2016-10-25 786416]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-03 99288]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2016-08-25 135928]
R3 npusbio;npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [2013-07-10 38400]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2017-05-02 218040]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;NVVHCI Enumerator Service; C:\Windows\system32\DRIVERS\nvvhci.sys [2017-05-03 57976]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2016-10-25 805088]
R3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-21 79976]
S3 cpuz130;cpuz130; \??\C:\Users\Mave\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 cpuz136;cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2016-11-25 18816]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2016-11-25 192200]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-03 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-03 390616]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2016-11-14 119864]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-03 450168]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\= PROGRAMY =\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-11-17 1473216]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2016-11-14 361816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-07-14 107192]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-07-14 128696]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S2 Origin Web Helper Service;Origin Web Helper Service; D:\PROGRAMY\Origin\OriginWebHelperService.exe [2017-07-01 3148184]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-01-16 317400]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-06-26 1522184]
S3 EasyAntiCheat;EasyAntiCheat; C:\Windows\syswow64\EasyAntiCheat.exe [2017-07-03 383016]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-07-01 153168]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-05-14 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-07-10 175560]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 Origin Client Service;Origin Client Service; D:\PROGRAMY\Origin\OriginClientService.exe [2017-07-01 2168208]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-14 52920]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-14 136360]
-----------------EOF-----------------
A ZDE JE LOG Z OTM
Files moved on Reboot...
C:\Users\Mave\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Mave\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
C:\Users\Mave\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully.
File move failed. C:\Windows\temp\05776BDB-9259-424C-B7F8-8391DE19F8AFcc0.1d2e2774d023d19\nisfull.vdm scheduled to be moved on reboot.
Registry entries deleted on Reboot...
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: WIN se vrací zpět, občas zamrznou ikony
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: WIN se vrací zpět, občas zamrznou ikony
Bohužel žádná změna 
To krokování zpátky dělá i ve FreeCommanderu. Ikony na začátku při spuštění PC vůbec nereagují, pomáhá jen otevřit Správce úloh a najednou to "rozmrzne" a jede to. Po nějaké době ty problémy přestanou úplně, zase do nového spuštění PC.
To krokování zpátky dělá i ve FreeCommanderu. Ikony na začátku při spuštění PC vůbec nereagují, pomáhá jen otevřit Správce úloh a najednou to "rozmrzne" a jede to. Po nějaké době ty problémy přestanou úplně, zase do nového spuštění PC.-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: WIN se vrací zpět, občas zamrznou ikony
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: WIN se vrací zpět, občas zamrznou ikony
Hmm, tak MBAM jsem nainstaloval, spouštím jako správce a nemůžu vůbec na nic kliknout. Je to na záložce Kontrolní panel a vůbec to nereaguje, celý okno je zamrzlý do doby, než spustím něco jinýho, pak můžu MBAM křížkem shodit nebo přesouvat po ploše (po přesunu to opět zamrzne), ale to je vše. Asi mám v komplu nějakou odolnou mrchu .... Máte nějakou radu co s tím? Prohledával jsem rady na těch stránkách MBAM, ale nenašel jsem radu na můj problém a má angličtina taky není zrovna nejlepší 
Edit: zkoušel jsem i vypnout Microsoft Security Essentials
EDIT2: tak sotva jsem to dopsal a ze zvědavosti spustil ještě jednou, tak už to jede a scanuju, zvláštní ....
Edit: zkoušel jsem i vypnout Microsoft Security Essentials
EDIT2: tak sotva jsem to dopsal a ze zvědavosti spustil ještě jednou, tak už to jede a scanuju, zvláštní ....
-
Rudy
- Site Admin
- Příspěvky: 119669
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: WIN se vrací zpět, občas zamrznou ikony
Opravdu divné.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: WIN se vrací zpět, občas zamrznou ikony
Zde je log MBAM skenu:
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 11.07.17
Čas skenování: 19:43
Logovací soubor: MBAM-log.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.1.2.1733
Verze komponentů: 1.0.160
Aktualizovat verzi balíku komponent: 1.0.2343
Licence: Zkušební
-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: Mave-PC\Mave
-Shrnutí skenování-
Typ skenování: Vlastní skenování
Výsledek: Dokončeno
Skenované objekty: 683223
Zjištěné hrozby: 3
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 2 hod, 42 min, 40 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 3
PUP.Optional.DownLoadAdmin, D:\WINDOWS - STARY\INSTALLER\EA172.MSI, Žádná uživatelská akce, [5], [301032],1.0.2343
RiskWare.Tool.HCK, F:\= ZÁLOHA =\FLESKA\FLESKA - PRACOVNI\PROGRAMY\RA724\KEYGEN.EXE, Žádná uživatelská akce, [2269], [139223],1.0.2343
PUP.Optional.ASK, F:\= ZÁLOHA =\PROGRAMY\KMP.EXE, Žádná uživatelská akce, [541], [383618],1.0.2343
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 11.07.17
Čas skenování: 19:43
Logovací soubor: MBAM-log.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.1.2.1733
Verze komponentů: 1.0.160
Aktualizovat verzi balíku komponent: 1.0.2343
Licence: Zkušební
-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: Mave-PC\Mave
-Shrnutí skenování-
Typ skenování: Vlastní skenování
Výsledek: Dokončeno
Skenované objekty: 683223
Zjištěné hrozby: 3
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 2 hod, 42 min, 40 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 3
PUP.Optional.DownLoadAdmin, D:\WINDOWS - STARY\INSTALLER\EA172.MSI, Žádná uživatelská akce, [5], [301032],1.0.2343
RiskWare.Tool.HCK, F:\= ZÁLOHA =\FLESKA\FLESKA - PRACOVNI\PROGRAMY\RA724\KEYGEN.EXE, Žádná uživatelská akce, [2269], [139223],1.0.2343
PUP.Optional.ASK, F:\= ZÁLOHA =\PROGRAMY\KMP.EXE, Žádná uživatelská akce, [541], [383618],1.0.2343
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Přispějete na provoz fóra?