pomalý comp prosím o kontrolu logu
Napsal: 30 led 2018 16:45
Dobrý den
Vybyla se baterie základní desky a po aplikaci nové, kterou mě dělal můj známý a zaroveň mě prej odviroval počítač. Nevím, jakým softwarem to dělal, ale prej našel asi 40 virů. Když jsem donesl comp domů, tak se zhoršil start systémů na několik minut a také pomalý start některých aplikací(Thunderbirth, Firefox atd).
Prosím o kontrolu logu z Rsit. Pod logem z Rsit jsem si dovolil dát Adwarecleaner jehož výpis zasílám níže.
Logfile of random's system information tool 1.10 (written by random/random)
Run by PC1 at 2018-01-30 16:27:40
Microsoft Windows 7 Enterprise Service Pack 1
System drive C: has 755 GB (79%) free of 954 GB
Total RAM: 8097 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:27:56, on 30.1.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18894)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files\trend micro\PC1.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - (no file)
O2 - BHO: (no name) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - (no file)
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - (no file)
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DTSAudioService - DTS - C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IObit Uninstaller Service (IObitUnSvr) - IObit - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: TabletService - Unknown owner - C:\Genius\ioTablet\TabletService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10448 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
/QuitInfo:0000000000000418;000000000000041C; /AddRef;
C:\Windows\system32\svchost.exe -k NetworkService
/QuitInfo:00000000000005BC;00000000000005C4; /AddRef;
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe"
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
taskeng.exe {ED562CAF-F4BD-4EF9-BE02-1720D8EE1A40}
"C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
C:\Windows\system32\EscSvc64.exe
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Genius\ioTablet\TabletService.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Genius\ioTablet\gTabletTask.exe"
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b4f92a26-b014-4712-be35-cecd9e493a4b -SystemEventPortName:HostProcess-30079add-3108-4ea2-a34f-8a0d0e2bb3f8 -IoCancelEventPortName:HostProcess-18552fc7-aec3-4b7e-94f5-0b08ae12d27d -NonStateChangingEventPortName:HostProcess-5d055ee1-5f1b-4934-8e18-5794abb6d20d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7d99edf9-1a4c-4bb6-8261-296a894f3b18 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe" /srvupt
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"c:\program files (x86)\teamviewer\TeamViewer_Desktop.exe" --IPCport 5939
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2828.0.1048688407\1297617046" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" "C:\Users\PC1\AppData\LocalLow\Mozilla\Temp-{8fdb87ed-c10f-4088-832b-45aa26234980}" 2828 "\\.\pipe\gecko-crash-server-pipe.2828" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2828.13.1371272064\1575566169" -childID 2 -isForBrowser -intPrefs 5:50|6:-1|28:1000|34:20|35:5|36:10|45:128|46:10000|51:0|53:400|54:1|55:0|56:0|61:0|62:120|63:120|99:2|100:1|115:5000|125:0|127:0|138:10000|150:-1|158:24|159:32768|161:0|162:0|170:5|174:1048576|175:100|176:5000|178:600|180:1|188:20|191:4|195:0|204:60000| -boolPrefs 1:0|2:0|4:0|11:1|26:1|27:1|30:0|33:1|37:1|38:0|39:0|40:0|43:1|44:1|47:0|48:0|49:0|50:0|52:0|57:1|58:1|59:0|60:1|64:1|65:1|66:0|67:1|68:1|69:0|70:1|73:0|74:0|77:1|78:1|82:1|83:1|84:0|85:0|86:0|88:0|89:0|90:1|91:1|92:1|95:1|96:0|98:0|101:1|102:0|109:0|114:0|117:1|120:1|122:1|126:0|129:1|132:1|133:1|139:1|140:0|141:1|143:0|149:0|151:1|152:0|153:1|156:0|157:0|160:1|163:0|165:1|167:1|168:0|177:1|182:0|183:1|184:0|185:1|186:0|187:0|189:1|190:1|193:0|196:0|197:0|198:1|199:1|200:0|201:1|202:1|203:1|205:0|206:0|208:0|217:1|218:1|219:0|220:0|221:0| -stringPrefs "3:7;release|97:0;|142:3;1.0|154:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|155:4;high|192:38;{8fdb87ed-c10f-4088-832b-45aa26234980}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 2828 "\\.\pipe\gecko-crash-server-pipe.2828" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2828.20.335003718\1574185721" -childID 3 -isForBrowser -intPrefs 5:50|6:-1|28:1000|34:20|35:5|36:10|45:128|46:10000|51:0|53:400|54:1|55:0|56:0|61:0|62:120|63:120|99:2|100:1|115:5000|125:0|127:0|138:10000|150:-1|158:24|159:32768|161:0|162:0|170:5|174:1048576|175:100|176:5000|178:600|180:1|188:20|191:4|195:0|204:60000| -boolPrefs 1:0|2:0|4:0|11:1|26:1|27:1|30:0|33:1|37:1|38:0|39:0|40:0|43:1|44:1|47:0|48:0|49:0|50:0|52:0|57:1|58:1|59:0|60:1|64:1|65:1|66:0|67:1|68:1|69:0|70:1|73:0|74:0|77:1|78:1|82:1|83:1|84:0|85:0|86:0|88:0|89:0|90:1|91:1|92:1|95:1|96:0|98:0|101:1|102:0|109:0|114:0|117:1|120:1|122:1|126:0|129:1|132:1|133:1|139:1|140:0|141:1|143:0|149:0|151:1|152:0|153:1|156:0|157:0|160:1|163:0|165:1|167:1|168:0|177:1|182:0|183:1|184:0|185:1|186:0|187:0|189:1|190:1|193:0|196:0|197:0|198:1|199:1|200:0|201:1|202:1|203:1|205:0|206:0|208:0|217:1|218:1|219:0|220:0|221:0| -stringPrefs "3:7;release|97:0;|142:3;1.0|154:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|155:4;high|192:38;{8fdb87ed-c10f-4088-832b-45aa26234980}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 2828 "\\.\pipe\gecko-crash-server-pipe.2828" tab
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2828.34.2106407480\1716815924" -childID 5 -isForBrowser -intPrefs 5:50|6:-1|28:1000|34:20|35:5|36:10|45:128|46:10000|51:0|53:400|54:1|55:0|56:0|61:0|62:120|63:120|99:2|100:1|115:5000|125:0|127:0|138:10000|150:-1|158:24|159:32768|161:0|162:0|170:5|174:1048576|175:100|176:5000|178:600|180:1|188:20|191:4|195:0|204:60000| -boolPrefs 1:0|2:0|4:0|11:1|26:1|27:1|30:0|33:1|37:1|38:0|39:0|40:0|43:1|44:1|47:0|48:0|49:0|50:0|52:0|57:1|58:1|59:0|60:1|64:1|65:1|66:0|67:1|68:1|69:0|70:1|73:0|74:0|77:1|78:1|82:1|83:1|84:0|85:0|86:0|88:0|89:0|90:1|91:1|92:1|95:1|96:0|98:0|101:1|102:0|109:0|114:0|117:1|120:1|122:1|126:0|129:1|132:1|133:1|139:1|140:0|141:1|143:0|149:0|151:1|152:0|153:1|156:0|157:0|160:1|163:0|165:1|167:1|168:0|177:1|182:0|183:1|184:0|185:1|186:0|187:0|189:1|190:1|193:0|196:0|197:0|198:1|199:1|200:0|201:1|202:1|203:1|205:0|206:0|208:0|217:1|218:1|219:0|220:0|221:0| -stringPrefs "3:7;release|97:0;|142:3;1.0|154:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|155:4;high|192:38;{8fdb87ed-c10f-4088-832b-45aa26234980}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 2828 "\\.\pipe\gecko-crash-server-pipe.2828" tab
C:\Windows\system32\sppsvc.exe
"C:\Windows\system32\RunDll32.exe" "C:\Windows\system32\WerConCpl.dll", LaunchErcApp -queuereporting
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\PC1\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\EPSON L455 Series Update {AF6D69B3-6A8D-4B0F-8F0E-CE752CF25800}.job - C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNGE.EXE /EXE:"{AF6D69B3-6A8D-4B0F-8F0E-CE752CF25800}" /F:"Update"
=========Mozilla firefox=========
ProfilePath - C:\Users\PC1\AppData\Roaming\Mozilla\Firefox\Profiles\zqjmxnz7.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.187 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.187 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Users\PC1\AppData\Roaming\Mozilla\Firefox\Profiles\zqjmxnz7.default\extensions\
bingsearch.full@microsoft.com
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
C:\Users\PC1\AppData\Roaming\Mozilla\Firefox\Profiles\zqjmxnz7.default\searchplugins\
atlascz.xml
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22 2478880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-21 958328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-21 820672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IntelliPoint"=c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2015-06-01 411056]
"HP LaserJet M2727 MFP Series Fax"=C:\Program Files (x86)\HP\hp LaserJet M2727\hppfaxprintersrv.exe [2009-09-22 3700736]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-01-05 246120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-10-06 27832264]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-01-09 10257872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS AiChargerPlus Execute]
C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [2010-11-08 465536]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ioTablet]
C:\Genius\ioTablet\gTabTaskBar.exe [2012-03-23 47104]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2011-11-01 1053056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSyncProcess]
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-12-16 1508408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-10-04 220992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2014-02-03 377368]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rainlendar2]
C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVBg_DTS]
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2018-01-27 1489920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2018-01-27 9228800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TiVme Agent]
C:\Program Files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe [2011-04-18 131584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ToolBoxFX]
C:\Program Files (x86)\HP\ToolBoxFX\bin\HPTLBXFX.exe [2010-01-27 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Remote Control.lnk]
C:\PROGRA~2\GIGABYTE\U8300U~1\CONRCtl.exe [2011-05-03 114688]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Snagit 11.lnk]
C:\PROGRA~2\TECHSM~1\SNAGIT~2\Snagit32.exe [2013-02-21 9479024]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^PC1^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~2\MICROS~1\Office14\ONENOTEM.EXE [2015-10-13 228552]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-05-20 284440]
[HKEY_CURRENT_USER\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"TiVme Agent"=C:\Program Files (x86)\GIGABYTE\vivoTVScheduleAgent.exe []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2015-06-01 451584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"wave4"=wdmaud.drv
"wave5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2018-01-30 16:27:40 ----D---- C:\rsit
2018-01-30 16:15:32 ----D---- C:\ProgramData\SWCUTemp
2018-01-28 16:47:18 ----D---- C:\Program Files (x86)\Backup Thunderbird
2018-01-28 12:22:56 ----A---- C:\Windows\system32\NicInstC.dll
2018-01-28 12:22:56 ----A---- C:\Windows\system32\e1cmsg.dll
2018-01-28 12:22:56 ----A---- C:\Windows\system32\drivers\e1c62x64.sys
2018-01-28 00:13:43 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-01-28 00:13:43 ----A---- C:\Windows\SYSWOW64\PeerDist.dll
2018-01-28 00:13:43 ----A---- C:\Windows\SYSWOW64\P2P.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\srcore.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\srclient.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\rstrui.exe
2018-01-28 00:13:43 ----A---- C:\Windows\system32\pnrpsvc.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\PeerDistWSDDiscoProv.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\PeerDistSvc.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\PeerDistHttpTrans.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\PeerDist.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\p2psvc.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\P2P.dll
2018-01-28 00:13:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-01-28 00:13:42 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-01-28 00:13:42 ----A---- C:\Windows\system32\dxtrans.dll
2018-01-28 00:13:42 ----A---- C:\Windows\system32\dxtmsft.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\wininet.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\webcheck.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\vbscript.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\urlmon.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\occache.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\msrating.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\mshtmled.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\mshtml.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\msfeeds.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\jsproxy.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\jscript9diag.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\jscript9.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\jscript.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\inseng.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieUnatt.exe
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieui.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\iesetup.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\iertutil.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\iernonce.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieframe.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-01-28 00:13:23 ----A---- C:\Windows\system32\iedkcs32.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieapfltr.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ie4uinit.exe
2018-01-28 00:13:18 ----A---- C:\Windows\SYSWOW64\WcsPlugInService.dll
2018-01-28 00:13:18 ----A---- C:\Windows\SYSWOW64\mscms.dll
2018-01-28 00:13:18 ----A---- C:\Windows\SYSWOW64\icm32.dll
2018-01-28 00:13:18 ----A---- C:\Windows\system32\WcsPlugInService.dll
2018-01-28 00:13:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-01-28 00:13:18 ----A---- C:\Windows\system32\mscms.dll
2018-01-28 00:13:18 ----A---- C:\Windows\system32\icm32.dll
2018-01-28 00:13:18 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-01-28 00:13:18 ----A---- C:\Windows\system32\drivers\http.sys
2018-01-28 00:13:18 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2018-01-28 00:13:18 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\wshqos.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\traffic.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\rasser.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\wshqos.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\wshnetbs.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\winlogon.exe
2018-01-28 00:13:17 ----A---- C:\Windows\system32\winhttp.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\tzres.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\traffic.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\spoolsv.exe
2018-01-28 00:13:17 ----A---- C:\Windows\system32\nshwfp.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\nlasvc.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\nlaapi.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\ncsi.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\msxml6r.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\msxml6.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\lpk.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\IKEEXT.DLL
2018-01-28 00:13:17 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2018-01-28 00:13:17 ----A---- C:\Windows\system32\fontsub.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\srv.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\rdbss.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\pacer.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\netbios.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\dciman32.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\BFE.DLL
2018-01-28 00:13:17 ----A---- C:\Windows\system32\atmlib.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\atmfd.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\rtm.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\iprtprio.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rtm.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rasser.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rasmxs.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rasdiag.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rascfg.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\mprdim.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\iprtrmgr.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\iprtprio.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\drivers\wanarp.sys
2018-01-28 00:13:04 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2018-01-28 00:13:04 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\WcnEapPeerProxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\WcnEapAuthProxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\user.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\shell32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wow64win.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wow64cpu.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wow64.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wisptis.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wintrust.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\winsrv.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\WinSCard.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\winload.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\win32k.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wfapigp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wdigest.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wcncsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\WcnApi.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\vmictimeprovider.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\vmicsvc.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\vmicres.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\TSpkg.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\taskcomp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\TabSvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\sysmain.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\sspisrv.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\sspicli.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\smss.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\schedsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\schannel.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\shell32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\secur32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\rpchttp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\rpcss.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\rpcrt4.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\oleres.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ole32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ntvdm64.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ntdll.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ncrypt.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\msv1_0.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\msobjs.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\msaudite.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\MPSSVC.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\lsass.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\lsasrv.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\KernelBase.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\kernel32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\kerberos.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\itss.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\itircl.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\INETRES.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\inetcomm.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\icfupgd.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\IcCoinstall.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\hal.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\gpedit.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\fdWCN.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\appid.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\csrsrv.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\cryptsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\cryptnet.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\cryptbase.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\crypt32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\credssp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\consent.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\conhost.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\comcat.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\certcli.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\bcrypt.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\authui.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\auditpol.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appinfo.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appidsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appidapi.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\apisetschema.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\advapi32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\adtschema.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\actxprxy.dll
2018-01-27 23:12:54 ----D---- C:\Windows\system32\DAX3
2018-01-27 23:12:54 ----D---- C:\Windows\system32\DAX2
2018-01-27 23:12:54 ----D---- C:\ProgramData\Audyssey Labs
2018-01-27 23:10:22 ----A---- C:\Windows\system32\YamahaAE3.dll
2018-01-27 23:10:21 ----A---- C:\Windows\system32\YamahaAE2.dll
2018-01-27 23:10:21 ----A---- C:\Windows\system32\YamahaAE.dll
2018-01-27 23:10:21 ----A---- C:\Windows\system32\WavesGUILib64.dll
2018-01-27 23:10:21 ----A---- C:\Windows\system32\tossaemaxapo64.dll
2018-01-27 23:10:20 ----A---- C:\Windows\system32\tossaeapo64.dll
2018-01-27 23:10:20 ----A---- C:\Windows\system32\toseaeapo64.dll
2018-01-27 23:10:20 ----A---- C:\Windows\system32\tosasfapo64.dll
2018-01-27 23:10:20 ----A---- C:\Windows\system32\tosade.dll
2018-01-27 23:10:19 ----A---- C:\Windows\system32\tepeqapo64.dll
2018-01-27 23:10:19 ----A---- C:\Windows\system32\tbb_waves.dll
2018-01-27 23:10:19 ----A---- C:\Windows\system32\tadefxapo264.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\tadefxapo.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRSWOW64.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRSTSX64.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRSTSH64.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRSHP64.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRRPTR64.dll
2018-01-27 23:10:17 ----A---- C:\Windows\SYSWOW64\SRCOM.dll
2018-01-27 23:10:17 ----A---- C:\Windows\system32\SRCOM64.dll
2018-01-27 23:10:17 ----A---- C:\Windows\system32\SRCOM.dll
2018-01-27 23:10:16 ----A---- C:\Windows\system32\SRAPO64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\sltech64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\slprp64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\slcnt64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\sl3apo64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\SFSS_APO.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\SFNHK64.dll
2018-01-27 23:10:14 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2018-01-27 23:10:14 ----A---- C:\Windows\SYSWOW64\SEHDHF32.dll
2018-01-27 23:10:14 ----A---- C:\Windows\system32\SFCOM64.dll
2018-01-27 23:10:14 ----A---- C:\Windows\system32\SFAPO64.dll
2018-01-27 23:10:14 ----A---- C:\Windows\system32\SEHDRA64.dll
2018-01-27 23:10:14 ----A---- C:\Windows\system32\SEHDHF64.dll
2018-01-27 23:10:13 ----A---- C:\Windows\SYSWOW64\SECOMN32.dll
2018-01-27 23:10:13 ----A---- C:\Windows\system32\SECOMN64.dll
2018-01-27 23:10:13 ----A---- C:\Windows\system32\SEAPO64.dll
2018-01-27 23:10:13 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2018-01-27 23:10:12 ----A---- C:\Windows\system32\RtPgEx64.dll
2018-01-27 23:10:12 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2018-01-27 23:10:11 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2018-01-27 23:10:09 ----A---- C:\Windows\system32\drivers\rtkSSTsetting.dat
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RtkCfg64.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RtkApi64.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RTEEP64A.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RTEEL64A.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RTEEG64A.dll
2018-01-27 23:10:06 ----A---- C:\Windows\system32\RTEED64A.dll
2018-01-27 23:10:06 ----A---- C:\Windows\system32\RtDataProc64.dll
2018-01-27 23:10:06 ----A---- C:\Windows\system32\RTCOM64.dll
2018-01-27 23:10:05 ----A---- C:\Windows\system32\RP3DHT64.dll
2018-01-27 23:10:05 ----A---- C:\Windows\system32\RP3DAA64.dll
2018-01-27 23:10:05 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2018-01-27 23:10:04 ----A---- C:\Windows\system32\RltkAPO64.dll
2018-01-27 23:10:03 ----A---- C:\Windows\SYSWOW64\RltkAPO.dll
2018-01-27 23:10:03 ----A---- C:\Windows\system32\RCoRes64.dat
2018-01-27 23:10:03 ----A---- C:\Windows\system32\RCoInstII64.dll
2018-01-27 23:10:03 ----A---- C:\Windows\system32\R4EEP64A.dll
2018-01-27 23:10:02 ----A---- C:\Windows\system32\R4EEL64A.dll
2018-01-27 23:10:02 ----A---- C:\Windows\system32\R4EEG64A.dll
2018-01-27 23:10:02 ----A---- C:\Windows\system32\R4EED64A.dll
2018-01-27 23:10:02 ----A---- C:\Windows\system32\R4EEA64A.dll
2018-01-27 23:10:01 ----A---- C:\Windows\system32\NAHIMICV3apo.dll
2018-01-27 23:10:00 ----A---- C:\Windows\system32\NAHIMICV2apo.dll
2018-01-27 23:10:00 ----A---- C:\Windows\system32\NahimicAPONSControl.dll
2018-01-27 23:10:00 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2018-01-27 23:10:00 ----A---- C:\Windows\system32\MISS_APO.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxVoiceAPO4064.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2018-01-27 23:09:56 ----A---- C:\Windows\system32\MaxxAudioRenderAVX64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioRender64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioCapture64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioAPO7064.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2018-01-27 23:09:54 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2018-01-27 23:09:54 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2018-01-27 23:09:54 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\KAAPORT64.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\IntelSstCApoPropPage.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\IntelSSTAPO.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMUI.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMLimiter.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMHVS.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMEQ_Voice.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMEQ.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMClariFi.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMAPO.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HiFiDAX2APIPCLL.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HiFiDAX2API.dll
2018-01-27 23:09:45 ----A---- C:\Windows\system32\HarmanAudioInterface.dll
2018-01-27 23:09:44 ----A---- C:\Windows\system32\FMAPO64.dll
2018-01-27 23:09:44 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DolbyDAX2APOvlldp.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DolbyDAX2APOv211.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DolbyDAX2APOv201.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DolbyDAX2APOProp.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DDPP64AF3.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DDPP64A.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPO64AF3.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPO64A.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPD64AF3.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPD64A.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPA64F3.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPA64.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DAX3APOv251.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DAX3APOProp.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\CX64Proxy.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\CX64APO.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\CAF64APO2.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\Caf64api.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\AudysseyEfx.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\audioLibVc.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\AERTAR64.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\AERTAC64.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2018-01-27 23:05:52 ----A---- C:\Windows\system32\drivers\asmtxhci.sys
2018-01-27 23:05:52 ----A---- C:\Windows\system32\drivers\asmthub3.sys
2018-01-27 23:05:52 ----A---- C:\Windows\system32\asmtxhcicoinstaller.dll
2018-01-27 23:05:36 ----A---- C:\Windows\system32\drivers\btfilter.sys
2018-01-27 23:04:45 ----A---- C:\Windows\system32\mv91xxm.dll
2018-01-27 23:04:45 ----A---- C:\Windows\system32\drivers\mvxxmm.sys
2018-01-27 23:04:45 ----A---- C:\Windows\system32\drivers\mvs91xx.sys
2018-01-27 23:04:36 ----A---- C:\Windows\system32\hpmews02.dll
2018-01-27 23:04:26 ----A---- C:\Windows\system32\drivers\jraid.sys
2018-01-27 23:04:15 ----A---- C:\Windows\system32\drivers\SET11CB.tmp
2018-01-27 23:04:15 ----A---- C:\Windows\system32\drivers\AthDfu.sys
2018-01-27 22:51:18 ----D---- C:\Windows\IObit
2018-01-27 22:50:59 ----A---- C:\Windows\SYSWOW64\drivers\HWiNFO64A.SYS
2018-01-27 22:39:29 ----D---- C:\ProgramData\ProductData
2018-01-27 22:39:16 ----D---- C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2018-01-27 22:38:37 ----D---- C:\Users\PC1\AppData\Roaming\IObit
2018-01-27 22:38:37 ----D---- C:\Program Files (x86)\IObit
2018-01-27 22:38:34 ----D---- C:\ProgramData\IObit
2018-01-27 20:52:57 ----A---- C:\Windows\system32\aswBoot.exe
2018-01-27 20:08:30 ----D---- C:\Windows\system32\%LOCALAPPDATA%
2018-01-27 19:25:59 ----D---- C:\bc6f40dca3d373020c4137ca5c
2018-01-27 15:30:20 ----D---- C:\Program Files\Malwarebytes
2018-01-27 15:29:46 ----D---- C:\ProgramData\MB2Migration
2018-01-05 16:43:26 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
======List of files/folders modified in the last 1 month======
2018-01-30 16:27:45 ----D---- C:\Program Files\trend micro
2018-01-30 16:27:29 ----D---- C:\Windows\Temp
2018-01-30 16:26:31 ----D---- C:\Windows\system32\config
2018-01-30 16:21:31 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-01-30 16:21:29 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-30 16:20:31 ----D---- C:\Windows\System32
2018-01-30 16:20:31 ----D---- C:\Windows\inf
2018-01-30 16:20:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-01-30 16:20:28 ----D---- C:\Users\PC1\AppData\Roaming\Skype
2018-01-30 16:15:32 ----D---- C:\ProgramData
2018-01-30 16:09:42 ----D---- C:\Windows\Prefetch
2018-01-30 16:09:40 ----D---- C:\AdwCleaner
2018-01-29 15:57:37 ----D---- C:\Windows\rescache
2018-01-29 12:50:17 ----D---- C:\Windows\winsxs
2018-01-29 01:52:56 ----D---- C:\Windows\SYSWOW64\en-US
2018-01-29 01:52:56 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-01-29 01:52:56 ----D---- C:\Windows\system32\en-US
2018-01-29 01:52:56 ----D---- C:\Windows\system32\cs-CZ
2018-01-29 01:52:56 ----D---- C:\Windows\PolicyDefinitions
2018-01-28 22:23:14 ----D---- C:\Program Files (x86)\TeamViewer
2018-01-28 17:03:55 ----SHD---- C:\System Volume Information
2018-01-28 16:47:18 ----RD---- C:\Program Files (x86)
2018-01-28 16:33:53 ----D---- C:\Windows\pss
2018-01-28 16:22:34 ----D---- C:\Windows
2018-01-28 16:17:16 ----D---- C:\Windows\SoftwareDistribution
2018-01-28 15:07:17 ----D---- C:\Windows\system32\drivers
2018-01-28 13:18:40 ----D---- C:\Program Files (x86)\Google
2018-01-28 12:40:16 ----D---- C:\Windows\system32\catroot
2018-01-28 12:30:38 ----D---- C:\Windows\system32\Tasks
2018-01-28 12:28:21 ----D---- C:\Users\PC1\AppData\Roaming\TeamViewer
2018-01-28 12:28:17 ----D---- C:\Users\PC1\AppData\Roaming\uTorrent
2018-01-28 12:27:51 ----D---- C:\Windows\Minidump
2018-01-28 12:27:51 ----D---- C:\Windows\debug
2018-01-28 12:27:27 ----D---- C:\Program Files\CCleaner
2018-01-28 12:23:00 ----D---- C:\Windows\system32\DriverStore
2018-01-28 12:18:04 ----D---- C:\Windows\Microsoft.NET
2018-01-28 11:56:46 ----SHD---- C:\Windows\Installer
2018-01-28 11:56:46 ----HD---- C:\Config.Msi
2018-01-28 11:55:28 ----D---- C:\Windows\SysWOW64
2018-01-28 11:55:28 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-01-28 03:40:52 ----RSD---- C:\Windows\assembly
2018-01-28 03:31:35 ----D---- C:\Windows\SYSWOW64\Setup
2018-01-28 03:31:35 ----D---- C:\Windows\ehome
2018-01-28 03:31:35 ----D---- C:\Program Files\Internet Explorer
2018-01-28 03:31:35 ----D---- C:\Program Files (x86)\Internet Explorer
2018-01-28 03:31:34 ----D---- C:\Windows\system32\Setup
2018-01-28 03:31:33 ----D---- C:\Windows\AppPatch
2018-01-28 03:31:32 ----D---- C:\Windows\system32\migration
2018-01-28 03:31:32 ----D---- C:\Windows\system32\Boot
2018-01-28 03:16:02 ----D---- C:\ProgramData\Microsoft Help
2018-01-28 03:15:37 ----D---- C:\Windows\system32\MRT
2018-01-28 03:09:25 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2018-01-28 03:09:13 ----AC---- C:\Windows\system32\MRT.exe
2018-01-28 00:12:58 ----D---- C:\Windows\system32\catroot2
2018-01-27 23:54:52 ----D---- C:\Program Files (x86)\Rainlendar2
2018-01-27 23:12:12 ----D---- C:\Windows\SYSWOW64\RTCOM
2018-01-27 22:50:59 ----D---- C:\Windows\SYSWOW64\drivers
2018-01-27 22:46:54 ----D---- C:\Windows\Panther
2018-01-27 22:46:38 ----D---- C:\ProgramData\VSO
2018-01-27 22:46:37 ----D---- C:\Users\PC1\AppData\Roaming\MPC-HC
2018-01-27 22:38:59 ----D---- C:\Program Files (x86)\Common Files
2018-01-27 22:38:48 ----D---- C:\Windows\Tasks
2018-01-27 15:30:20 ----D---- C:\ProgramData\Malwarebytes
2018-01-27 15:30:20 ----D---- C:\Program Files
2018-01-07 15:49:42 ----D---- C:\Program Files (x86)\FXGlobal Goldenburg Group MetaTrader 4
2018-01-07 13:02:35 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2018-01-06 16:34:30 ----D---- C:\Users\PC1\AppData\Roaming\Audacity
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AiChargerPlus;ASUS Charger Plus Driver; C:\Windows\system32\DRIVERS\AiChargerPlus.sys [2010-11-08 14464]
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-01-05 199448]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-01-05 343768]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-01-05 57696]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-01-05 84384]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-01-05 358672]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-20 557848]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2018-01-27 123704]
R0 mvs91xx;mvs91xx; C:\Windows\system32\DRIVERS\mvs91xx.sys [2018-01-27 334984]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-28 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2010-08-24 13440]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-01-05 185096]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-01-05 321512]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-01-05 149344]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-01-05 110336]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-01-05 1025176]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-01-12 457896]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2018-01-27 27552]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-02-03 129944]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-01-12 146648]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-01-05 204456]
R3 asmthub3;ASMedia USB3.1 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2018-01-27 151416]
R3 asmtxhci;ASMedia XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2018-01-27 456568]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2018-01-27 609704]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2018-01-28 498640]
R3 HPEWSFXBULK;HPEWSFXBULK; C:\Windows\system32\drivers\hpfx64bulk.sys [2007-07-16 20504]
R3 HPFXFAX;HPFXFAX; C:\Windows\system32\drivers\hpfx64fax.sys [2007-07-16 23064]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2010-08-17 26136]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2018-01-27 5826560]
R3 ioFakDrv;ioVirtual Device; C:\Windows\system32\DRIVERS\ioFakDrv.sys [2010-12-15 23936]
R3 ioFakMap;MiniHid Driver Service for ioFakeDrv Interface layer; C:\Windows\system32\DRIVERS\ioFakMap.sys [2010-12-15 12672]
R3 IUFileFilter;IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [2017-06-06 21928]
R3 IURegProcessFilter;IURegProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegProcessFilter.sys [2017-09-28 21872]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2007-10-12 50072]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 PID_0928;Logitech QuickCam Express(PID_0928); C:\Windows\system32\DRIVERS\LV561V64.SYS [2007-10-12 582680]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S2 CXIR;Conexant Polaris IR Transceiver; C:\Windows\system32\drivers\cxcir64.sys [2011-05-03 44032]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-01-05 46976]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2018-01-27 55448]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 cpuz143;cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [2018-01-28 48960]
S3 CXPOLARIS;Conexant Polaris Video Capture; C:\Windows\system32\drivers\cxpolar64.sys [2011-05-03 447872]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 HPFXBULK;HPFXBULK; C:\Windows\system32\drivers\hpfx64bulk.sys [2007-07-16 20504]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 ioTablet;Tablet Minidriver for ioTablet; C:\Windows\system32\DRIVERS\ioTablet.sys [2012-04-05 35328]
S3 ioTblMap;Mini Mapper for ioCentre; C:\Windows\system32\DRIVERS\ioTblMap.sys [2011-08-25 13200]
S3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-05-25 966144]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 Point64;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2011-08-01 45416]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 tccp;tccp; C:\Windows\system32\DRIVERS\tccp.sys [2013-04-28 30264]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [2011-06-13 922240]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-01-05 301168]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DTSAudioService;DTSAudioService; C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [2018-01-27 218760]
R2 EpsonScanSvc;Epson Scanner Service; C:\Windows\system32\EscSvc64.exe [2012-05-16 144560]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2009-11-12 136192]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2011-05-03 247152]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2016-07-22 754784]
R2 TabletService;TabletService; C:\Genius\ioTablet\TabletService.exe [2012-02-06 25600]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-12-18 10803440]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-01-05 7538536]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 IObitUnSvr;IObit Uninstaller Service; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [2017-06-14 206112]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-22 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-01-28 116224]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-01-30 194512]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-09-12 159960]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-11-30 718888]
S3 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
-----------------EOF-----------------
Zde log z Adwcleaner:
# AdwCleaner 7.0.2.1 - Logfile created on Tue Jan 30 15:09:40 2018
# Updated on 2017/29/08 by Malwarebytes
# Running on Windows 7 Enterprise (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\PC1\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\PC1\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\PC1\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\PC1\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\ProgramData\Application Data\IObit\ASCDownloader
Deleted: C:\Users\All Users\IObit\ASCDownloader
***** [ Files ] *****
No malicious files deleted.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\IOBIT\ASC
Deleted: [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
Deleted: [Key] - HKLM\SOFTWARE\IObit\ASC
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\Advanced SystemCare
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S1].txt - [1411 B] - [2014/8/4 12:25:26]
C:/AdwCleaner/AdwCleaner[S2].txt - [1284 B] - [2014/12/1 11:34:9]
C:/AdwCleaner/AdwCleaner[S3].txt - [1383 B] - [2015/2/14 16:44:6]
C:/AdwCleaner/AdwCleaner[S4].txt - [4530 B] - [2015/3/31 17:9:39]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
Vybyla se baterie základní desky a po aplikaci nové, kterou mě dělal můj známý a zaroveň mě prej odviroval počítač. Nevím, jakým softwarem to dělal, ale prej našel asi 40 virů. Když jsem donesl comp domů, tak se zhoršil start systémů na několik minut a také pomalý start některých aplikací(Thunderbirth, Firefox atd).
Prosím o kontrolu logu z Rsit. Pod logem z Rsit jsem si dovolil dát Adwarecleaner jehož výpis zasílám níže.
Logfile of random's system information tool 1.10 (written by random/random)
Run by PC1 at 2018-01-30 16:27:40
Microsoft Windows 7 Enterprise Service Pack 1
System drive C: has 755 GB (79%) free of 954 GB
Total RAM: 8097 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:27:56, on 30.1.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18894)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files\trend micro\PC1.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - (no file)
O2 - BHO: (no name) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - (no file)
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - (no file)
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - (no file)
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DTSAudioService - DTS - C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IObit Uninstaller Service (IObitUnSvr) - IObit - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: TabletService - Unknown owner - C:\Genius\ioTablet\TabletService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10448 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
/QuitInfo:0000000000000418;000000000000041C; /AddRef;
C:\Windows\system32\svchost.exe -k NetworkService
/QuitInfo:00000000000005BC;00000000000005C4; /AddRef;
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe"
"C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
taskeng.exe {ED562CAF-F4BD-4EF9-BE02-1720D8EE1A40}
"C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
C:\Windows\system32\EscSvc64.exe
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Genius\ioTablet\TabletService.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Genius\ioTablet\gTabletTask.exe"
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b4f92a26-b014-4712-be35-cecd9e493a4b -SystemEventPortName:HostProcess-30079add-3108-4ea2-a34f-8a0d0e2bb3f8 -IoCancelEventPortName:HostProcess-18552fc7-aec3-4b7e-94f5-0b08ae12d27d -NonStateChangingEventPortName:HostProcess-5d055ee1-5f1b-4934-8e18-5794abb6d20d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7d99edf9-1a4c-4bb6-8261-296a894f3b18 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe"
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe" /srvupt
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
"C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log
"c:\program files (x86)\teamviewer\TeamViewer_Desktop.exe" --IPCport 5939
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2828.0.1048688407\1297617046" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" "C:\Users\PC1\AppData\LocalLow\Mozilla\Temp-{8fdb87ed-c10f-4088-832b-45aa26234980}" 2828 "\\.\pipe\gecko-crash-server-pipe.2828" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2828.13.1371272064\1575566169" -childID 2 -isForBrowser -intPrefs 5:50|6:-1|28:1000|34:20|35:5|36:10|45:128|46:10000|51:0|53:400|54:1|55:0|56:0|61:0|62:120|63:120|99:2|100:1|115:5000|125:0|127:0|138:10000|150:-1|158:24|159:32768|161:0|162:0|170:5|174:1048576|175:100|176:5000|178:600|180:1|188:20|191:4|195:0|204:60000| -boolPrefs 1:0|2:0|4:0|11:1|26:1|27:1|30:0|33:1|37:1|38:0|39:0|40:0|43:1|44:1|47:0|48:0|49:0|50:0|52:0|57:1|58:1|59:0|60:1|64:1|65:1|66:0|67:1|68:1|69:0|70:1|73:0|74:0|77:1|78:1|82:1|83:1|84:0|85:0|86:0|88:0|89:0|90:1|91:1|92:1|95:1|96:0|98:0|101:1|102:0|109:0|114:0|117:1|120:1|122:1|126:0|129:1|132:1|133:1|139:1|140:0|141:1|143:0|149:0|151:1|152:0|153:1|156:0|157:0|160:1|163:0|165:1|167:1|168:0|177:1|182:0|183:1|184:0|185:1|186:0|187:0|189:1|190:1|193:0|196:0|197:0|198:1|199:1|200:0|201:1|202:1|203:1|205:0|206:0|208:0|217:1|218:1|219:0|220:0|221:0| -stringPrefs "3:7;release|97:0;|142:3;1.0|154:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|155:4;high|192:38;{8fdb87ed-c10f-4088-832b-45aa26234980}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 2828 "\\.\pipe\gecko-crash-server-pipe.2828" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2828.20.335003718\1574185721" -childID 3 -isForBrowser -intPrefs 5:50|6:-1|28:1000|34:20|35:5|36:10|45:128|46:10000|51:0|53:400|54:1|55:0|56:0|61:0|62:120|63:120|99:2|100:1|115:5000|125:0|127:0|138:10000|150:-1|158:24|159:32768|161:0|162:0|170:5|174:1048576|175:100|176:5000|178:600|180:1|188:20|191:4|195:0|204:60000| -boolPrefs 1:0|2:0|4:0|11:1|26:1|27:1|30:0|33:1|37:1|38:0|39:0|40:0|43:1|44:1|47:0|48:0|49:0|50:0|52:0|57:1|58:1|59:0|60:1|64:1|65:1|66:0|67:1|68:1|69:0|70:1|73:0|74:0|77:1|78:1|82:1|83:1|84:0|85:0|86:0|88:0|89:0|90:1|91:1|92:1|95:1|96:0|98:0|101:1|102:0|109:0|114:0|117:1|120:1|122:1|126:0|129:1|132:1|133:1|139:1|140:0|141:1|143:0|149:0|151:1|152:0|153:1|156:0|157:0|160:1|163:0|165:1|167:1|168:0|177:1|182:0|183:1|184:0|185:1|186:0|187:0|189:1|190:1|193:0|196:0|197:0|198:1|199:1|200:0|201:1|202:1|203:1|205:0|206:0|208:0|217:1|218:1|219:0|220:0|221:0| -stringPrefs "3:7;release|97:0;|142:3;1.0|154:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|155:4;high|192:38;{8fdb87ed-c10f-4088-832b-45aa26234980}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 2828 "\\.\pipe\gecko-crash-server-pipe.2828" tab
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="2828.34.2106407480\1716815924" -childID 5 -isForBrowser -intPrefs 5:50|6:-1|28:1000|34:20|35:5|36:10|45:128|46:10000|51:0|53:400|54:1|55:0|56:0|61:0|62:120|63:120|99:2|100:1|115:5000|125:0|127:0|138:10000|150:-1|158:24|159:32768|161:0|162:0|170:5|174:1048576|175:100|176:5000|178:600|180:1|188:20|191:4|195:0|204:60000| -boolPrefs 1:0|2:0|4:0|11:1|26:1|27:1|30:0|33:1|37:1|38:0|39:0|40:0|43:1|44:1|47:0|48:0|49:0|50:0|52:0|57:1|58:1|59:0|60:1|64:1|65:1|66:0|67:1|68:1|69:0|70:1|73:0|74:0|77:1|78:1|82:1|83:1|84:0|85:0|86:0|88:0|89:0|90:1|91:1|92:1|95:1|96:0|98:0|101:1|102:0|109:0|114:0|117:1|120:1|122:1|126:0|129:1|132:1|133:1|139:1|140:0|141:1|143:0|149:0|151:1|152:0|153:1|156:0|157:0|160:1|163:0|165:1|167:1|168:0|177:1|182:0|183:1|184:0|185:1|186:0|187:0|189:1|190:1|193:0|196:0|197:0|198:1|199:1|200:0|201:1|202:1|203:1|205:0|206:0|208:0|217:1|218:1|219:0|220:0|221:0| -stringPrefs "3:7;release|97:0;|142:3;1.0|154:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|155:4;high|192:38;{8fdb87ed-c10f-4088-832b-45aa26234980}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 2828 "\\.\pipe\gecko-crash-server-pipe.2828" tab
C:\Windows\system32\sppsvc.exe
"C:\Windows\system32\RunDll32.exe" "C:\Windows\system32\WerConCpl.dll", LaunchErcApp -queuereporting
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\PC1\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\EPSON L455 Series Update {AF6D69B3-6A8D-4B0F-8F0E-CE752CF25800}.job - C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNGE.EXE /EXE:"{AF6D69B3-6A8D-4B0F-8F0E-CE752CF25800}" /F:"Update"
=========Mozilla firefox=========
ProfilePath - C:\Users\PC1\AppData\Roaming\Mozilla\Firefox\Profiles\zqjmxnz7.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.187 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 27.0.0.187 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Users\PC1\AppData\Roaming\Mozilla\Firefox\Profiles\zqjmxnz7.default\extensions\
bingsearch.full@microsoft.com
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
C:\Users\PC1\AppData\Roaming\Mozilla\Firefox\Profiles\zqjmxnz7.default\searchplugins\
atlascz.xml
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22 2478880]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-21 958328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-21 820672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IntelliPoint"=c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-08-01 2417032]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2015-06-01 411056]
"HP LaserJet M2727 MFP Series Fax"=C:\Program Files (x86)\HP\hp LaserJet M2727\hppfaxprintersrv.exe [2009-09-22 3700736]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-01-05 246120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-10-06 27832264]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-01-09 10257872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS AiChargerPlus Execute]
C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [2010-11-08 465536]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [2008-07-22 150528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ioTablet]
C:\Genius\ioTablet\gTabTaskBar.exe [2012-03-23 47104]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
C:\Windows\RaidTool\xInsIDE.exe [2010-01-19 43632]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2011-11-01 1053056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OfficeSyncProcess]
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2015-09-02 721504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-12-16 1508408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe [2011-10-04 220992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2014-02-03 377368]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rainlendar2]
C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVBg_DTS]
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2018-01-27 1489920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2018-01-27 9228800]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TiVme Agent]
C:\Program Files (x86)\GIGABYTE\vivoTV\ScheduleAgent.exe [2011-04-18 131584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ToolBoxFX]
C:\Program Files (x86)\HP\ToolBoxFX\bin\HPTLBXFX.exe [2010-01-27 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Remote Control.lnk]
C:\PROGRA~2\GIGABYTE\U8300U~1\CONRCtl.exe [2011-05-03 114688]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Snagit 11.lnk]
C:\PROGRA~2\TECHSM~1\SNAGIT~2\Snagit32.exe [2013-02-21 9479024]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^PC1^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~2\MICROS~1\Office14\ONENOTEM.EXE [2015-10-13 228552]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-05-20 284440]
[HKEY_CURRENT_USER\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"TiVme Agent"=C:\Program Files (x86)\GIGABYTE\vivoTVScheduleAgent.exe []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2015-06-01 451584]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"wave4"=wdmaud.drv
"wave5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2018-01-30 16:27:40 ----D---- C:\rsit
2018-01-30 16:15:32 ----D---- C:\ProgramData\SWCUTemp
2018-01-28 16:47:18 ----D---- C:\Program Files (x86)\Backup Thunderbird
2018-01-28 12:22:56 ----A---- C:\Windows\system32\NicInstC.dll
2018-01-28 12:22:56 ----A---- C:\Windows\system32\e1cmsg.dll
2018-01-28 12:22:56 ----A---- C:\Windows\system32\drivers\e1c62x64.sys
2018-01-28 00:13:43 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-01-28 00:13:43 ----A---- C:\Windows\SYSWOW64\PeerDist.dll
2018-01-28 00:13:43 ----A---- C:\Windows\SYSWOW64\P2P.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\srcore.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\srclient.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\rstrui.exe
2018-01-28 00:13:43 ----A---- C:\Windows\system32\pnrpsvc.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\PeerDistWSDDiscoProv.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\PeerDistSvc.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\PeerDistHttpTrans.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\PeerDist.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\p2psvc.dll
2018-01-28 00:13:43 ----A---- C:\Windows\system32\P2P.dll
2018-01-28 00:13:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-01-28 00:13:42 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-01-28 00:13:42 ----A---- C:\Windows\system32\dxtrans.dll
2018-01-28 00:13:42 ----A---- C:\Windows\system32\dxtmsft.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-01-28 00:13:23 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\wininet.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\webcheck.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\vbscript.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\urlmon.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\occache.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\msrating.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\mshtmled.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\mshtml.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\msfeeds.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\jsproxy.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\jscript9diag.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\jscript9.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\jscript.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\inseng.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieUnatt.exe
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieui.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\iesetup.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\iertutil.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\iernonce.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieframe.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-01-28 00:13:23 ----A---- C:\Windows\system32\iedkcs32.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ieapfltr.dll
2018-01-28 00:13:23 ----A---- C:\Windows\system32\ie4uinit.exe
2018-01-28 00:13:18 ----A---- C:\Windows\SYSWOW64\WcsPlugInService.dll
2018-01-28 00:13:18 ----A---- C:\Windows\SYSWOW64\mscms.dll
2018-01-28 00:13:18 ----A---- C:\Windows\SYSWOW64\icm32.dll
2018-01-28 00:13:18 ----A---- C:\Windows\system32\WcsPlugInService.dll
2018-01-28 00:13:18 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-01-28 00:13:18 ----A---- C:\Windows\system32\mscms.dll
2018-01-28 00:13:18 ----A---- C:\Windows\system32\icm32.dll
2018-01-28 00:13:18 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-01-28 00:13:18 ----A---- C:\Windows\system32\drivers\http.sys
2018-01-28 00:13:18 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2018-01-28 00:13:18 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\wshqos.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\traffic.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\rasser.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-01-28 00:13:17 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\wshqos.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\wshnetbs.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\winlogon.exe
2018-01-28 00:13:17 ----A---- C:\Windows\system32\winhttp.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\tzres.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\traffic.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\spoolsv.exe
2018-01-28 00:13:17 ----A---- C:\Windows\system32\nshwfp.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\nlasvc.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\nlaapi.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\ncsi.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\msxml6r.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\msxml6.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\lpk.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\IKEEXT.DLL
2018-01-28 00:13:17 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2018-01-28 00:13:17 ----A---- C:\Windows\system32\fontsub.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\srv.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\rdbss.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\pacer.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\drivers\netbios.sys
2018-01-28 00:13:17 ----A---- C:\Windows\system32\dciman32.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\BFE.DLL
2018-01-28 00:13:17 ----A---- C:\Windows\system32\atmlib.dll
2018-01-28 00:13:17 ----A---- C:\Windows\system32\atmfd.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\rtm.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\iprtprio.dll
2018-01-28 00:13:04 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rtm.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rasser.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rasmxs.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rasdiag.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\rascfg.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\mprdim.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\iprtrmgr.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\iprtprio.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-01-28 00:13:04 ----A---- C:\Windows\system32\drivers\wanarp.sys
2018-01-28 00:13:04 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2018-01-28 00:13:04 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-01-28 00:13:01 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\WcnEapPeerProxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\WcnEapAuthProxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\user.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\shell32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-01-28 00:13:01 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wow64win.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wow64cpu.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wow64.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wisptis.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wintrust.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\winsrv.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\WinSCard.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\winload.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\win32k.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wfapigp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wdigest.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\wcncsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\WcnApi.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\vmictimeprovider.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\vmicsvc.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\vmicres.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\TSpkg.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\taskcomp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\TabSvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\sysmain.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\sspisrv.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\sspicli.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\smss.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\schedsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\schannel.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\shell32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\secur32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\rpchttp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\rpcss.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\rpcrt4.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\oleres.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ole32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ntvdm64.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ntdll.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\ncrypt.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\msv1_0.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\msobjs.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\msaudite.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\MPSSVC.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\lsass.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\lsasrv.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\KernelBase.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\kernel32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\kerberos.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\itss.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\itircl.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\INETRES.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\inetcomm.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\icfupgd.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\IcCoinstall.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\hal.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\gpedit.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\fdWCN.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\drivers\appid.sys
2018-01-28 00:13:01 ----A---- C:\Windows\system32\csrsrv.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\cryptsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\cryptnet.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\cryptbase.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\crypt32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\credssp.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\consent.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\conhost.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\comcat.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\certcli.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\bcrypt.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\authui.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\auditpol.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appinfo.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appidsvc.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-01-28 00:13:01 ----A---- C:\Windows\system32\appidapi.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\apisetschema.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\advapi32.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\adtschema.dll
2018-01-28 00:13:01 ----A---- C:\Windows\system32\actxprxy.dll
2018-01-27 23:12:54 ----D---- C:\Windows\system32\DAX3
2018-01-27 23:12:54 ----D---- C:\Windows\system32\DAX2
2018-01-27 23:12:54 ----D---- C:\ProgramData\Audyssey Labs
2018-01-27 23:10:22 ----A---- C:\Windows\system32\YamahaAE3.dll
2018-01-27 23:10:21 ----A---- C:\Windows\system32\YamahaAE2.dll
2018-01-27 23:10:21 ----A---- C:\Windows\system32\YamahaAE.dll
2018-01-27 23:10:21 ----A---- C:\Windows\system32\WavesGUILib64.dll
2018-01-27 23:10:21 ----A---- C:\Windows\system32\tossaemaxapo64.dll
2018-01-27 23:10:20 ----A---- C:\Windows\system32\tossaeapo64.dll
2018-01-27 23:10:20 ----A---- C:\Windows\system32\toseaeapo64.dll
2018-01-27 23:10:20 ----A---- C:\Windows\system32\tosasfapo64.dll
2018-01-27 23:10:20 ----A---- C:\Windows\system32\tosade.dll
2018-01-27 23:10:19 ----A---- C:\Windows\system32\tepeqapo64.dll
2018-01-27 23:10:19 ----A---- C:\Windows\system32\tbb_waves.dll
2018-01-27 23:10:19 ----A---- C:\Windows\system32\tadefxapo264.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\tadefxapo.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRSWOW64.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRSTSX64.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRSTSH64.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRSHP64.dll
2018-01-27 23:10:18 ----A---- C:\Windows\system32\SRRPTR64.dll
2018-01-27 23:10:17 ----A---- C:\Windows\SYSWOW64\SRCOM.dll
2018-01-27 23:10:17 ----A---- C:\Windows\system32\SRCOM64.dll
2018-01-27 23:10:17 ----A---- C:\Windows\system32\SRCOM.dll
2018-01-27 23:10:16 ----A---- C:\Windows\system32\SRAPO64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\sltech64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\slprp64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\slcnt64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\sl3apo64.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\SFSS_APO.dll
2018-01-27 23:10:15 ----A---- C:\Windows\system32\SFNHK64.dll
2018-01-27 23:10:14 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2018-01-27 23:10:14 ----A---- C:\Windows\SYSWOW64\SEHDHF32.dll
2018-01-27 23:10:14 ----A---- C:\Windows\system32\SFCOM64.dll
2018-01-27 23:10:14 ----A---- C:\Windows\system32\SFAPO64.dll
2018-01-27 23:10:14 ----A---- C:\Windows\system32\SEHDRA64.dll
2018-01-27 23:10:14 ----A---- C:\Windows\system32\SEHDHF64.dll
2018-01-27 23:10:13 ----A---- C:\Windows\SYSWOW64\SECOMN32.dll
2018-01-27 23:10:13 ----A---- C:\Windows\system32\SECOMN64.dll
2018-01-27 23:10:13 ----A---- C:\Windows\system32\SEAPO64.dll
2018-01-27 23:10:13 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2018-01-27 23:10:12 ----A---- C:\Windows\system32\RtPgEx64.dll
2018-01-27 23:10:12 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2018-01-27 23:10:11 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2018-01-27 23:10:09 ----A---- C:\Windows\system32\drivers\rtkSSTsetting.dat
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RtkCfg64.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RtkApi64.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RTEEP64A.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RTEEL64A.dll
2018-01-27 23:10:07 ----A---- C:\Windows\system32\RTEEG64A.dll
2018-01-27 23:10:06 ----A---- C:\Windows\system32\RTEED64A.dll
2018-01-27 23:10:06 ----A---- C:\Windows\system32\RtDataProc64.dll
2018-01-27 23:10:06 ----A---- C:\Windows\system32\RTCOM64.dll
2018-01-27 23:10:05 ----A---- C:\Windows\system32\RP3DHT64.dll
2018-01-27 23:10:05 ----A---- C:\Windows\system32\RP3DAA64.dll
2018-01-27 23:10:05 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2018-01-27 23:10:04 ----A---- C:\Windows\system32\RltkAPO64.dll
2018-01-27 23:10:03 ----A---- C:\Windows\SYSWOW64\RltkAPO.dll
2018-01-27 23:10:03 ----A---- C:\Windows\system32\RCoRes64.dat
2018-01-27 23:10:03 ----A---- C:\Windows\system32\RCoInstII64.dll
2018-01-27 23:10:03 ----A---- C:\Windows\system32\R4EEP64A.dll
2018-01-27 23:10:02 ----A---- C:\Windows\system32\R4EEL64A.dll
2018-01-27 23:10:02 ----A---- C:\Windows\system32\R4EEG64A.dll
2018-01-27 23:10:02 ----A---- C:\Windows\system32\R4EED64A.dll
2018-01-27 23:10:02 ----A---- C:\Windows\system32\R4EEA64A.dll
2018-01-27 23:10:01 ----A---- C:\Windows\system32\NAHIMICV3apo.dll
2018-01-27 23:10:00 ----A---- C:\Windows\system32\NAHIMICV2apo.dll
2018-01-27 23:10:00 ----A---- C:\Windows\system32\NahimicAPONSControl.dll
2018-01-27 23:10:00 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2018-01-27 23:10:00 ----A---- C:\Windows\system32\MISS_APO.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxVoiceAPO4064.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxVoiceAPO3064.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2018-01-27 23:09:57 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2018-01-27 23:09:56 ----A---- C:\Windows\system32\MaxxAudioRenderAVX64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioRender64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioCapture64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioAPO7064.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioAPO6064.dll
2018-01-27 23:09:55 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2018-01-27 23:09:54 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2018-01-27 23:09:54 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2018-01-27 23:09:54 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\KAAPORT64.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\IntelSstCApoPropPage.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\IntelSSTAPO.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\ICEsoundAPO64.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMUI.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMLimiter.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMHVS.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMEQ_Voice.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMEQ.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMClariFi.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HMAPO.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HiFiDAX2APIPCLL.dll
2018-01-27 23:09:53 ----A---- C:\Windows\system32\HiFiDAX2API.dll
2018-01-27 23:09:45 ----A---- C:\Windows\system32\HarmanAudioInterface.dll
2018-01-27 23:09:44 ----A---- C:\Windows\system32\FMAPO64.dll
2018-01-27 23:09:44 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DolbyDAX2APOvlldp.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DolbyDAX2APOv211.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DolbyDAX2APOv201.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DolbyDAX2APOProp.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DDPP64AF3.dll
2018-01-27 23:09:43 ----A---- C:\Windows\system32\DDPP64A.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPO64AF3.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPO64A.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPD64AF3.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPD64A.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPA64F3.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DDPA64.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DAX3APOv251.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\DAX3APOProp.dll
2018-01-27 23:09:42 ----A---- C:\Windows\system32\CX64Proxy.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\CX64APO.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\CAF64APO2.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\Caf64api.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\AudysseyEfx.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\audioLibVc.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\AERTAR64.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\AERTAC64.dll
2018-01-27 23:09:41 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2018-01-27 23:05:52 ----A---- C:\Windows\system32\drivers\asmtxhci.sys
2018-01-27 23:05:52 ----A---- C:\Windows\system32\drivers\asmthub3.sys
2018-01-27 23:05:52 ----A---- C:\Windows\system32\asmtxhcicoinstaller.dll
2018-01-27 23:05:36 ----A---- C:\Windows\system32\drivers\btfilter.sys
2018-01-27 23:04:45 ----A---- C:\Windows\system32\mv91xxm.dll
2018-01-27 23:04:45 ----A---- C:\Windows\system32\drivers\mvxxmm.sys
2018-01-27 23:04:45 ----A---- C:\Windows\system32\drivers\mvs91xx.sys
2018-01-27 23:04:36 ----A---- C:\Windows\system32\hpmews02.dll
2018-01-27 23:04:26 ----A---- C:\Windows\system32\drivers\jraid.sys
2018-01-27 23:04:15 ----A---- C:\Windows\system32\drivers\SET11CB.tmp
2018-01-27 23:04:15 ----A---- C:\Windows\system32\drivers\AthDfu.sys
2018-01-27 22:51:18 ----D---- C:\Windows\IObit
2018-01-27 22:50:59 ----A---- C:\Windows\SYSWOW64\drivers\HWiNFO64A.SYS
2018-01-27 22:39:29 ----D---- C:\ProgramData\ProductData
2018-01-27 22:39:16 ----D---- C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2018-01-27 22:38:37 ----D---- C:\Users\PC1\AppData\Roaming\IObit
2018-01-27 22:38:37 ----D---- C:\Program Files (x86)\IObit
2018-01-27 22:38:34 ----D---- C:\ProgramData\IObit
2018-01-27 20:52:57 ----A---- C:\Windows\system32\aswBoot.exe
2018-01-27 20:08:30 ----D---- C:\Windows\system32\%LOCALAPPDATA%
2018-01-27 19:25:59 ----D---- C:\bc6f40dca3d373020c4137ca5c
2018-01-27 15:30:20 ----D---- C:\Program Files\Malwarebytes
2018-01-27 15:29:46 ----D---- C:\ProgramData\MB2Migration
2018-01-05 16:43:26 ----A---- C:\Windows\system32\drivers\aswHdsKe.sys
======List of files/folders modified in the last 1 month======
2018-01-30 16:27:45 ----D---- C:\Program Files\trend micro
2018-01-30 16:27:29 ----D---- C:\Windows\Temp
2018-01-30 16:26:31 ----D---- C:\Windows\system32\config
2018-01-30 16:21:31 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-01-30 16:21:29 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-30 16:20:31 ----D---- C:\Windows\System32
2018-01-30 16:20:31 ----D---- C:\Windows\inf
2018-01-30 16:20:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-01-30 16:20:28 ----D---- C:\Users\PC1\AppData\Roaming\Skype
2018-01-30 16:15:32 ----D---- C:\ProgramData
2018-01-30 16:09:42 ----D---- C:\Windows\Prefetch
2018-01-30 16:09:40 ----D---- C:\AdwCleaner
2018-01-29 15:57:37 ----D---- C:\Windows\rescache
2018-01-29 12:50:17 ----D---- C:\Windows\winsxs
2018-01-29 01:52:56 ----D---- C:\Windows\SYSWOW64\en-US
2018-01-29 01:52:56 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-01-29 01:52:56 ----D---- C:\Windows\system32\en-US
2018-01-29 01:52:56 ----D---- C:\Windows\system32\cs-CZ
2018-01-29 01:52:56 ----D---- C:\Windows\PolicyDefinitions
2018-01-28 22:23:14 ----D---- C:\Program Files (x86)\TeamViewer
2018-01-28 17:03:55 ----SHD---- C:\System Volume Information
2018-01-28 16:47:18 ----RD---- C:\Program Files (x86)
2018-01-28 16:33:53 ----D---- C:\Windows\pss
2018-01-28 16:22:34 ----D---- C:\Windows
2018-01-28 16:17:16 ----D---- C:\Windows\SoftwareDistribution
2018-01-28 15:07:17 ----D---- C:\Windows\system32\drivers
2018-01-28 13:18:40 ----D---- C:\Program Files (x86)\Google
2018-01-28 12:40:16 ----D---- C:\Windows\system32\catroot
2018-01-28 12:30:38 ----D---- C:\Windows\system32\Tasks
2018-01-28 12:28:21 ----D---- C:\Users\PC1\AppData\Roaming\TeamViewer
2018-01-28 12:28:17 ----D---- C:\Users\PC1\AppData\Roaming\uTorrent
2018-01-28 12:27:51 ----D---- C:\Windows\Minidump
2018-01-28 12:27:51 ----D---- C:\Windows\debug
2018-01-28 12:27:27 ----D---- C:\Program Files\CCleaner
2018-01-28 12:23:00 ----D---- C:\Windows\system32\DriverStore
2018-01-28 12:18:04 ----D---- C:\Windows\Microsoft.NET
2018-01-28 11:56:46 ----SHD---- C:\Windows\Installer
2018-01-28 11:56:46 ----HD---- C:\Config.Msi
2018-01-28 11:55:28 ----D---- C:\Windows\SysWOW64
2018-01-28 11:55:28 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-01-28 03:40:52 ----RSD---- C:\Windows\assembly
2018-01-28 03:31:35 ----D---- C:\Windows\SYSWOW64\Setup
2018-01-28 03:31:35 ----D---- C:\Windows\ehome
2018-01-28 03:31:35 ----D---- C:\Program Files\Internet Explorer
2018-01-28 03:31:35 ----D---- C:\Program Files (x86)\Internet Explorer
2018-01-28 03:31:34 ----D---- C:\Windows\system32\Setup
2018-01-28 03:31:33 ----D---- C:\Windows\AppPatch
2018-01-28 03:31:32 ----D---- C:\Windows\system32\migration
2018-01-28 03:31:32 ----D---- C:\Windows\system32\Boot
2018-01-28 03:16:02 ----D---- C:\ProgramData\Microsoft Help
2018-01-28 03:15:37 ----D---- C:\Windows\system32\MRT
2018-01-28 03:09:25 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2018-01-28 03:09:13 ----AC---- C:\Windows\system32\MRT.exe
2018-01-28 00:12:58 ----D---- C:\Windows\system32\catroot2
2018-01-27 23:54:52 ----D---- C:\Program Files (x86)\Rainlendar2
2018-01-27 23:12:12 ----D---- C:\Windows\SYSWOW64\RTCOM
2018-01-27 22:50:59 ----D---- C:\Windows\SYSWOW64\drivers
2018-01-27 22:46:54 ----D---- C:\Windows\Panther
2018-01-27 22:46:38 ----D---- C:\ProgramData\VSO
2018-01-27 22:46:37 ----D---- C:\Users\PC1\AppData\Roaming\MPC-HC
2018-01-27 22:38:59 ----D---- C:\Program Files (x86)\Common Files
2018-01-27 22:38:48 ----D---- C:\Windows\Tasks
2018-01-27 15:30:20 ----D---- C:\ProgramData\Malwarebytes
2018-01-27 15:30:20 ----D---- C:\Program Files
2018-01-07 15:49:42 ----D---- C:\Program Files (x86)\FXGlobal Goldenburg Group MetaTrader 4
2018-01-07 13:02:35 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2018-01-06 16:34:30 ----D---- C:\Users\PC1\AppData\Roaming\Audacity
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AiChargerPlus;ASUS Charger Plus Driver; C:\Windows\system32\DRIVERS\AiChargerPlus.sys [2010-11-08 14464]
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [2018-01-05 199448]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys [2018-01-05 343768]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [2018-01-05 57696]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-01-05 84384]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-01-05 358672]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-05-20 557848]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2018-01-27 123704]
R0 mvs91xx;mvs91xx; C:\Windows\system32\DRIVERS\mvs91xx.sys [2018-01-27 334984]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-28 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2010-08-24 13440]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-01-05 185096]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [2018-01-05 321512]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-01-05 149344]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-01-05 110336]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-01-05 1025176]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-01-12 457896]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2018-01-27 27552]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2014-02-03 129944]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-01-12 146648]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-01-05 204456]
R3 asmthub3;ASMedia USB3.1 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2018-01-27 151416]
R3 asmtxhci;ASMedia XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2018-01-27 456568]
R3 ASUSFILTER;ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [2011-09-20 46152]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2018-01-27 609704]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2018-01-28 498640]
R3 HPEWSFXBULK;HPEWSFXBULK; C:\Windows\system32\drivers\hpfx64bulk.sys [2007-07-16 20504]
R3 HPFXFAX;HPFXFAX; C:\Windows\system32\drivers\hpfx64fax.sys [2007-07-16 23064]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2010-08-17 26136]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2018-01-27 5826560]
R3 ioFakDrv;ioVirtual Device; C:\Windows\system32\DRIVERS\ioFakDrv.sys [2010-12-15 23936]
R3 ioFakMap;MiniHid Driver Service for ioFakeDrv Interface layer; C:\Windows\system32\DRIVERS\ioFakMap.sys [2010-12-15 12672]
R3 IUFileFilter;IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [2017-06-06 21928]
R3 IURegProcessFilter;IURegProcessFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegProcessFilter.sys [2017-09-28 21872]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [2007-10-12 50072]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 PID_0928;Logitech QuickCam Express(PID_0928); C:\Windows\system32\DRIVERS\LV561V64.SYS [2007-10-12 582680]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S2 CXIR;Conexant Polaris IR Transceiver; C:\Windows\system32\drivers\cxcir64.sys [2011-05-03 44032]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-01-05 46976]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 ATHDFU;Qualcomm Atheros Valkyrie USB BootROM; C:\Windows\System32\Drivers\AthDfu.sys [2018-01-27 55448]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 cpuz143;cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [2018-01-28 48960]
S3 CXPOLARIS;Conexant Polaris Video Capture; C:\Windows\system32\drivers\cxpolar64.sys [2011-05-03 447872]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 HPFXBULK;HPFXBULK; C:\Windows\system32\drivers\hpfx64bulk.sys [2007-07-16 20504]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 ioTablet;Tablet Minidriver for ioTablet; C:\Windows\system32\DRIVERS\ioTablet.sys [2012-04-05 35328]
S3 ioTblMap;Mini Mapper for ioCentre; C:\Windows\system32\DRIVERS\ioTblMap.sys [2011-08-25 13200]
S3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\netr28ux.sys [2009-05-25 966144]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 Point64;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2011-08-01 45416]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 tccp;tccp; C:\Windows\system32\DRIVERS\tccp.sys [2013-04-28 30264]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [2011-06-13 922240]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-01-05 301168]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DTSAudioService;DTSAudioService; C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [2018-01-27 218760]
R2 EpsonScanSvc;Epson Scanner Service; C:\Windows\system32\EscSvc64.exe [2012-05-16 144560]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2009-11-12 136192]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2011-05-03 247152]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2016-07-22 754784]
R2 TabletService;TabletService; C:\Genius\ioTablet\TabletService.exe [2012-02-06 25600]
R2 TeamViewer;TeamViewer 12; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-12-18 10803440]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-01-05 7538536]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 IObitUnSvr;IObit Uninstaller Service; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [2017-06-14 206112]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-22 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-01-28 116224]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-01-30 194512]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-09-12 159960]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-11-30 718888]
S3 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
-----------------EOF-----------------
Zde log z Adwcleaner:
# AdwCleaner 7.0.2.1 - Logfile created on Tue Jan 30 15:09:40 2018
# Updated on 2017/29/08 by Malwarebytes
# Running on Windows 7 Enterprise (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\PC1\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\PC1\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\Advanced SystemCare
Deleted: C:\ProgramData\Application Data\IObit\Advanced SystemCare
Deleted: C:\Windows\System32\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted: C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\Users\All Users\IObit\Advanced SystemCare
Deleted: C:\Users\PC1\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\PC1\AppData\Roaming\IObit\Advanced SystemCare
Deleted: C:\ProgramData\IObit\ASCDownloader
Deleted: C:\ProgramData\Application Data\IObit\ASCDownloader
Deleted: C:\Users\All Users\IObit\ASCDownloader
***** [ Files ] *****
No malicious files deleted.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\IOBIT\ASC
Deleted: [Key] - HKLM\SOFTWARE\IObit\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\IObit\RealTimeProtector
Deleted: [Key] - HKLM\SOFTWARE\IObit\ASC
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\Drive\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted: [Key] - HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\Advanced SystemCare
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S1].txt - [1411 B] - [2014/8/4 12:25:26]
C:/AdwCleaner/AdwCleaner[S2].txt - [1284 B] - [2014/12/1 11:34:9]
C:/AdwCleaner/AdwCleaner[S3].txt - [1383 B] - [2015/2/14 16:44:6]
C:/AdwCleaner/AdwCleaner[S4].txt - [4530 B] - [2015/3/31 17:9:39]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
Nepouzivaj ani neinstaluj ziadne programy od IObit (Advanced SystemCare a pod.), su to cinske smejdy a mozu nenavratne poskodit system.