Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

pravdepodobne chrom virus

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

pravdepodobne chrom virus

#1 Příspěvek od zail »

zdravim

dnes jsem jako obvikle zapl pc a na jednou se vse seklo, po blizsim proskoumani jsem zjistil zatizeni procesoru na 100 proc. dela to googel chrom, ve spravci jsem dal ukoncit pouze ten jeden soubor co se tvari jako googel chrom, chrom funguje nadale v poradku a i zatizeni kleslo na mich standartnich 3proc. kdyz googel znovu restartuji skoci tam znovu 100 proc zatizeni.
Zde log

Logfile of random's system information tool 1.10 (written by random/random)
Run by lukas_000 at 2018-03-25 17:04:24
Microsoft Windows 10 Home
System drive C: has 166 GB (74%) free of 226 GB
Total RAM: 32710 MB (81% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:04:27, on 25.03.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0015)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe
C:\Program Files (x86)\ASUS\System Level Up Driver\SysLevelUp.exe
C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\ASUS_Manager_Lighting.exe
C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe
C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe
C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe
C:\Program Files (x86)\ASUS\AEGIS\AsSysLevelUpSrc.exe
C:\Program Files (x86)\ASUS\AEGIS\AEGIS_AlertService.exe
C:\Program Files (x86)\ASUS\AEGIS\AEGIS_SysMode.exe
C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
C:\Program Files (x86)\ASUS\AEGIS\AsToastHelper.exe
E:\avast\AvastUI.exe
E:\steam\Steam.exe
E:\steam\bin\cef\cef.win7\steamwebhelper.exe
E:\gog galaxy\GalaxyClient\GalaxyClient.exe
E:\steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe
C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\ProgramData\Razer\SwitchBlade\Apps\Razer\DF495DFD-79F6-34DF-BB1E-E58DB5BDCF2C\RzMiMo.exe
C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe
C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
E:\steam\bin\cef\cef.win7\steamwebhelper.exe
E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
E:\gog galaxy\GalaxyClient\GOG Galaxy Notifications Renderer.exe
C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe
C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe
C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe
C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe
C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
C:\ProgramData\Razer\SwitchBlade\DeathStalker\Razer\1068AAE3-6299-4086-A7F6-0600F5F1D1E5\RzHome.exe
C:\Program Files (x86)\Razer\SwitchBlade\RzAppManager.exe
C:\Program Files\trend micro\lukas_000.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com/?pc=ASJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ASUSWSLoader.exe
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [RzSBHelper] C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] E:\kies\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Kraken71ChromaHelper] C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe /start
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKCU\..\Run: [Steam] "E:\steam\steam.exe" -silent
O4 - HKCU\..\Run: [GalaxyClient] E:\gog galaxy\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\deamon lite\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILFE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-312 313 315 Series"
O4 - HKCU\..\Run: [TSMApplication] "E:\tsm wow\TradeSkillMaster Application\app\TSMApplication.exe"
O4 - HKCU\..\Run: [Discord] C:\Users\lukas_000\AppData\Local\Discord\app-0.0.300\Discord.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_822640D12963A0CFAF5BB81B94632257] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Twitch.lnk = E:\curse_twitch\Twitch\Bin\Twitch.exe
O4 - Global Startup: Avast Cleanup Premium.lnk = C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
O4 - Global Startup: RazerFPSStartup.lnk = C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe
O4 - Global Startup: RzMiMoAppService.lnk = C:\ProgramData\Razer\SwitchBlade\Apps\Razer\DF495DFD-79F6-34DF-BB1E-E58DB5BDCF2C\RzMiMo.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe
O23 - Service: aswbIDSAgent - AVAST Software - E:\avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - E:\avast\AvastSvc.exe
O23 - Service: @oem47.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Avast Cleanup Premium (CleanupPSvc) - AVAST Software - C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing)
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: GalaxyClientService - GOG.com - E:\gog galaxy\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\SysWOW64\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Razer Chroma SDK Server - Razer Inc. - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
O23 - Service: Razer Chroma SDK Service - Razer Inc. - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Razer Overlay Subsystem Emergency Service (RzOvlMon) - Razer, Inc. - C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - E:\smart switch\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 16081 bytes

======Listing Processes======









c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
winlogon.exe
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservice -p -s bthserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NgcSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s BthHFSrv
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-fe39c5dc-0bd0-4eed-8aca-407737dddb1a -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-8d6a56c4-5769-481f-9fac-64b2075e24f8 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5288e336-5af6-4366-9c33-62b772c59b97 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a077efd5-66bf-4c7d-a360-b38b6f469f85 -LifetimeId:19933bfb-9123-428d-917f-59adb7e0718e -DeviceGroupId:WpdFsGroup
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc

c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
dashost.exe {a6de4949-eef0-4f71-9c20f83e672375e4}
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection

c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
C:\WINDOWS\system32\EscSvc64.exe
c:\windows\system32\svchost.exe -k networkservice -s TermService
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
C:\WINDOWS\system32\BtwRSupportService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
C:\WINDOWS\SysWOW64\IoctlSvc.exe
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
"C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe"
C:\Windows\system32\IProsetMonitor.exe
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe"
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe"

"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
"E:\smart switch\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
"C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe"
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s NgcCtnrSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s Netman

c:\windows\system32\svchost.exe -k netsvcs -p -s BITS
"C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
"C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe"
"C:\Program Files (x86)\ASUS\System Level Up Driver\SysLevelUp.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\ASUS_Manager_Lighting.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
"C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe"
"C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe"
"C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe"
"C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe"
"C:\Program Files (x86)\ASUS\AEGIS\AsSysLevelUpSrc.exe"
"C:\Program Files (x86)\ASUS\AEGIS\AEGIS_AlertService.exe"
"C:\Program Files (x86)\ASUS\AEGIS\AEGIS_SysMode.exe"
"C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe" -boot
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
"C:\Program Files (x86)\ASUS\AEGIS\AsToastHelper.exe"
"ctfmon.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\Explorer.EXE
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Windows Defender\MSASCuiL.exe"
AvastUI.exe /nogui
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4
"E:\steam\Steam.exe" -silent
"C:\Windows\System32\spool\drivers\x64\3\E_IATILFE.EXE" /EPT "EPLTarget\P0000000000000000" /M "XP-312 313 315 Series"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
E:\steam\bin\cef\cef.win7\steamwebhelper.exe "-lang=cs_CZ" "-cachedir=C:\Users\lukas_000\AppData\Local\Steam\htmlcache" "-steampid=10724" "-buildid=1521764535" "-steamid=0" "-clientui=E:\steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=E:\steam\logs\cef_log.txt"
"E:\gog galaxy\GalaxyClient\GalaxyClient.exe" /runWithoutUpdating
E:\steam\bin\cef\cef.win7\steamwebhelper.exe --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\lukas_000\AppData\Local\CEF\User Data\Crashpad" "--metrics-dir=C:\Users\lukas_000\AppData\Local\CEF\User Data" --url=http://crash.steampowered.com/submit --annotation=platform=win32 --annotation=product=cefwebhelper --annotation=version=1.0 --initial-client-data=0x30c,0x310,0x314,0x2f8,0x318,0x5ef581a4,0x5ef581b4,0x5ef581c4
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe" /nogui
"C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe"
"C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe"
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\ProgramData\Razer\SwitchBlade\Apps\Razer\DF495DFD-79F6-34DF-BB1E-E58DB5BDCF2C\RzMiMo.exe"
"C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe"
"C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe" /start
"E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe" --type=gpu-process --no-sandbox --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=info --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.9101 --gpu-driver-date=2-23-2018 --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=info --service-request-channel-token=17CF1732D39F6E836896DA549BC2BAF0 --mojo-platform-channel-handle=2504 /prefetch:2
"E:\steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --disable-smooth-scrolling --enable-pinch --service-pipe-token=C251A3961BB578B10F2FAAF1422F8495 --enable-blink-features=ResizeObserver --lang=en-US --lang=cs-CZ --log-file="E:\steam\logs\cef_log.txt" --product-version="Valve Steam Client" --webview-urls=http://localhost/*,http://steamloopback ... localhost/* --disable-spell-checking --buildid=1521764535 --steamid=0 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --disable-accelerated-video-decode --disable-gpu-compositing --enable-gpu-async-worker-context --service-request-channel-token=C251A3961BB578B10F2FAAF1422F8495 --renderer-client-id=2 --mojo-platform-channel-handle=1888 /prefetch:1
"E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe" --type=renderer --enable-smooth-scrolling --js-flags=--expose-gc --no-sandbox --service-pipe-token=95D5B0C3649499287621CA7DCEF89677 --lang=en-US --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=info --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=95D5B0C3649499287621CA7DCEF89677 --renderer-client-id=3 --mojo-platform-channel-handle=2960 /prefetch:1
"E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe" --type=renderer --enable-smooth-scrolling --js-flags=--expose-gc --no-sandbox --service-pipe-token=21FCF6271F14938614AA585FAB240F4E --lang=en-US --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=info --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=21FCF6271F14938614AA585FAB240F4E --renderer-client-id=4 --mojo-platform-channel-handle=3144 /prefetch:1
"E:\gog galaxy\GalaxyClient\GOG Galaxy Notifications Renderer.exe"
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe" -sync_complete
"C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe"
"C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe" --type=gpu-process --channel="13428.0.1997658841\1950591060" --no-sandbox --lang=en-US --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.9101 --lang=en-US /prefetch:822062411
"C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe" --type=renderer --no-sandbox --disable-databases --lang=en-US --lang=en-US --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="13428.1.2088923806\2038577515" /prefetch:673131151
"C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe" --type=renderer --no-sandbox --disable-databases --lang=en-US --lang=en-US --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="13428.2.1459970886\1425445673" /prefetch:673131151
"C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe" --type=renderer --no-sandbox --disable-databases --lang=en-US --lang=en-US --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="13428.3.1172534406\194955852" /prefetch:673131151
"C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe" --type=gpu-process --channel="11900.0.1406988197\1326981887" --no-sandbox --lang=en-US --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.9101 --lang=en-US /prefetch:822062411
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SEMgrSvc
/S
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\svchost.exe -k SDRSVC
"C:\ProgramData\Razer\SwitchBlade\DeathStalker\Razer\1068AAE3-6299-4086-A7F6-0600F5F1D1E5\RzHome.exe" -online
"C:\Program Files (x86)\Razer\SwitchBlade\RzAppManager.exe" -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
LiveUpdateChecker.exe -auto
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11802.1001.11.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SensorService
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe"
"C:\WINDOWS\system32\taskmgr.exe" /4
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.16299.251_none_16dd4c82321e5ccc\TiWorker.exe -Embedding
"C:\WINDOWS\system32\SystemSettingsAdminFlows.exe" OptionalFeaturesAdminHelper
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=65.0.3325.181 --initial-client-data=0x1d8,0x1dc,0x1e0,0x1d4,0x1e4,0x7ff866a1f1e8,0x7ff866a1f1f8,0x7ff866a1f208
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=9328 --on-initialized-event-handle=700 --parent-handle=712 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --gpu-preferences=KAAAAAAAAAAABwAAAQAAAAAAAAAAAGAAAQAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.9101 --gpu-driver-date=2-23-2018 --service-request-channel-token=4ACC9A582903089E49A04647E69D8A9B --mojo-platform-channel-handle=1588 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --service-pipe-token=37BD5325D1B5723CFC86A147B125D545 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=37BD5325D1B5723CFC86A147B125D545 --renderer-client-id=8 --mojo-platform-channel-handle=2672 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --service-pipe-token=AE060FA149C06501210DC6B1EE7B12E2 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=AE060FA149C06501210DC6B1EE7B12E2 --renderer-client-id=3 --mojo-platform-channel-handle=3188 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --service-pipe-token=831E9ABB59508E2C63573217E547AF33 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=831E9ABB59508E2C63573217E547AF33 --renderer-client-id=4 --mojo-platform-channel-handle=3500 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --service-pipe-token=A3F5F21667FE0E228C9220505F9B6D5A --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=A3F5F21667FE0E228C9220505F9B6D5A --renderer-client-id=5 --mojo-platform-channel-handle=3804 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --service-pipe-token=F4E7A71792A1E78A5BDC4E475C7B3EE1 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=F4E7A71792A1E78A5BDC4E475C7B3EE1 --renderer-client-id=6 --mojo-platform-channel-handle=4012 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --service-pipe-token=F3370A354A6747CCEAC14A06FFD07556 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=F3370A354A6747CCEAC14A06FFD07556 --renderer-client-id=7 --mojo-platform-channel-handle=4216 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --service-pipe-token=A327EC69FED07ED9D631EB1316E4657A --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=A327EC69FED07ED9D631EB1316E4657A --renderer-client-id=9 --mojo-platform-channel-handle=4416 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1564,14791396715006917858,6558096618242606341,131072 --service-pipe-token=B0436408602D8E54C71C31A9469281D3 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=B0436408602D8E54C71C31A9469281D3 --renderer-client-id=40 --mojo-platform-channel-handle=9904 /prefetch:1
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0xf4
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe22_ Global\UsGthrCtrlFltPipeMssGthrPipe22 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 724 728 736 8192 732
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\lukas_000\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Avast Driver Updater Startup.job - C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe -boot
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Invitation {43695F24-84D7-454F-9D8F-5BE870520CD7}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{43695F24-84D7-454F-9D8F-5BE870520CD7}" /F:"Invitation"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Invitation {88D49723-902A-4BBD-B9EE-E3D271FD9C2F}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{88D49723-902A-4BBD-B9EE-E3D271FD9C2F}" /F:"Invitation"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Invitation {AFB05FD3-6932-4FDE-8BC9-E535FC17820C}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{AFB05FD3-6932-4FDE-8BC9-E535FC17820C}" /F:"Invitation"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Invitation {FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}" /F:"Invitation"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Update {43695F24-84D7-454F-9D8F-5BE870520CD7}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{43695F24-84D7-454F-9D8F-5BE870520CD7}" /F:"Update"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Update {88D49723-902A-4BBD-B9EE-E3D271FD9C2F}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{88D49723-902A-4BBD-B9EE-E3D271FD9C2F}" /F:"Update"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Update {AFB05FD3-6932-4FDE-8BC9-E535FC17820C}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{AFB05FD3-6932-4FDE-8BC9-E535FC17820C}" /F:"Update"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Update {FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}" /F:"Update"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-12-12 229040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-12-12 2353944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"AvastUI.exe"=E:\avast\AvLaunch.exe [2018-03-03 245608]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-06-29 3936936]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2000-01-01 9235936]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2000-01-01 1492960]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=E:\steam\steam.exe [2018-03-23 3198752]
"GalaxyClient"=E:\gog galaxy\GalaxyClient\GalaxyClient.exe [2018-03-13 6325320]
"DAEMON Tools Lite Automount"=E:\deamon lite\DAEMON Tools Lite\DTAgent.exe [2016-06-08 4295360]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-03-06 17074688]
"EPLTarget\P0000000000000000"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILFE.EXE [2013-01-24 297024]
"TSMApplication"=E:\tsm wow\TradeSkillMaster Application\app\TSMApplication.exe [2017-12-03 1623040]
"Discord"=C:\Users\lukas_000\AppData\Local\Discord\app-0.0.300\Discord.exe [2018-01-08 57821176]
"GoogleChromeAutoLaunch_822640D12963A0CFAF5BB81B94632257"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2018-03-20 1589592]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2014-10-06 3216032]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ASUSWSLoader.exe [2014-01-15 63296]
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2017-08-30 596664]
"RzSBHelper"=C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe [2015-09-23 84992]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2016-01-20 1087184]
"KiesTrayAgent"=E:\kies\Kies\KiesTrayAgent.exe [2016-08-25 318128]
"Kraken71ChromaHelper"=C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [2017-02-14 1600096]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Avast Cleanup Premium.lnk - C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
RazerFPSStartup.lnk - C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe
RzMiMoAppService.lnk - C:\ProgramData\Razer\SwitchBlade\Apps\Razer\DF495DFD-79F6-34DF-BB1E-E58DB5BDCF2C\RzMiMo.exe

C:\Users\lukas_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Twitch.lnk - E:\curse_twitch\Twitch\Bin\Twitch.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
"C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.FPS1"=frapsv64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-03-25 16:16:54 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2018-03-25 14:37:58 ----D---- C:\ProgramData\acer
2018-03-25 14:13:47 ----A---- C:\WINDOWS\system32\drivers\RtsUer.sys
2018-03-25 14:13:46 ----A---- C:\WINDOWS\SYSWOW64\RsCRIcon.dll
2018-03-25 14:13:46 ----A---- C:\WINDOWS\system32\RtCRX64.dll
2018-03-25 14:08:34 ----D---- C:\ProgramData\updater2
2018-03-25 14:08:34 ----D---- C:\oem
2018-03-25 14:04:54 ----D---- C:\Program Files\Realtek
2018-03-25 14:03:35 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\tosade.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2018-03-25 14:03:35 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2018-03-25 14:03:34 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2018-03-25 14:03:33 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2018-03-25 14:03:33 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2018-03-25 14:03:33 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2018-03-25 14:03:33 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2018-03-25 14:03:33 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2018-03-25 14:03:33 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2018-03-25 14:03:33 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2018-03-25 14:03:32 ----A---- C:\WINDOWS\system32\DDPA64.dll
2018-03-25 14:03:31 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2018-03-25 13:32:17 ----A---- C:\WINDOWS\RtlExUpd.dll
2018-03-25 13:31:54 ----D---- C:\WINDOWS\oem
2018-03-25 13:28:26 ----D---- C:\WINDOWS\LastGood.Tmp
2018-03-25 13:28:17 ----D---- C:\Program Files\Broadcom
2018-03-25 13:27:12 ----D---- C:\SWSetup
2018-03-25 13:26:17 ----D---- C:\ProgramData\DriverSetupUtility
2018-03-25 13:26:09 ----D---- C:\Program Files\DriverSetupUtility
2018-03-17 13:03:38 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-03-17 13:03:38 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-03-17 13:03:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-03-17 13:03:37 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-03-17 13:03:37 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-03-17 13:03:37 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-03-17 13:03:36 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-03-17 13:03:36 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-03-17 13:03:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-03-17 13:03:36 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-03-17 13:03:36 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2018-03-17 13:03:36 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-03-17 13:03:36 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-03-17 13:03:36 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2018-03-17 13:03:35 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2018-03-17 13:03:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-03-17 13:03:34 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-03-17 13:03:34 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-03-17 13:03:34 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2018-03-17 13:03:34 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-03-17 13:03:34 ----A---- C:\WINDOWS\system32\samsrv.dll
2018-03-17 13:03:34 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-03-17 13:03:34 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2018-03-17 13:03:34 ----A---- C:\WINDOWS\system32\DbgModel.dll
2018-03-17 13:03:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-03-17 13:03:33 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-03-17 13:03:33 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-03-17 13:03:33 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-03-17 13:03:33 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-03-17 13:03:33 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-03-17 13:03:33 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-03-17 13:03:33 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2018-03-17 13:03:33 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\jscript.dll
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2018-03-17 13:03:32 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-03-17 13:03:31 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2018-03-17 13:03:31 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-03-17 13:03:31 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-03-17 13:03:31 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-03-17 13:03:31 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-03-17 13:03:31 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-03-17 13:03:31 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-03-17 13:03:31 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-03-17 13:03:31 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-03-17 13:03:30 ----A---- C:\WINDOWS\system32\wininet.dll
2018-03-17 13:03:30 ----A---- C:\WINDOWS\system32\msIso.dll
2018-03-17 13:03:30 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-03-17 13:03:30 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-03-17 13:03:30 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2018-03-17 13:03:30 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-03-17 13:03:30 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-03-17 13:03:30 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2018-03-17 13:03:29 ----A---- C:\WINDOWS\system32\winmde.dll
2018-03-17 13:03:29 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-03-17 13:03:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-03-17 13:03:29 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-03-17 13:03:29 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-03-17 13:03:29 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-03-17 13:03:28 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2018-03-17 13:03:28 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-03-17 13:03:28 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-03-17 13:03:28 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-03-17 13:03:28 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-03-17 13:03:28 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-03-17 13:03:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-03-17 13:03:27 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-03-17 13:03:27 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-03-17 13:03:27 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-03-17 13:03:27 ----A---- C:\WINDOWS\system32\winsrv.dll
2018-03-17 13:03:27 ----A---- C:\WINDOWS\system32\shell32.dll
2018-03-17 13:03:27 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-03-17 13:03:27 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-03-17 13:03:26 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-03-17 13:03:26 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2018-03-17 13:03:25 ----A---- C:\WINDOWS\system32\usocore.dll
2018-03-17 13:03:25 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-03-17 13:03:25 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-03-17 13:03:25 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-03-17 13:03:25 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-03-17 13:03:25 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-03-17 13:03:25 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\winresume.exe
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\winload.exe
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\invagent.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\devinv.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\aepic.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-03-17 13:03:19 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\cldapi.dll
2018-03-17 13:03:18 ----A---- C:\WINDOWS\system32\cdp.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\SYSWOW64\AuthFWSnapin.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\UsoClient.exe
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\updatecsp.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\TSpkg.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\svf.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\SpectrumSyncClient.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\racpldlg.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\offlinesam.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\msra.exe
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\msi.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\drivers\HdAudio.sys
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\drivers\ataport.sys
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2018-03-17 13:03:17 ----A---- C:\WINDOWS\system32\AuthFWSnapin.dll
2018-03-17 13:03:16 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-03-17 13:03:16 ----A---- C:\WINDOWS\system32\msisip.dll
2018-03-17 13:03:16 ----A---- C:\WINDOWS\system32\credssp.dll
2018-03-13 21:12:22 ----D---- C:\Users\lukas_000\AppData\Roaming\BluestacksCN
2018-03-13 20:10:27 ----AD---- C:\Program Files (x86)\BlueStacks
2018-03-04 00:33:00 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2018-03-04 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2018-03-04 00:32:56 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2018-03-04 00:32:56 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2018-03-04 00:32:56 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2018-03-04 00:32:55 ----D---- C:\Program Files (x86)\VulkanRT
2018-03-04 00:32:45 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2018-03-04 00:32:45 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2018-03-04 00:32:45 ----A---- C:\WINDOWS\system32\nvshext.dll
2018-03-04 00:32:45 ----A---- C:\WINDOWS\system32\nvmctray.dll
2018-03-04 00:32:45 ----A---- C:\WINDOWS\system32\nvcpl.dll
2018-03-04 00:32:45 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2018-03-04 00:32:45 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2018-03-04 00:32:34 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2018-03-04 00:32:34 ----A---- C:\WINDOWS\system32\OpenCL.dll
2018-03-04 00:32:30 ----D---- C:\WINDOWS\system32\drivers\NVIDIA Corporation
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFThevc.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvDecMFTMjpeg.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvopencl.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvhdagenco6420103.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvEncMFThevc.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvdispgenco6439101.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvdispco6439101.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvcuda.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\nvapi64.dll
2018-03-04 00:30:47 ----A---- C:\WINDOWS\system32\drivers\nvhda64v.sys
2018-03-03 23:41:59 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-03-01 19:01:52 ----D---- C:\Users\lukas_000\AppData\Roaming\discord

======List of files/folders modified in the last 1 month======

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#2 Příspěvek od zail »

2018-03-25 17:04:27 ----D---- C:\Program Files\trend micro
2018-03-25 17:01:17 ----D---- C:\WINDOWS\Prefetch
2018-03-25 17:01:17 ----D---- C:\FRST
2018-03-25 17:01:13 ----D---- C:\Windows
2018-03-25 17:00:44 ----D---- C:\WINDOWS\Temp
2018-03-25 16:39:32 ----D---- C:\WINDOWS\Tasks
2018-03-25 16:39:32 ----D---- C:\WINDOWS\system32\Tasks
2018-03-25 16:17:06 ----HD---- C:\ProgramData
2018-03-25 16:17:00 ----D---- C:\WINDOWS\system32\sru
2018-03-25 16:15:31 ----D---- C:\WINDOWS\SoftwareDistribution
2018-03-25 16:11:59 ----RD---- C:\Program Files (x86)
2018-03-25 16:11:43 ----SHD---- C:\System Volume Information
2018-03-25 16:09:35 ----D---- C:\WINDOWS\system32\drivers
2018-03-25 15:30:15 ----D---- C:\Program Files (x86)\Google
2018-03-25 15:24:04 ----D---- C:\WINDOWS\System32
2018-03-25 15:24:04 ----D---- C:\ProgramData\NVIDIA
2018-03-25 15:20:05 ----D---- C:\WINDOWS\INF
2018-03-25 15:20:05 ----D---- C:\WINDOWS\debug
2018-03-25 15:14:04 ----D---- C:\WINDOWS\system32\SleepStudy
2018-03-25 14:45:48 ----D---- C:\WINDOWS\system32\LogFiles
2018-03-25 14:45:48 ----D---- C:\WINDOWS\Logs
2018-03-25 14:45:37 ----D---- C:\WINDOWS\system32\config
2018-03-25 14:45:28 ----RD---- C:\WINDOWS\Microsoft.NET
2018-03-25 14:19:38 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-03-25 14:15:02 ----D---- C:\WINDOWS\system32\catroot2
2018-03-25 14:14:57 ----D---- C:\WINDOWS\DeliveryOptimization
2018-03-25 14:14:19 ----D---- C:\WINDOWS\SYSWOW64\sda
2018-03-25 14:14:04 ----D---- C:\WINDOWS\SysWOW64
2018-03-25 14:13:49 ----D---- C:\WINDOWS\system32\DriverStore
2018-03-25 14:13:46 ----D---- C:\Program Files (x86)\Realtek
2018-03-25 14:08:42 ----AD---- C:\Program Files\Intel
2018-03-25 14:08:41 ----SHDC---- C:\WINDOWS\Installer
2018-03-25 14:05:34 ----HD---- C:\Program Files (x86)\Temp
2018-03-25 14:04:54 ----RD---- C:\Program Files
2018-03-25 14:04:54 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2018-03-25 13:31:19 ----D---- C:\WINDOWS\system32\CatRoot
2018-03-25 13:22:08 ----D---- C:\ProgramData\AVAST Software
2018-03-23 15:54:58 ----D---- C:\WINDOWS\AppReadiness
2018-03-23 15:54:57 ----HD---- C:\Program Files\WindowsApps
2018-03-21 17:40:02 ----D---- C:\WINDOWS\rescache
2018-03-19 17:57:19 ----D---- C:\WINDOWS\WinSxS
2018-03-18 16:34:26 ----D---- C:\WINDOWS\TextInput
2018-03-18 16:34:26 ----D---- C:\WINDOWS\system32\en-US
2018-03-18 16:34:26 ----D---- C:\WINDOWS\system32\cs-CZ
2018-03-18 16:34:26 ----D---- C:\WINDOWS\system32\appraiser
2018-03-18 16:34:26 ----D---- C:\WINDOWS\ShellExperiences
2018-03-18 16:34:26 ----D---- C:\WINDOWS\apppatch
2018-03-18 16:34:25 ----D---- C:\WINDOWS\system32\Boot
2018-03-18 16:34:22 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-03-18 12:18:56 ----D---- C:\WINDOWS\CbsTemp
2018-03-17 13:04:20 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-03-17 13:04:20 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-03-14 18:52:42 ----D---- C:\WINDOWS\system32\MRT
2018-03-14 18:50:45 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-14 18:50:42 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-03-13 19:03:05 ----SD---- C:\Users\lukas_000\AppData\Roaming\Microsoft
2018-03-13 19:01:30 ----SD---- C:\ProgramData\Microsoft
2018-03-13 17:12:46 ----D---- C:\WINDOWS\system32\Macromed
2018-03-13 17:12:45 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2018-03-07 19:29:27 ----D---- C:\Users\lukas_000\AppData\Roaming\TS3Client
2018-03-05 19:04:01 ----D---- C:\Users\lukas_000\AppData\Roaming\vlc
2018-03-04 19:11:25 ----RD---- C:\WINDOWS\assembly
2018-03-04 15:36:51 ----RD---- C:\Program Files (x86)\Skype
2018-03-04 15:36:51 ----D---- C:\ProgramData\Skype
2018-03-04 15:36:51 ----D---- C:\Program Files (x86)\Common Files
2018-03-04 15:31:31 ----AD---- C:\Program Files\CCleaner
2018-03-04 00:41:45 ----D---- C:\ProgramData\NVIDIA Corporation
2018-03-04 00:41:45 ----D---- C:\Program Files\NVIDIA Corporation
2018-03-04 00:41:45 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2018-03-04 00:32:45 ----D---- C:\WINDOWS\Help
2018-03-03 19:48:08 ----D---- C:\Users\lukas_000\AppData\Roaming\SimulationCraft
2018-03-02 23:09:11 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 assdv2;assdv2; C:\WINDOWS\system32\drivers\assdv2.sys [2013-12-05 21816]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-03-03 199440]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-03-03 343752]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-03-03 57680]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-03-03 84368]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-03-03 380528]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-04-03 645480]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R1 AsIO;AsIO; C:\WINDOWS\SysWow64\drivers\AsIO.sys [2014-06-18 15232]
R1 AsUpIO;AsUpIO; C:\WINDOWS\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-03-03 196648]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-03-03 227504]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-03-03 215320]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-03-29 32600]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-03-03 110328]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-03-03 1026696]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-03-03 460520]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-01-01 59800]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-09-29 8192]
R1 RzFilter;RzFilter; \??\C:\WINDOWS\system32\drivers\RzFilter.sys [2014-04-18 74432]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-03-03 146656]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-03-03 205976]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R2 rzpmgrk;rzpmgrk; \??\C:\WINDOWS\system32\drivers\rzpmgrk.sys [2017-07-19 45752]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2017-07-18 139704]
R3 bcbtums;@oem1.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2016-01-27 177440]
R3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2017-09-29 191488]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2017-09-29 105472]
R3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2017-09-29 46592]
R3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-09-29 78848]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 dtlitescsibus;@oem27.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-06-10 30264]
R3 dtliteusbbus;@oem18.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-06-10 47672]
R3 e1dexpress;@oem149.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\WINDOWS\system32\DRIVERS\e1d62x64.sys [2017-03-19 525800]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2000-01-01 6038440]
R3 MEIx64;@oem134.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2014-09-30 129312]
R3 NVHDA;@oem52.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2018-02-26 226760]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4i.inf_amd64_5fed2148a7503363\nvlddmkm.sys [2018-02-26 17524720]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
R3 RTSUER;@oem81.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2000-01-01 407768]
R3 RzDxgk;RzDxgk; \??\C:\WINDOWS\system32\drivers\RzDxgk.sys [2014-04-18 129472]
R3 rzendpt;@oem13.inf,%rzendpt.SvcDesc%;rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [2016-10-30 52240]
R3 rzhnet;@oem15.inf,%rzhnet.SvcDesc%;Razer Inc. External Display Driver; C:\WINDOWS\System32\Drivers\rzhnet.sys [2016-10-30 29712]
R3 rzjstk;@oem0.inf,%rzjoystick%;Razer Virtual Joystick Driver; C:\WINDOWS\System32\drivers\rzjstk.sys [2016-10-30 36376]
R3 rzudd;@oem48.inf,%Razer.SvcDesc%;Razer Keyboard Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2016-10-30 204824]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S1 netfilter2;netfilter2; C:\WINDOWS\system32\drivers\netfilter2.sys []
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-03-03 46968]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-02-22 1015296]
S3 btwampfl;@oem1.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2016-01-27 195880]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2016-12-16 40984]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 RSUSBSTOR;@oem118.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys []
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S4 nvvad_WaveExtensible;@oem81.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys []
S4 nvvhci;@oem80.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-02-09 83984]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2014-06-18 920736]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2014-05-14 586880]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe [2014-01-15 71680]
R2 avast! Antivirus;Avast Antivirus; E:\avast\AvastSvc.exe [2018-03-03 303728]
R2 BcmBtRSupport;@oem47.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_cf098;Uživatelská služba platformy připojených zařízení_cf098; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CleanupPSvc;Avast Cleanup Premium; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [2018-03-10 7649576]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 EpsonScanSvc;Epson Scanner Service; C:\WINDOWS\system32\EscSvc64.exe [2012-05-17 144560]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-24 1858048]
R2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03 107848]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2014-03-12 260360]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-03-20 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-03-20 398296]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-02-23 462864]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-01-10 461616]
R2 OneSyncSvc_cf098;Hostitel synchronizace_cf098; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2016-04-23 76888]
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2017-07-20 189264]
R2 Razer Chroma SDK Server;Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [2017-11-07 431616]
R2 Razer Chroma SDK Service;Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [2017-11-29 919200]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 RzOvlMon;Razer Overlay Subsystem Emergency Service; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [2014-04-18 32960]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-03-01 519152]
R3 aswbIDSAgent;aswbIDSAgent; E:\avast\x64\aswidsagenta.exe [2018-03-03 7556704]
R3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 PimIndexMaintenanceSvc_cf098;Data kontaktů_cf098; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-13 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_cf098;Tok zařízení_cf098; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 85504]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-11-18 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 GalaxyClientService;GalaxyClientService; E:\gog galaxy\GalaxyClient\GalaxyClientService.exe [2018-03-13 663112]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2018-03-13 8135752]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03 107848]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-02-01 887232]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_cf098;Služba zasílání zpráv_cf098; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\syswow64\GameMon.des [2016-10-20 7801944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-10-03 159960]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_cf098;PrintWorkflow_cf098; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S4 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2017-12-12 3058392]
S4 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\deamon lite\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-06-08 1458368]
S4 EPSON_PM_RPCV4_06;EPSON V3 Service4(06); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [2013-04-15 152640]
S4 NBService;NBService; E:\nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: pravdepodobne chrom virus

#3 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#4 Příspěvek od zail »

# AdwCleaner 7.0.8.0 - Logfile created on Sun Mar 25 15:52:18 2018
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-03-23.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\slunecnice.cz
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.slunecnice.cz
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\slunecnice.cz
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.slunecnice.cz
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
PUP.Optional.SlimCleanerPlus, [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Legacy, SearchProvider found: Jookz - jookz.toolbaroptions.com.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: Yahoo! Search - search.yahoo.com.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: Filmova databaze (FDb.cz) - fdb.cz.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: MyVideo - myvideo.de.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: ICQ Search - search.icq.com.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: Wikipedia - de.wikipedia.org.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: eBay.de - search.ebay.de.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: Google - google.com.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: Preisvergleich - pricerunner.de.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: OTTO - otto.de.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: Amazon - amazon.de.anonymize-me.de
PUP.Optional.Legacy, SearchProvider found: Slunečnice.cz - sl
PUP.Optional.Legacy, SearchProvider found: Slunečnice - slunecnice.cz
PUP.Optional.Legacy, SearchProvider found: ICQ Search - search.icq.com.anonymize-me.de

/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271


*************************

C:/AdwCleaner/AdwCleaner[C1].txt - [1075 B] - [2015/9/20 16:44:36]
C:/AdwCleaner/AdwCleaner[C2].txt - [2274 B] - [2017/3/26 11:3:20]
C:/AdwCleaner/AdwCleaner[S1].txt - [981 B] - [2015/9/20 16:43:44]
C:/AdwCleaner/AdwCleaner[S2].txt - [2617 B] - [2017/3/26 10:59:44]


########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt ##########

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#5 Příspěvek od zail »

# AdwCleaner 7.0.8.0 - Logfile created on Sun Mar 25 15:52:55 2018
# Updated on 2018/08/02 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\slunecnice.cz
Deleted: [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.slunecnice.cz
Deleted: [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\slunecnice.cz
Deleted: [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.slunecnice.cz
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Features\A38C15B2D5649AE4C9CDE19DE50DA96C
Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Products\A38C15B2D5649AE4C9CDE19DE50DA96C
Deleted: [Key] - HKLM\SOFTWARE\SlimWare Utilities Inc


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

SearchProvider deleted: Jookz - jookz.toolbaroptions.com.anonymize-me.de
SearchProvider deleted: Yahoo! Search - search.yahoo.com.anonymize-me.de
SearchProvider deleted: Filmova databaze (FDb.cz) - fdb.cz.anonymize-me.de
SearchProvider deleted: MyVideo - myvideo.de.anonymize-me.de
SearchProvider deleted: ICQ Search - search.icq.com.anonymize-me.de
SearchProvider deleted: Wikipedia - de.wikipedia.org.anonymize-me.de
SearchProvider deleted: eBay.de - search.ebay.de.anonymize-me.de
SearchProvider deleted: Google - google.com.anonymize-me.de
SearchProvider deleted: Preisvergleich - pricerunner.de.anonymize-me.de
SearchProvider deleted: OTTO - otto.de.anonymize-me.de
SearchProvider deleted: Amazon - amazon.de.anonymize-me.de
SearchProvider deleted: Slunečnice.cz - sl
SearchProvider deleted: Slunečnice - slunecnice.cz
SearchProvider deleted: ICQ Search - search.icq.com.anonymize-me.de


*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C1].txt - [1075 B] - [2015/9/20 16:44:36]
C:/AdwCleaner/AdwCleaner[C2].txt - [2274 B] - [2017/3/26 11:3:20]
C:/AdwCleaner/AdwCleaner[S1].txt - [981 B] - [2015/9/20 16:43:44]
C:/AdwCleaner/AdwCleaner[S2].txt - [3927 B] - [2017/3/26 10:59:44]


########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: pravdepodobne chrom virus

#6 Příspěvek od Rudy »

Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#7 Příspěvek od zail »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14.03.2018
Ran by lukas_000 (administrator) on ZAIL (25-03-2018 18:17:23)
Running from C:\Users\lukas_000\Desktop
Loaded Profiles: lukas_000 (Available Profiles: lukas_000)
Platform: Windows 10 Home Version 1709 16299.309 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) E:\avast\AvastSvc.exe
(Prolific Technology Inc.) C:\Windows\SysWOW64\IoctlSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(DEVGURU Co., LTD.) E:\smart switch\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(AVAST Software) E:\avast\x64\aswidsagenta.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe
() C:\Program Files (x86)\ASUS\System Level Up Driver\SysLevelUp.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\System Level Up Driver\AsSysLevelUpSrc.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\ASUS_Manager_Lighting.exe
() C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
(ASUSTeK) C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe
(AVAST Software) C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AEGIS\AEGIS_AlertService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AEGIS\AEGIS_SysMode.exe
() C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\CheckCD_RomLighting.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AEGIS\AsToastHelper.exe
() E:\MSI Afterburner OSD\MSI Afterburner\MSIAfterburner.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVAST Software) E:\avast\AvastUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Valve Corporation) E:\steam\Steam.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATILFE.EXE
(Discord Inc.) C:\Users\lukas_000\AppData\Local\Discord\app-0.0.300\Discord.exe
(Discord Inc.) C:\Users\lukas_000\AppData\Local\Discord\app-0.0.300\Discord.exe
(Discord Inc.) C:\Users\lukas_000\AppData\Local\Discord\app-0.0.300\Discord.exe
(GOG.com) E:\gog galaxy\GalaxyClient\GalaxyClient.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(Razer USA Ltd) C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Razer Inc) C:\ProgramData\Razer\SwitchBlade\Apps\Razer\DF495DFD-79F6-34DF-BB1E-E58DB5BDCF2C\RzMiMo.exe
(Razer Inc) C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe
(GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Valve Corporation) E:\steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) E:\steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
(Razer Inc.) C:\ProgramData\Razer\SwitchBlade\DeathStalker\Razer\1068AAE3-6299-4086-A7F6-0600F5F1D1E5\RzHome.exe
(Razer Inc) C:\Program Files (x86)\Razer\SwitchBlade\RzAppManager.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(GOG.com) E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
(Razer, Inc.) C:\Users\lukas_000\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Razer, Inc.) C:\Users\lukas_000\AppData\Local\Razer\InGameEngine\cache\RzSynapse\rzcefrenderprocess.exe
(Razer, Inc.) C:\Users\lukas_000\AppData\Local\Razer\InGameEngine\cache\RzSynapse\rzcefrenderprocess.exe
(Razer, Inc.) C:\Users\lukas_000\AppData\Local\Razer\InGameEngine\cache\RzSynapse\rzcefrenderprocess.exe
(Razer, Inc.) C:\Users\lukas_000\AppData\Local\Razer\InGameEngine\cache\RzSynapse\rzcefrenderprocess.exe
(Valve Corporation) C:\Program Files (x86)\Razer\Razer Services\GSS\SteamCmd\steamcmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Valve Corporation) E:\steam\bin\cef\cef.win7\steamwebhelper.exe
(GOG.com) E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) E:\gog galaxy\GalaxyClient\GOG Galaxy Notifications Renderer.exe
(GOG.com) E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
() E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSS.exe
() E:\MSI Afterburner OSD\RivaTuner Statistics Server\EncoderServer.exe
() E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSPanel.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11802.1001.11.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1803.711.0_x64__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\DriverSetupUtility\FUB\LiveUpdateChecker.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => E:\avast\AvLaunch.exe [245608 2018-03-03] (AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3936936 2015-06-29] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1492960 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2014-10-06] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ASUSWSLoader.exe [63296 2014-01-15] ()
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596664 2017-08-30] (Razer Inc.)
HKLM-x32\...\Run: [RzSBHelper] => C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe [84992 2015-09-23] (Razer Inc)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [KiesTrayAgent] => E:\kies\Kies\KiesTrayAgent.exe [318128 2016-08-25] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Kraken71ChromaHelper] => C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [1600096 2017-02-14] (Razer Inc)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\Run: [Steam] => E:\steam\steam.exe [3198752 2018-03-23] (Valve Corporation)
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\Run: [GalaxyClient] => E:\gog galaxy\GalaxyClient\GalaxyClient.exe [6325320 2018-03-13] (GOG.com)
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\Run: [DAEMON Tools Lite Automount] => E:\deamon lite\DAEMON Tools Lite\DTAgent.exe [4295360 2016-06-08] (Disc Soft Ltd)
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [17074688 2018-03-06] (Piriform Ltd)
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILFE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\Run: [TSMApplication] => E:\tsm wow\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2017-12-03] ()
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\Run: [Discord] => C:\Users\lukas_000\AppData\Local\Discord\app-0.0.300\Discord.exe [57821176 2018-01-08] (Discord Inc.)
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\Run: [GoogleChromeAutoLaunch_822640D12963A0CFAF5BB81B94632257] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1589592 2018-03-20] (Google Inc.)
Lsa: [Notification Packages] scecli "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2018-01-07]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RazerFPSStartup.lnk [2015-07-03]
ShortcutTarget: RazerFPSStartup.lnk -> C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe (Razer USA Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RzMiMoAppService.lnk [2017-11-22]
ShortcutTarget: RzMiMoAppService.lnk -> C:\ProgramData\Razer\SwitchBlade\Apps\Razer\DF495DFD-79F6-34DF-BB1E-E58DB5BDCF2C\RzMiMo.exe (Razer Inc)
Startup: C:\Users\lukas_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-01-31]
ShortcutTarget: Twitch.lnk -> E:\curse_twitch\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cce20f0d-5760-49ba-9a24-71439e3b1905}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-12-12] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-12-12] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-07-04] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-01-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-02-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> E:\vlc\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> E:\vlc\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> E:\vlc\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> E:\vlc\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> E:\vlc\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> E:\vlc\npvlc.dll [2018-02-27] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1977854332-2955089687-2052700524-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-02-22] ()

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR NewTab: Default -> Active:"chrome-extension://lhlflcpjmbmnhfehipheboagibdjgmog/page/app/index.html"
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> google
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/search?q={searchTerms}
CHR Profile: C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default [2018-03-25]
CHR Extension: (Prezentace) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Destiny Item Manager Shortcut) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apghicjnekejhfancbkahkhdckhdagna [2018-01-30]
CHR Extension: (Weather (extension)) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\beapnbfmjmjhhfpaoajfhjbbfnnlfpnc [2017-03-10]
CHR Extension: (YouTube) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-27]
CHR Extension: (Vyhledávání Google) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (jQuery Debugger) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhhnnnpaeobfddmlalhnehgclcmjimi [2015-07-03]
CHR Extension: (Avast Passwords) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2018-03-02]
CHR Extension: (Avast SafePrice) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-03-10]
CHR Extension: (Tabulky) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (AutoPCBackup) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gajcommimlhdkdihfjakhdcbnklbnlia [2016-09-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Avast Online Security) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-03-02]
CHR Extension: (Rozšířená úvodní strana) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhlflcpjmbmnhfehipheboagibdjgmog [2015-07-21]
CHR Extension: (Dark Souls 3 [FVD]) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkebdgbnbfjbmgingociphlflamaenll [2016-06-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Tab+) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\oedgpogfljghcdnodnaiomoajlbpejgi [2015-07-03]
CHR Extension: (Bookmax - Online Bookmark Manager) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofjpkfadmfhloombfmmlllnbhkoehckm [2015-11-16]
CHR Extension: (Gmail) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-03]
CHR Extension: (Chrome Media Router) - C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-23]
CHR Profile: C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\System Profile [2017-03-26]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2014-06-18] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2014-05-14] ()
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe [71680 2014-01-15] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; E:\avast\x64\aswidsagenta.exe [7556704 2018-03-03] (AVAST Software)
R2 avast! Antivirus; E:\avast\AvastSvc.exe [303728 2018-03-03] (AVAST Software)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [7649576 2018-03-10] (AVAST Software)
S4 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058392 2017-12-12] (Microsoft Corporation)
S4 Disc Soft Lite Bus Service; E:\deamon lite\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1458368 2016-06-08] (Disc Soft Ltd)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S4 EPSON_PM_RPCV4_06; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640 2013-04-15] (SEIKO EPSON CORPORATION)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-24] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed]
S3 GalaxyClientService; E:\gog galaxy\GalaxyClient\GalaxyClientService.exe [663112 2018-03-13] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8135752 2018-03-13] (GOG.com)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-02-01] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
S4 NBService; E:\nero\Nero 7\Nero BackItUp\NBService.exe [800040 2008-04-08] (Nero AG)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [7801944 2016-10-20] (INCA Internet Co., Ltd.)
R2 PLFlash DeviceIoControl Service; C:\WINDOWS\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-04-23] ()
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [431616 2017-11-07] (Razer Inc.) [File not signed]
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [919200 2017-11-29] (Razer Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2017-07-20] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer, Inc.)
R2 ss_conn_service; E:\smart switch\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736 2015-06-29] (Synaptics Incorporated)
S4 TeamViewer; E:\Nová složka\TeamViewer_Service.exe [10803440 2017-07-26] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-06-18] ()
R0 assdv2; C:\Windows\System32\Drivers\assdv2.sys [21816 2013-12-05] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] ()
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [196648 2018-03-03] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [227504 2018-03-03] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199440 2018-03-03] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343752 2018-03-03] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57680 2018-03-03] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [215320 2018-03-03] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46968 2018-03-03] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-03-29] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [146656 2018-03-03] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110328 2018-03-03] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84368 2018-03-03] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1026696 2018-03-03] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460520 2018-03-03] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [205976 2018-03-03] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380528 2018-03-03] (AVAST Software)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [177440 2016-01-27] (Broadcom Corporation.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-06-10] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-06-10] (Disc Soft Ltd)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d62x64.sys [525800 2017-03-19] (Intel Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4i.inf_amd64_5fed2148a7503363\nvlddmkm.sys [17524720 2018-02-26] (NVIDIA Corporation)
R3 RTCore64; E:\MSI Afterburner OSD\MSI Afterburner\RTCore64.sys [13512 2015-12-09] ()
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [407768 2000-01-01] (Realsil Semiconductor Corporation)
R3 RzDxgk; C:\WINDOWS\system32\drivers\RzDxgk.sys [129472 2014-04-18] (Razer, Inc.)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [52240 2016-10-30] (Razer Inc)
R1 RzFilter; C:\WINDOWS\system32\drivers\RzFilter.sys [74432 2014-04-18] (Razer, Inc.)
R3 rzhnet; C:\WINDOWS\System32\Drivers\rzhnet.sys [29712 2016-10-30] (Razer Inc)
R3 rzjstk; C:\WINDOWS\System32\drivers\rzjstk.sys [36376 2016-10-30] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [45752 2017-07-19] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [139704 2017-07-18] (Razer, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2018-03-25] (SlimWare Utilities, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
S1 netfilter2; system32\drivers\netfilter2.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]
S3 RSUSBSTOR; \SystemRoot\System32\Drivers\RtsUStor.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#8 Příspěvek od zail »

2018-03-25 18:17 - 2018-03-25 18:17 - 002403328 _____ (Farbar) C:\Users\lukas_000\Desktop\FRST64.exe
2018-03-25 18:17 - 2018-03-25 18:17 - 000029693 _____ C:\Users\lukas_000\Desktop\FRST.txt
2018-03-25 17:53 - 2018-03-25 17:53 - 000563664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-03-25 17:50 - 2018-03-25 17:50 - 008222496 _____ (Malwarebytes) C:\Users\lukas_000\Desktop\adwcleaner_7.0.8.0.exe
2018-03-25 17:04 - 2018-03-25 17:04 - 001222144 _____ C:\Users\lukas_000\Desktop\RSITx64.exe
2018-03-25 16:16 - 2018-03-25 16:16 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2018-03-25 15:30 - 2018-03-25 15:30 - 000002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-25 15:30 - 2018-03-25 15:30 - 000002343 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-03-25 14:37 - 2018-03-25 14:37 - 000000000 ____D C:\ProgramData\acer
2018-03-25 14:13 - 2000-01-01 02:00 - 009890008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2018-03-25 14:13 - 2000-01-01 02:00 - 000407768 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2018-03-25 14:13 - 2000-01-01 02:00 - 000083160 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2018-03-25 14:08 - 2018-03-25 18:08 - 000000000 ____D C:\ProgramData\updater2
2018-03-25 14:08 - 2018-03-25 14:38 - 000000000 ____D C:\oem
2018-03-25 14:08 - 2018-03-25 14:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2018-03-25 14:04 - 2018-03-25 14:04 - 000000000 ____D C:\Program Files\Realtek
2018-03-25 14:03 - 2000-01-01 02:00 - 072520704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2018-03-25 14:03 - 2000-01-01 02:00 - 014964257 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2018-03-25 14:03 - 2000-01-01 02:00 - 007172904 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 007096176 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 006038440 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2018-03-25 14:03 - 2000-01-01 02:00 - 003677152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2018-03-25 14:03 - 2000-01-01 02:00 - 003562432 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 003509192 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 003205600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 002922976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 001965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 001780608 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 001591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 001508920 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 001382232 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 001351232 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000965016 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000873456 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000708304 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000691672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000532368 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000447712 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000445392 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000441256 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000327448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000253888 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000253856 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000252864 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000231912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000221960 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000214824 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000209528 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000166192 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000158688 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000134192 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000122312 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000090912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000088312 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000084608 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000083616 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000075536 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2018-03-25 14:03 - 2000-01-01 02:00 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2018-03-25 13:33 - 2018-03-25 13:33 - 000000000 ____D C:\Users\lukas_000\Intel
2018-03-25 13:32 - 2000-01-01 02:00 - 002839488 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2018-03-25 13:31 - 2018-03-25 13:31 - 000000000 ____D C:\WINDOWS\oem
2018-03-25 13:28 - 2018-03-25 13:28 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2018-03-25 13:28 - 2018-03-25 13:28 - 000000000 ____D C:\Program Files\Broadcom
2018-03-25 13:27 - 2018-03-25 13:27 - 000000000 ____D C:\SWSetup
2018-03-25 13:26 - 2018-03-25 13:26 - 000003756 _____ C:\WINDOWS\System32\Tasks\ACC
2018-03-25 13:26 - 2018-03-25 13:26 - 000000000 ____D C:\ProgramData\DriverSetupUtility
2018-03-25 13:26 - 2018-03-25 13:26 - 000000000 ____D C:\Program Files\DriverSetupUtility
2018-03-25 13:21 - 2018-03-25 14:28 - 000003128 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2018-03-17 13:03 - 2018-03-02 05:36 - 017085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-03-17 13:03 - 2018-03-02 05:02 - 000037888 _____ C:\WINDOWS\system32\SpectrumSyncClient.dll
2018-03-17 13:03 - 2018-03-02 05:01 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-03-17 13:03 - 2018-03-02 05:00 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2018-03-17 13:03 - 2018-03-02 05:00 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\svf.dll
2018-03-17 13:03 - 2018-03-02 05:00 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-03-17 13:03 - 2018-03-02 04:59 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-03-17 13:03 - 2018-03-01 22:28 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2018-03-17 13:03 - 2018-03-01 09:50 - 000270744 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-03-17 13:03 - 2018-03-01 09:49 - 000389536 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-03-17 13:03 - 2018-03-01 09:48 - 000664472 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-03-17 13:03 - 2018-03-01 09:47 - 000749464 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-03-17 13:03 - 2018-03-01 09:47 - 000035224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-03-17 13:03 - 2018-03-01 09:46 - 002003352 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-03-17 13:03 - 2018-03-01 09:46 - 001568664 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-03-17 13:03 - 2018-03-01 09:46 - 000609176 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-03-17 13:03 - 2018-03-01 09:46 - 000138144 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-17 13:03 - 2018-03-01 09:45 - 000070040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-03-17 13:03 - 2018-03-01 09:40 - 002514936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-03-17 13:03 - 2018-03-01 09:40 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-03-17 13:03 - 2018-03-01 09:40 - 000273304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-03-17 13:03 - 2018-03-01 09:37 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-03-17 13:03 - 2018-03-01 09:31 - 008602520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-03-17 13:03 - 2018-03-01 09:30 - 000540064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-03-17 13:03 - 2018-03-01 09:30 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-03-17 13:03 - 2018-03-01 09:29 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-03-17 13:03 - 2018-03-01 09:27 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-03-17 13:03 - 2018-03-01 09:26 - 000170912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-03-17 13:03 - 2018-03-01 09:25 - 000377752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-03-17 13:03 - 2018-03-01 09:23 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-03-17 13:03 - 2018-03-01 09:19 - 000710768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-03-17 13:03 - 2018-03-01 09:17 - 002710736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-03-17 13:03 - 2018-03-01 09:17 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-03-17 13:03 - 2018-03-01 09:17 - 000408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-03-17 13:03 - 2018-03-01 09:15 - 002574232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-03-17 13:03 - 2018-03-01 09:14 - 007675784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-03-17 13:03 - 2018-03-01 09:14 - 007384576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-03-17 13:03 - 2018-03-01 09:14 - 005105664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthFWSnapin.dll
2018-03-17 13:03 - 2018-03-01 09:14 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-03-17 13:03 - 2018-03-01 09:14 - 000356952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-03-17 13:03 - 2018-03-01 09:14 - 000147872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-03-17 13:03 - 2018-03-01 09:14 - 000128928 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2018-03-17 13:03 - 2018-03-01 09:12 - 000677272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-03-17 13:03 - 2018-03-01 09:12 - 000250264 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2018-03-17 13:03 - 2018-03-01 09:12 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-03-17 13:03 - 2018-03-01 09:11 - 000093600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-03-17 13:03 - 2018-03-01 09:10 - 001779936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-03-17 13:03 - 2018-03-01 09:10 - 000075168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-03-17 13:03 - 2018-03-01 09:10 - 000022936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys
2018-03-17 13:03 - 2018-03-01 09:09 - 001054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-03-17 13:03 - 2018-03-01 08:51 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-03-17 13:03 - 2018-03-01 08:48 - 001930736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-03-17 13:03 - 2018-03-01 08:39 - 000213400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-03-17 13:03 - 2018-03-01 08:30 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-03-17 13:03 - 2018-03-01 08:29 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-03-17 13:03 - 2018-03-01 08:29 - 000574960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-03-17 13:03 - 2018-03-01 08:28 - 006480616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-03-17 13:03 - 2018-03-01 08:28 - 002193168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-03-17 13:03 - 2018-03-01 08:28 - 000115096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2018-03-17 13:03 - 2018-03-01 08:27 - 000284112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-03-17 13:03 - 2018-03-01 08:27 - 000221592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2018-03-17 13:03 - 2018-03-01 08:26 - 001524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-03-17 13:03 - 2018-03-01 08:26 - 001057816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-03-17 13:03 - 2018-03-01 08:23 - 005105664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWSnapin.dll
2018-03-17 13:03 - 2018-03-01 08:21 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2018-03-17 13:03 - 2018-03-01 08:09 - 025251840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-03-17 13:03 - 2018-03-01 08:03 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-03-17 13:03 - 2018-03-01 08:03 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-03-17 13:03 - 2018-03-01 08:03 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-03-17 13:03 - 2018-03-01 08:03 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-03-17 13:03 - 2018-03-01 08:03 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-03-17 13:03 - 2018-03-01 08:01 - 019354624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-03-17 13:03 - 2018-03-01 08:01 - 006575616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-03-17 13:03 - 2018-03-01 08:01 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-03-17 13:03 - 2018-03-01 08:01 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-03-17 13:03 - 2018-03-01 08:00 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-03-17 13:03 - 2018-03-01 07:59 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2018-03-17 13:03 - 2018-03-01 07:58 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-03-17 13:03 - 2018-03-01 07:58 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-03-17 13:03 - 2018-03-01 07:58 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2018-03-17 13:03 - 2018-03-01 07:58 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-03-17 13:03 - 2018-03-01 07:57 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-03-17 13:03 - 2018-03-01 07:56 - 018922496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-03-17 13:03 - 2018-03-01 07:56 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-03-17 13:03 - 2018-03-01 07:55 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-03-17 13:03 - 2018-03-01 07:54 - 003664384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-03-17 13:03 - 2018-03-01 07:54 - 003181568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-03-17 13:03 - 2018-03-01 07:54 - 001296896 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-03-17 13:03 - 2018-03-01 07:54 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-03-17 13:03 - 2018-03-01 07:54 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-03-17 13:03 - 2018-03-01 07:54 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-03-17 13:03 - 2018-03-01 07:53 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-03-17 13:03 - 2018-03-01 07:53 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-03-17 13:03 - 2018-03-01 07:53 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-03-17 13:03 - 2018-03-01 07:53 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-03-17 13:03 - 2018-03-01 07:53 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-03-17 13:03 - 2018-03-01 07:53 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-03-17 13:03 - 2018-03-01 07:53 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2018-03-17 13:03 - 2018-03-01 07:53 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-03-17 13:03 - 2018-03-01 07:53 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2018-03-17 13:03 - 2018-03-01 07:53 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2018-03-17 13:03 - 2018-03-01 07:52 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-03-17 13:03 - 2018-03-01 07:52 - 006030336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-03-17 13:03 - 2018-03-01 07:51 - 002329088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2018-03-17 13:03 - 2018-03-01 07:51 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-03-17 13:03 - 2018-03-01 07:51 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2018-03-17 13:03 - 2018-03-01 07:51 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-03-17 13:03 - 2018-03-01 07:50 - 003677184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-03-17 13:03 - 2018-03-01 07:50 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-03-17 13:03 - 2018-03-01 07:50 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-03-17 13:03 - 2018-03-01 07:50 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-03-17 13:03 - 2018-03-01 07:50 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-03-17 13:03 - 2018-03-01 07:49 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-03-17 13:03 - 2018-03-01 07:49 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-03-17 13:03 - 2018-03-01 07:49 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-03-17 13:03 - 2018-03-01 07:49 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2018-03-17 13:03 - 2018-03-01 07:48 - 000543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-03-17 13:03 - 2018-03-01 07:48 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-03-17 13:03 - 2018-03-01 07:47 - 023674368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-03-17 13:03 - 2018-03-01 07:47 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2018-03-17 13:03 - 2018-03-01 07:47 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-03-17 13:03 - 2018-03-01 07:46 - 004051968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-03-17 13:03 - 2018-03-01 07:46 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-03-17 13:03 - 2018-03-01 07:46 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2018-03-17 13:03 - 2018-03-01 07:45 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-03-17 13:03 - 2018-03-01 07:45 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-03-17 13:03 - 2018-03-01 07:45 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-03-17 13:03 - 2018-03-01 07:44 - 008030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-03-17 13:03 - 2018-03-01 07:44 - 005195776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-03-17 13:03 - 2018-03-01 07:43 - 012830208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-03-17 13:03 - 2018-03-01 07:42 - 003505664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2018-03-17 13:03 - 2018-03-01 07:42 - 002084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-03-17 13:03 - 2018-03-01 07:41 - 008103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-03-17 13:03 - 2018-03-01 07:41 - 004745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-03-17 13:03 - 2018-03-01 07:41 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-03-17 13:03 - 2018-03-01 07:41 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-03-17 13:03 - 2018-03-01 07:41 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-03-17 13:03 - 2018-03-01 07:40 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-03-17 13:03 - 2018-03-01 07:39 - 002222592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-03-17 13:03 - 2018-03-01 07:39 - 002035712 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-03-17 13:03 - 2018-03-01 07:39 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2018-03-17 13:03 - 2018-03-01 07:39 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-03-17 13:03 - 2018-03-01 07:38 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-03-17 13:03 - 2018-03-01 07:38 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-03-17 13:03 - 2018-03-01 07:36 - 004050432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-03-17 13:03 - 2018-03-01 07:36 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-03-17 13:03 - 2018-03-01 07:35 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2018-03-17 13:03 - 2018-03-01 07:35 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2018-03-17 13:03 - 2018-03-01 07:35 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-03-17 13:03 - 2018-02-22 04:23 - 001092016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-03-17 13:03 - 2018-02-22 04:23 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-03-17 13:03 - 2018-02-22 04:13 - 000279456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-03-17 13:03 - 2018-02-22 04:13 - 000077216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-03-17 13:03 - 2018-02-22 04:11 - 000109984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-03-17 13:03 - 2018-02-22 04:10 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-03-17 13:03 - 2018-02-22 04:08 - 001206688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-03-17 13:03 - 2018-02-22 04:08 - 001055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-03-17 13:03 - 2018-02-22 04:08 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-03-17 13:03 - 2018-02-22 04:07 - 001415296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-03-17 13:03 - 2018-02-22 04:07 - 001209248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-03-17 13:03 - 2018-02-22 04:07 - 000194456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2018-03-17 13:03 - 2018-02-22 04:03 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-03-17 13:03 - 2018-02-22 04:03 - 000082848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-03-17 13:03 - 2018-02-22 04:02 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-03-17 13:03 - 2018-02-22 04:00 - 000187296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-03-17 13:03 - 2018-02-22 03:59 - 021351624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-03-17 13:03 - 2018-02-22 03:54 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-03-17 13:03 - 2018-02-22 03:52 - 000103328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-03-17 13:03 - 2018-02-22 03:51 - 000555424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-03-17 13:03 - 2018-02-22 03:51 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2018-03-17 13:03 - 2018-02-22 03:51 - 000045472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-03-17 13:03 - 2018-02-22 03:50 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-03-17 13:03 - 2018-02-22 03:50 - 000229272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-03-17 13:03 - 2018-02-22 02:41 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-03-17 13:03 - 2018-02-22 02:31 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2018-03-17 13:03 - 2018-02-22 02:30 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-03-17 13:03 - 2018-02-22 02:30 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-03-17 13:03 - 2018-02-22 02:30 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-03-17 13:03 - 2018-02-22 02:27 - 001282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-03-17 13:03 - 2018-02-22 02:26 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-03-17 13:03 - 2018-02-22 02:26 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2018-03-17 13:03 - 2018-02-22 02:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-03-17 13:03 - 2018-02-22 02:16 - 001286144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-03-17 13:03 - 2018-02-22 02:12 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-03-13 21:12 - 2018-03-13 21:12 - 000000000 ____D C:\Users\lukas_000\AppData\Roaming\BluestacksCN
2018-03-13 20:10 - 2018-03-25 17:53 - 000000000 ____D C:\Program Files (x86)\BlueStacks
2018-03-13 20:10 - 2018-03-25 15:27 - 000000000 ____D C:\Users\lukas_000\AppData\Local\Bluestacks
2018-03-13 19:01 - 2018-03-13 19:01 - 014634624 _____ (BlueStack Systems Inc.) C:\Users\lukas_000\Downloads\BlueStacks.exe
2018-03-04 15:31 - 2018-03-25 13:03 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-03-04 00:33 - 2018-02-23 21:28 - 000136536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-03-04 00:32 - 2018-03-04 00:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2018-03-04 00:32 - 2018-03-04 00:32 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-03-04 00:32 - 2018-02-26 05:50 - 000540472 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-03-04 00:32 - 2018-02-26 05:50 - 000447576 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2018-03-04 00:32 - 2018-02-23 21:22 - 005953096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-03-04 00:32 - 2018-02-23 21:22 - 002587992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-03-04 00:32 - 2018-02-23 21:22 - 001768008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-03-04 00:32 - 2018-02-23 21:22 - 000633984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-03-04 00:32 - 2018-02-23 21:22 - 000451144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-03-04 00:32 - 2018-02-23 21:22 - 000122896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-03-04 00:32 - 2018-02-23 21:22 - 000081752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-03-04 00:32 - 2018-02-16 16:48 - 008083703 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-03-04 00:32 - 2017-12-09 00:25 - 000798520 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2018-03-04 00:32 - 2017-12-09 00:25 - 000490808 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2018-03-04 00:32 - 2017-12-09 00:24 - 000928568 _____ C:\WINDOWS\system32\vulkan-1.dll
2018-03-04 00:32 - 2017-12-09 00:24 - 000591672 _____ C:\WINDOWS\system32\vulkaninfo.exe
2018-03-04 00:30 - 2018-02-26 05:46 - 000997736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-03-04 00:30 - 2018-02-26 05:46 - 000949280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-03-04 00:30 - 2018-02-26 05:46 - 000625696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-03-04 00:30 - 2018-02-26 05:46 - 000516128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 019854816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 016496072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 013571008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 011131688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 004317160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 003717432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 001985384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439101.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 001684000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439101.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 001136944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 001065880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 000749416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-03-04 00:30 - 2018-02-26 05:44 - 000608344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 040277488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 035188640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 001355408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 001345944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 001153752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 001067368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 000902280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 000811992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 000650424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-03-04 00:30 - 2018-02-26 05:43 - 000633040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-03-04 00:30 - 2018-02-26 05:42 - 012966216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-03-04 00:30 - 2018-02-26 05:42 - 011000480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-03-04 00:30 - 2018-02-26 05:42 - 004630848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-03-04 00:30 - 2018-02-26 05:42 - 003938208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-03-04 00:30 - 2018-02-26 05:42 - 001061352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-03-04 00:30 - 2018-02-26 00:11 - 001682288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2018-03-04 00:30 - 2018-02-26 00:11 - 000226760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2018-03-04 00:30 - 2018-02-26 00:11 - 000045600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2018-03-04 00:30 - 2018-02-24 06:36 - 000048407 _____ C:\WINDOWS\system32\nvinfo.pb
2018-03-03 23:41 - 2018-03-03 23:41 - 000380768 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-03-03 13:00 - 2018-03-03 13:00 - 000000000 ____D C:\Users\lukas_000\Documents\Nová složka
2018-03-03 01:55 - 2018-03-03 01:55 - 000000769 _____ C:\Users\Public\Desktop\Simulationcraft(x64).lnk
2018-03-03 01:55 - 2018-03-03 01:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simulationcraft(x64)
2018-03-01 19:01 - 2018-03-25 12:36 - 000000000 ____D C:\Users\lukas_000\AppData\Roaming\discord
2018-03-01 19:01 - 2018-03-01 19:01 - 000002299 _____ C:\Users\lukas_000\Desktop\Discord.lnk
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\lukas_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\lukas_000\AppData\Local\SquirrelTemp
2018-03-01 19:01 - 2018-03-01 19:01 - 000000000 ____D C:\Users\lukas_000\AppData\Local\Discord
2018-02-24 15:28 - 2018-02-24 15:28 - 000000000 ____D C:\Users\lukas_000\Desktop\elvui-10.72

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-03-25 18:17 - 2017-03-26 16:08 - 000000000 ____D C:\FRST
2018-03-25 18:16 - 2017-11-18 19:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-03-25 17:58 - 2017-11-18 19:11 - 003251698 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-03-25 17:58 - 2017-09-30 16:31 - 001499574 _____ C:\WINDOWS\system32\perfh005.dat
2018-03-25 17:58 - 2017-09-30 16:31 - 000381438 _____ C:\WINDOWS\system32\perfc005.dat
2018-03-25 17:54 - 2018-02-16 19:52 - 000025608 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2018-03-25 17:54 - 2018-02-16 19:52 - 000000500 _____ C:\WINDOWS\Tasks\Avast Driver Updater Startup.job
2018-03-25 17:53 - 2017-11-18 19:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-03-25 17:53 - 2017-09-29 10:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-03-25 17:53 - 2017-05-25 12:29 - 000000000 ____D C:\ProgramData\NVIDIA
2018-03-25 17:51 - 2015-09-20 18:43 - 000000000 ____D C:\AdwCleaner
2018-03-25 17:04 - 2015-09-20 17:10 - 000000000 ____D C:\Program Files\trend micro
2018-03-25 15:30 - 2015-07-03 21:22 - 000000000 ____D C:\Program Files (x86)\Google
2018-03-25 15:20 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-03-25 15:20 - 2016-02-10 17:07 - 000000000 ____D C:\Users\lukas_000\AppData\Local\CrashDumps
2018-03-25 14:14 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-03-25 14:14 - 2014-12-03 00:10 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2018-03-25 14:13 - 2014-10-06 12:03 - 000000000 ____D C:\Program Files (x86)\Realtek
2018-03-25 14:08 - 2014-10-06 12:00 - 000000000 ____D C:\Program Files\Intel
2018-03-25 14:05 - 2017-05-25 12:29 - 000317083 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat
2018-03-25 14:05 - 2017-05-25 12:29 - 000006786 _____ C:\WINDOWS\system32\Drivers\rtwavesEFX.dat
2018-03-25 14:05 - 2017-05-25 12:29 - 000002626 _____ C:\WINDOWS\system32\Drivers\rtwavesMFX.dat
2018-03-25 14:05 - 2014-10-06 12:03 - 000000000 ___HD C:\Program Files (x86)\Temp
2018-03-25 14:04 - 2017-05-25 12:29 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-03-25 13:33 - 2017-11-18 19:02 - 000000000 ____D C:\Users\lukas_000
2018-03-25 13:22 - 2015-07-03 22:24 - 000000000 ____D C:\ProgramData\AVAST Software
2018-03-25 13:03 - 2017-03-03 22:36 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-03-25 12:27 - 2017-11-18 19:06 - 000004052 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4FA80E36-C864-4956-9582-E09EBE2A64BB}
2018-03-23 15:54 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-03-23 15:54 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-03-22 01:43 - 2018-02-19 16:52 - 000003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-03-22 01:43 - 2017-11-18 19:06 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-03-22 01:43 - 2017-11-18 19:06 - 000003530 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-03-22 01:43 - 2017-11-18 19:06 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-03-22 01:43 - 2017-11-18 19:06 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-22 01:43 - 2017-11-18 19:06 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-22 01:43 - 2017-11-18 19:06 - 000002860 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1977854332-2955089687-2052700524-1001
2018-03-22 01:43 - 2017-11-18 19:06 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-22 01:43 - 2017-11-18 19:06 - 000002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-22 01:43 - 2017-11-18 19:06 - 000002752 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1977854332-2955089687-2052700524-1001
2018-03-22 01:43 - 2017-11-18 19:06 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-22 01:43 - 2017-11-18 19:06 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-03-22 01:43 - 2017-11-18 19:06 - 000002040 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2018-03-22 01:43 - 2017-11-18 19:06 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-03-22 01:40 - 2015-07-03 22:37 - 000000000 ____D C:\Users\lukas_000\AppData\Local\Battle.net
2018-03-21 17:40 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\rescache
2018-03-20 16:12 - 2016-06-22 16:24 - 000002445 _____ C:\Users\lukas_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-03-20 16:12 - 2015-07-03 21:03 - 000000000 __RDO C:\Users\lukas_000\OneDrive
2018-03-19 17:55 - 2015-08-08 14:58 - 000000000 ____D C:\Users\lukas_000\AppData\Local\ElevatedDiagnostics
2018-03-18 16:53 - 2015-07-03 22:39 - 000000000 ____D C:\Users\lukas_000\Documents\Seznam DVD 2011
2018-03-18 16:45 - 2017-11-18 19:08 - 000000000 ___RD C:\Users\lukas_000\3D Objects
2018-03-18 16:45 - 2015-07-04 06:54 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-03-18 16:34 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-03-18 16:34 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-03-18 16:34 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-03-18 12:18 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-03-17 13:04 - 2017-09-29 15:41 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-03-17 13:04 - 2017-09-29 15:41 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-03-15 22:01 - 2017-11-18 19:06 - 000004206 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-03-14 18:52 - 2015-07-04 20:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-03-14 18:50 - 2017-10-11 09:27 - 130364688 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-14 18:50 - 2015-07-04 20:30 - 130364688 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-03-13 20:10 - 2015-07-03 22:19 - 000000000 ____D C:\Users\lukas_000\AppData\Local\NVIDIA
2018-03-13 19:09 - 2017-09-29 15:46 - 000000000 __RHD C:\Users\Public\Libraries
2018-03-13 17:12 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-03-13 17:12 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-03-07 19:29 - 2017-01-13 19:30 - 000000000 ____D C:\Users\lukas_000\AppData\Roaming\TS3Client
2018-03-06 22:23 - 2017-11-28 20:36 - 000033089 _____ C:\Users\lukas_000\Desktop\Nový textový dokument (2).txt
2018-03-05 19:04 - 2015-07-13 18:12 - 000000000 ____D C:\Users\lukas_000\AppData\Roaming\vlc
2018-03-04 15:37 - 2015-07-03 22:50 - 000000537 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-03-04 15:36 - 2017-03-15 21:39 - 000000000 ___RD C:\Program Files (x86)\Skype
2018-03-04 15:36 - 2015-07-12 14:02 - 000000000 ____D C:\ProgramData\Skype
2018-03-04 15:31 - 2017-03-03 22:36 - 000000000 ____D C:\Program Files\CCleaner
2018-03-04 10:32 - 2015-07-03 21:00 - 000000000 ____D C:\Users\lukas_000\AppData\Local\NVIDIA Corporation
2018-03-04 00:41 - 2017-05-25 12:29 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-03-04 00:41 - 2017-05-25 12:29 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-03-04 00:41 - 2017-05-25 12:29 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-03-04 00:41 - 2015-07-03 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-03-04 00:32 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\Help
2018-03-03 23:42 - 2017-06-06 20:49 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2018-03-03 23:41 - 2018-01-03 22:15 - 000215320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2018-03-03 23:41 - 2018-01-03 22:15 - 000196648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-03-03 23:41 - 2017-03-03 22:49 - 000343752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2018-03-03 23:41 - 2017-03-03 22:49 - 000227504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2018-03-03 23:41 - 2017-03-03 22:49 - 000199440 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2018-03-03 23:41 - 2017-03-03 22:49 - 000057680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2018-03-03 23:41 - 2015-07-03 22:26 - 001026696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-03-03 23:41 - 2015-07-03 22:26 - 000460520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-03-03 23:41 - 2015-07-03 22:26 - 000380528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-03-03 23:41 - 2015-07-03 22:26 - 000205976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-03-03 23:41 - 2015-07-03 22:26 - 000146656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-03-03 23:41 - 2015-07-03 22:26 - 000110328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-03-03 23:41 - 2015-07-03 22:26 - 000084368 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-03-03 23:41 - 2015-07-03 22:26 - 000046968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-03-03 19:48 - 2018-01-14 00:11 - 000000000 ____D C:\Users\lukas_000\AppData\Roaming\SimulationCraft
2018-03-02 23:09 - 2018-01-18 02:36 - 000834552 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-03-02 23:09 - 2018-01-18 02:36 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

Some files in TEMP:
====================
2018-02-19 16:49 - 2018-03-25 17:54 - 000619616 _____ () C:\Users\lukas_000\AppData\Local\Temp\0Kraken71ChromaDevProps.dll
2018-03-25 15:26 - 2018-02-22 11:48 - 000976416 _____ (BlueStack Systems, Inc.) C:\Users\lukas_000\AppData\Local\Temp\BlueStacksClientUninstaller.exe
2018-03-25 15:26 - 2018-02-22 11:48 - 000421368 _____ (CodeTitans) C:\Users\lukas_000\AppData\Local\Temp\JSON.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-03-25 14:45

==================== End of FRST.txt ============================

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#9 Příspěvek od zail »

a zde aditional
Přílohy
Addition.rar
(17.43 KiB) Staženo 53 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: pravdepodobne chrom virus

#10 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
C:\WINDOWS\LastGood.Tmp
C:\Users\lukas_000\AppData\Local\Temp
Task: {18B61C61-4C18-4EC7-8633-06F75405C398} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2015-06-22] () <==== ATTENTION

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#11 Příspěvek od zail »

Fix result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by lukas_000 (25-03-2018 19:06:33) Run:3
Running from C:\Users\lukas_000\Desktop
Loaded Profiles: lukas_000 (Available Profiles: lukas_000)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
C:\WINDOWS\LastGood.Tmp
C:\Users\lukas_000\AppData\Local\Temp
Task: {18B61C61-4C18-4EC7-8633-06F75405C398} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2015-06-22] () <==== ATTENTION

EmptyTemp:
End
*****************

Processes closed successfully.
C:\WINDOWS\LastGood.Tmp => moved successfully
C:\Users\lukas_000\AppData\Local\Temp => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{18B61C61-4C18-4EC7-8633-06F75405C398}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18B61C61-4C18-4EC7-8633-06F75405C398}" => removed successfully
C:\WINDOWS\System32\Tasks\ACC => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACC" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 55688067 B
Java, Flash, Steam htmlcache => 20360302 B
Windows/system/drivers => 15654921 B
Edge => 24986038 B
Chrome => 164626571 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 818 B
NetworkService => 0 B
lukas_000 => 9802507 B

RecycleBin => 0 B
EmptyTemp: => 287.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:06:41 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: pravdepodobne chrom virus

#12 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#13 Příspěvek od zail »

tak bohuzel viz screen
Přílohy
procesor.rar
(210.38 KiB) Staženo 57 x

zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: pravdepodobne chrom virus

#14 Příspěvek od zail »

zajimave je, pokud tuten jeden ukoncim tak googel nespadne a vytizeni zmizi a vse funguje, jakmile restartuji googel chrom musim to zase manualne ukoncit jen tuten jeden antivirus avast nic nehlasi zkousel jsem terminatora taky nic

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119428
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: pravdepodobne chrom virus

#15 Příspěvek od Rudy »

Zkusíme vyčistit prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: http://www.stahuj.centrum.cz/utility_a_ ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno