vkladam log. prosim poradte co dalej
cLogfile of random's system information tool 1.10 (written by random/random)
Run by user at 2018-03-30 21:42:10
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 6 GB (4%) free of 153 GB
Total RAM: 2995 MB (31% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:42:31, on 30. 3. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18921)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NBAgent] "c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [KeNotify] "C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
O23 - Service: Služba ConfigFree WiMAX (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: Služba ConfigFree (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\SysWOW64\rpcnet.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16750 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVG\Antivirus\AVGSvc.exe"
C:\Windows\system32\WLANExt.exe 1478464
\??\C:\Windows\system32\conhost.exe "1129725639140335281-9295511958769769785366274843665476454777329-2113992051
C:\Windows\System32\spoolsv.exe
taskeng.exe {E5C317C8-C7F9-40BC-92BA-FD23F0C0EEF2}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Windows\system32\mfevtps.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"
"C:\Program Files\Windows Live\Mesh\wlcrasvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
WLIDSvcM.exe 2644
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"taskhost.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe" -userServiceMode
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe"
"C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe"
"C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe"
"C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
taskeng.exe {34B02B2E-E238-46A4-AFDA-FDCA6FF63CD3}
"C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe"
AVGUI.exe /nogui
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe"
"C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\AVG\Antivirus\AvEmUpdate.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosA2dp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHid.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHsp.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe"
"C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe"
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7060.0.1985968219\344482344" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" "C:\Users\user\AppData\LocalLow\Mozilla\Temp-{eef804cf-b508-48ec-85be-6f6279072928}" 7060 "\\.\pipe\gecko-crash-server-pipe.7060" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7060.3.1201932375\1394296636" -childID 1 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧
‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 7060 "\\.\pipe\gecko-crash-server-pipe.7060" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7060.13.1042797094\510198452" -childID 2 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧
‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 7060 "\\.\pipe\gecko-crash-server-pipe.7060" tab
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" "C:\Program Files (x86)\McAfee\SiteAdvisor\siteadvisor.mcafee.firefox.extension.json" {4ED1F68A-5463-4931-9384-8FFF5ED91D92}
\??\C:\Windows\system32\conhost.exe "-172363560-502914949690725627158934868616696903281439131538-1304882311-551928815
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7060.27.278622880\1279630038" -childID 4 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧
‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 7060 "\\.\pipe\gecko-crash-server-pipe.7060" tab
"C:\Windows\system32\wuauclt.exe"
"C:\Windows\system32\RunDll32.exe" "C:\Windows\system32\WerConCpl.dll", LaunchErcApp -queuereporting
"C:\Users\user\Desktop\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\3gqmevlp.default-1477556252661
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 78968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2018-03-19 199648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 73288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-09-23 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2018-03-19 167480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]
TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2010-03-19 529784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TosNC"=C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2010-04-23 595816]
"TosReelTimeMonitor"=C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2010-07-09 38304]
"Toshiba TEMPRO"=C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [2010-05-11 1050072]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-07-28 2120808]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2010-09-28 566184]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-08-13 570680]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2010-05-10 915320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-03-10 2052392]
"SmartFaceVWatcher"=C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [2009-10-19 238080]
"TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2010-02-05 709976]
"TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376]
"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [2010-04-19 136136]
"AVGUI.exe"=C:\Program Files\AVG\Antivirus\AvLaunch.exe [2018-03-30 294928]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-04-02 27774936]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
"NBAgent"=c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-09-02 1234216]
"Microsoft Default Manager"=C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2009-11-11 288088]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-10-05 98304]
"SVPWUTIL"=C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [2010-03-03 352256]
"HWSetup"=C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [2010-03-04 423936]
"KeNotify"=C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [2010-08-15 34160]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START []
"TWebCamera"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2010-05-01 2454840]
"ToshibaServiceStation"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2009-10-06 1294136]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
TRDCReminder.lnk - C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-03-30 21:42:11 ----D---- C:\Program Files\trend micro
2018-03-30 21:42:10 ----D---- C:\rsit
2018-03-30 18:15:01 ----D---- C:\Users\user\AppData\Roaming\AVG
2018-03-30 14:59:06 ----A---- C:\Windows\system32\drivers\avgStm.sys
2018-03-30 14:59:04 ----A---- C:\Windows\system32\drivers\avgVmm.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgSP.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgRvrt.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgMonFlt.sys
2018-03-30 14:59:00 ----A---- C:\Windows\system32\drivers\avgHwid.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgRdr2.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgArPot.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgSnx.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgbuniva.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbloga.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbidsha.sys
2018-03-30 14:58:50 ----A---- C:\Windows\system32\drivers\avgbidsdrivera.sys
2018-03-30 14:58:47 ----A---- C:\Windows\system32\drivers\avgbdiska.sys
2018-03-30 14:56:37 ----A---- C:\Windows\system32\avgBoot.exe
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files\AVG
2018-03-30 14:50:28 ----D---- C:\Program Files\AVG
2018-03-30 13:50:20 ----ASH---- C:\pagefile.sys
2018-03-23 11:46:54 ----D---- C:\Program Files (x86)\AVG
2018-03-23 11:45:51 ----HD---- C:\ProgramData\Common Files
2018-03-23 11:45:51 ----D---- C:\ProgramData\Avg
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-03-23 10:30:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-03-23 10:30:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-03-23 10:30:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-03-23 10:30:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-03-23 10:30:20 ----A---- C:\Windows\system32\ieui.dll
2018-03-23 10:30:18 ----A---- C:\Windows\system32\mshtmled.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\jscript9diag.dll
2018-03-23 10:30:12 ----A---- C:\Windows\system32\jscript9.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\wininet.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\jsproxy.dll
2018-03-23 10:30:02 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-03-23 10:29:45 ----A---- C:\Windows\system32\mshtml.dll
2018-03-23 10:29:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-03-23 10:29:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-03-23 10:29:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-03-23 10:28:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-03-23 10:28:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-03-23 10:28:42 ----A---- C:\Windows\system32\msfeeds.dll
2018-03-23 10:28:33 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-03-23 10:28:32 ----A---- C:\Windows\system32\ieapfltr.dll
2018-03-23 10:28:26 ----A---- C:\Windows\system32\ieframe.dll
2018-03-23 10:28:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-03-23 10:28:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\shell32.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\iertutil.dll
2018-03-23 10:28:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-03-23 10:28:19 ----A---- C:\Windows\system32\urlmon.dll
2018-03-23 10:28:17 ----A---- C:\Windows\SYSWOW64\shell32.dll
2018-03-23 10:28:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-03-23 10:28:16 ----A---- C:\Windows\system32\win32k.sys
2018-03-23 10:28:16 ----A---- C:\Windows\system32\vbscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ole32.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\jscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ieUnatt.exe
2018-03-23 10:28:15 ----A---- C:\Windows\system32\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ntdll.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-03-23 10:28:13 ----A---- C:\Windows\system32\xpsrchvw.exe
2018-03-23 10:28:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-03-23 10:28:12 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\schedsvc.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\ie4uinit.exe
2018-03-23 10:28:10 ----A---- C:\Windows\system32\lsasrv.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\IKEEXT.DLL
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtrans.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\sysmain.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\rpcrt4.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\MPSSVC.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\winlogon.exe
2018-03-23 10:28:08 ----A---- C:\Windows\system32\webcheck.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\rpcss.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\srv.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\authui.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\kerberos.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\drivers\http.sys
2018-03-23 10:28:07 ----A---- C:\Windows\system32\crypt32.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\actxprxy.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\schannel.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-03-23 10:28:06 ----A---- C:\Windows\system32\BFE.DLL
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\taskcomp.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\spoolsv.exe
2018-03-23 10:28:05 ----A---- C:\Windows\system32\msrating.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\atmfd.dll
2018-03-23 10:28:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winload.exe
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winhttp.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\ncsi.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\advapi32.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\p2psvc.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\KernelBase.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nlasvc.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\msv1_0.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\kernel32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\inseng.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\iernonce.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\pnrpsvc.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\occache.dll
2018-03-23 10:28:00 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wisptis.exe
2018-03-23 10:28:00 ----A---- C:\Windows\system32\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wcncsvc.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\P2P.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\rpchttp.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\clfs.sys
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\P2P.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\ncrypt.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\cdosys.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\mscms.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\wanarp.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\consent.exe
2018-03-23 10:27:57 ----A---- C:\Windows\system32\certcli.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\adtschema.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\wow64win.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\t2embed.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\netio.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wow64.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\winsrv.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wdigest.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\WcnApi.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\TSpkg.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\icm32.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\hal.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\srcore.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\icfupgd.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\fdWCN.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\pacer.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\conhost.exe
2018-03-23 10:27:54 ----A---- C:\Windows\system32\bcrypt.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appinfo.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appidsvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\mscms.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\icm32.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\TabSvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\nlaapi.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\netbios.sys
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\appid.sys
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidparse.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\csrsrv.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\appidapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\smss.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\secur32.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\rstrui.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\lsass.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-03-23 10:27:50 ----A---- C:\Windows\system32\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\sspicli.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\srclient.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-03-23 10:27:50 ----A---- C:\Windows\system32\auditpol.exe
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasser.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasmxs.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2018-03-23 10:27:49 ----A---- C:\Windows\system32\credssp.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapAuthProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasser.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshnetbs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\sspisrv.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\lpk.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\drivers\hidusb.sys
2018-03-23 10:27:48 ----A---- C:\Windows\system32\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\atmlib.dll
2018-03-23 10:27:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\wow64cpu.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\comcat.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----A---- C:\Windows\system32\apisetschema.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\user.exe
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\INETRES.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptnet.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msobjs.dll
2018-03-22 17:33:59 ----D---- C:\ProgramData\BDLogging
2018-03-22 17:33:59 ----A---- C:\Windows\system32\drivers\trufos.sys
2018-03-22 17:33:58 ----D---- C:\Users\user\AppData\Roaming\IObit
2018-03-22 17:33:54 ----D---- C:\ProgramData\ProductData
2018-03-22 17:30:37 ----D---- C:\Program Files (x86)\IObit
2018-03-22 17:30:20 ----D---- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2018-03-22 17:30:19 ----D---- C:\ProgramData\IObit
2018-03-19 13:37:13 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\drivers\rdbss.sys
2018-03-19 13:37:12 ----A---- C:\Windows\system32\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itircl.dll
2018-03-19 13:37:10 ----A---- C:\Windows\SYSWOW64\iprtprio.dll
2018-03-19 13:37:10 ----A---- C:\Windows\system32\iprtprio.dll
2018-03-19 13:37:07 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-03-19 13:37:07 ----A---- C:\Windows\system32\tzres.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\invagent.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\generaltel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\devinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\centel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\appraiser.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aitstatic.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aepic.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aeinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\acmigration.dll
2018-03-19 13:00:48 ----D---- C:\Windows\rescache
======List of files/folders modified in the last 1 month======
2018-03-30 21:42:11 ----RD---- C:\Program Files
2018-03-30 21:41:49 ----D---- C:\Windows\Temp
2018-03-30 21:31:23 ----D---- C:\Users\user\AppData\Roaming\Skype
2018-03-30 21:22:19 ----D---- C:\Windows\system32\config
2018-03-30 21:22:02 ----A---- C:\Windows\system32\rpcnetp.exe
2018-03-30 21:22:00 ----A---- C:\Windows\SYSWOW64\rpcnet.dll
2018-03-30 21:21:59 ----A---- C:\Windows\SYSWOW64\log.txt
2018-03-30 21:21:27 ----HD---- C:\Config.Msi
2018-03-30 19:27:39 ----D---- C:\Windows\system32\Tasks
2018-03-30 19:27:38 ----SHD---- C:\Windows\Installer
2018-03-30 19:23:55 ----D---- C:\Windows\System32
2018-03-30 19:23:38 ----D---- C:\Windows\SysWOW64
2018-03-30 19:07:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-03-30 19:07:24 ----D---- C:\Windows\inf
2018-03-30 14:59:06 ----D---- C:\Windows\system32\drivers
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files
2018-03-30 13:50:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-30 13:07:45 ----SHD---- C:\System Volume Information
2018-03-30 12:29:26 ----SD---- C:\ProgramData\Microsoft
2018-03-30 12:29:24 ----D---- C:\Program Files (x86)\Microsoft
2018-03-30 12:24:29 ----RD---- C:\Program Files (x86)
2018-03-30 12:19:20 ----D---- C:\Program Files (x86)\Common Files
2018-03-30 10:53:12 ----D---- C:\Windows
2018-03-30 10:53:08 ----D---- C:\Windows\system32\catroot2
2018-03-30 10:52:41 ----D---- C:\Windows\winsxs
2018-03-28 17:11:30 ----D---- C:\Windows\twain_32
2018-03-27 06:26:01 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-03-26 10:56:05 ----D---- C:\Windows\Microsoft.NET
2018-03-26 10:53:22 ----RSD---- C:\Windows\assembly
2018-03-26 10:35:42 ----D---- C:\Program Files\Internet Explorer
2018-03-26 10:35:40 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-03-26 10:35:40 ----D---- C:\Windows\ehome
2018-03-26 10:35:39 ----D---- C:\Windows\SYSWOW64\en-US
2018-03-26 10:35:28 ----D---- C:\Windows\system32\sk-SK
2018-03-26 10:35:26 ----D---- C:\Windows\system32\en-US
2018-03-26 10:35:11 ----D---- C:\Windows\AppPatch
2018-03-26 10:35:11 ----D---- C:\Program Files (x86)\Internet Explorer
2018-03-26 10:35:06 ----D---- C:\Windows\system32\migration
2018-03-26 10:35:06 ----D---- C:\Windows\system32\Boot
2018-03-26 10:34:58 ----D---- C:\Windows\system32\DriverStore
2018-03-26 10:34:42 ----A---- C:\Windows\SYSWOW64\rpcnetp.dll
2018-03-26 10:32:30 ----A---- C:\Windows\SYSWOW64\rpcnetp.exe
2018-03-26 10:23:43 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-03-25 08:33:05 ----D---- C:\Windows\SYSWOW64\Macromed
2018-03-23 11:45:51 ----HD---- C:\ProgramData
2018-03-20 17:08:41 ----D---- C:\Windows\Prefetch
2018-03-20 15:29:34 ----D---- C:\Windows\SYSWOW64\Setup
2018-03-20 15:29:32 ----D---- C:\Windows\system32\Setup
2018-03-20 15:29:29 ----D---- C:\Windows\system32\appraiser
2018-03-20 11:22:08 ----D---- C:\ProgramData\Microsoft Help
2018-03-20 10:52:17 ----A---- C:\Windows\win.ini
2018-03-15 11:49:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-03-15 11:49:10 ----D---- C:\Windows\system32\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avgbidsh;avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [2018-03-30 193024]
R0 avgblog;avgblog; C:\Windows\system32\drivers\avgbloga.sys [2018-03-30 337344]
R0 avgbuniv;avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [2018-03-30 51272]
R0 avgRvrt;avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [2018-03-30 76760]
R0 avgVmm;avgVmm; C:\Windows\system32\drivers\avgVmm.sys [2018-03-30 372920]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-01-15 538136]
R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2010-03-22 46192]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2010-07-07 529000]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2010-07-07 283232]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840]
R1 avgArPot;avgArPot; C:\Windows\system32\drivers\avgArPot.sys [2018-03-30 189032]
R1 avgbdisk;avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [2018-03-30 166552]
R1 avgbidsdriver;avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [2018-03-30 221096]
R1 avgRdr;avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [2018-03-30 102720]
R1 avgSnx;avgSnx; C:\Windows\system32\drivers\avgSnx.sys [2018-03-30 1019088]
R1 avgSP;avgSP; C:\Windows\system32\drivers\avgSP.sys [2018-03-30 452904]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2010-07-07 75032]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2009-07-28 81768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgMonFlt;avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [2018-03-30 139040]
R2 avgStm;avgStm; C:\Windows\system32\drivers\avgStm.sys [2018-03-30 198368]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-10-05 7884288]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-10-05 285696]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-05 2637824]
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver; C:\Windows\system32\DRIVERS\btfilter.sys [2010-10-18 42096]
R3 CeKbFilter;CeKbFilter; C:\Windows\system32\DRIVERS\CeKbFilter.sys [2016-05-13 20592]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2010-07-07 121248]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2010-07-07 190136]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2010-07-07 440688]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008]
R3 RDPDISPM;RDPDISPM; C:\Windows\system32\DRIVERS\rdpdispm.sys [2010-08-31 10752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]
R3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-03-10 316464]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2009-06-17 54664]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2010-04-07 214248]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2010-06-18 18872]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2009-06-19 94336]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2010-05-13 59704]
S3 avgHwid;avgHwid; C:\Windows\system32\drivers\avgHwid.sys [2018-03-30 39352]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2010-07-07 62800]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2010-07-07 94736]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-01-07 232992]
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2009-06-19 50664]
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2009-07-24 26472]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2010-04-26 63488]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S4 IMFMBRProtect;IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFMBRProtect.sys []
S4 IMFSafeBox;IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFSafeBox.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-10-05 203264]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [2018-03-30 304776]
R2 cfWiMAXService;Služba ConfigFree WiMAX; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
R2 ConfigFree Service;Služba ConfigFree; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2010-08-27 1811456]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-03-19 604312]
R2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-07-07 200056]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-07-07 245352]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2010-07-07 149032]
R2 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2010-09-28 489384]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 avgbIDSAgent;avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [2018-03-30 7607288]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 TMachInfo;TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-10-06 51512]
R3 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2010-04-12 196976]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-02-05 137560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S2 rpcnet;Remote Procedure Call (RPC) Net; C:\Windows\SysWOW64\rpcnet.exe [2016-10-23 73232]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-22 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-15 272384]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-02-10 116224]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-27 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2010-05-11 124368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-01 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosim o pomoc.N&eskutocne spomaleny notebook..
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119428
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Dobry den.
Pridavam log
# AdwCleaner 7.0.8.0 - Logfile created on Sat Mar 31 05:49:45 2018
# Updated on 2018/08/02 by Malwarebytes
# Running on Windows 7 Home Premium (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\Users\user\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\user\AppData\LocalLow\IObit\Advanced SystemCare
***** [ Files ] *****
Deleted: C:\Users\All Users\Desktop\eBay.lnk
Deleted: C:\Users\Public\Desktop\eBay.lnk
Deleted: C:\Windows\Temp\tinstall.exe
Deleted: C:\Windows\Temp\tinstall.exe
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
No malicious registry entries deleted.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [1289 B] - [2018/3/31 5:47:56]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
Pridavam log
# AdwCleaner 7.0.8.0 - Logfile created on Sat Mar 31 05:49:45 2018
# Updated on 2018/08/02 by Malwarebytes
# Running on Windows 7 Home Premium (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\Users\user\AppData\LocalLow\IObit\Advanced SystemCare
Deleted: C:\Users\user\AppData\LocalLow\IObit\Advanced SystemCare
***** [ Files ] *****
Deleted: C:\Users\All Users\Desktop\eBay.lnk
Deleted: C:\Users\Public\Desktop\eBay.lnk
Deleted: C:\Windows\Temp\tinstall.exe
Deleted: C:\Windows\Temp\tinstall.exe
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
No malicious registry entries deleted.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries deleted.
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [1289 B] - [2018/3/31 5:47:56]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 119428
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
dobry den
Pripajam novy log z RSIT
Logfile of random's system information tool 1.10 (written by random/random)
Run by user at 2018-03-31 13:53:57
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 8 GB (5%) free of 153 GB
Total RAM: 2995 MB (28% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:55:44, on 31. 3. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18921)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files\AVG\Antivirus\avBugReport.exe
C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NBAgent] "c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [KeNotify] "C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
O23 - Service: Služba ConfigFree WiMAX (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: Služba ConfigFree (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\SysWOW64\rpcnet.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16798 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 3903680
\??\C:\Windows\system32\conhost.exe "-204049579214822663877905139166388758-1772647177-1886204754-53564494-1495510139
"C:\Program Files\AVG\Antivirus\AVGSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {7CDC5DBF-AB90-4AD1-AB2A-E27D1FB98B3E}
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Windows\system32\mfevtps.exe"
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"
"C:\Program Files\Windows Live\Mesh\wlcrasvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
C:\Windows\system32\svchost.exe -k HPService
WLIDSvcM.exe 2524
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe" -userServiceMode
"C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe"
"C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe"
"C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe"
"C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
AVGUI.exe /nogui
taskeng.exe {B68374A2-CB15-400D-836A-603470AC5B10}
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosA2dp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHid.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHsp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.0.1137665784\317424259" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" "C:\Users\user\AppData\LocalLow\Mozilla\Temp-{eef804cf-b508-48ec-85be-6f6279072928}" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.13.243744482\1406862029" -childID 2 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.20.441519698\1375860640" -childID 3 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" "C:\Program Files (x86)\McAfee\SiteAdvisor\siteadvisor.mcafee.firefox.extension.json" {4ED1F68A-5463-4931-9384-8FFF5ED91D92}
\??\C:\Windows\system32\conhost.exe "-615136719-958506277-1453061184967440026810162071-15112375101099214602-293962467
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.34.1585971704\554044864" -childID 5 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files\AVG\Antivirus\avBugReport.exe" --send dumps|report --silent
\??\C:\Windows\system32\conhost.exe "1569338873689659117-5787714691307809288-2112204525841371322489490745-1531822392
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.55.1261817647\623508262" -childID 8 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.62.1207585665\1904923545" -childID 9 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Program Files\AVG\Antivirus\AvEmUpdate.exe"
"C:\Windows\system32\wermgr.exe" "-outproc" "1260" "716"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe"
"C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe"
"C:\Users\user\Desktop\RSITx64.exe"
taskhost.exe $(Arg0)
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe16_ Global\UsGthrCtrlFltPipeMssGthrPipe16 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
=========Mozilla firefox=========
ProfilePath - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\3gqmevlp.default-1477556252661
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 78968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2018-03-19 199648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 73288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-09-23 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2018-03-19 167480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]
TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2010-03-19 529784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TosNC"=C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2010-04-23 595816]
"TosReelTimeMonitor"=C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2010-07-09 38304]
"Toshiba TEMPRO"=C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [2010-05-11 1050072]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-07-28 2120808]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2010-09-28 566184]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-08-13 570680]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2010-05-10 915320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-03-10 2052392]
"SmartFaceVWatcher"=C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [2009-10-19 238080]
"TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2010-02-05 709976]
"TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376]
"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [2010-04-19 136136]
"AVGUI.exe"=C:\Program Files\AVG\Antivirus\AvLaunch.exe [2018-03-30 294928]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-04-02 27774936]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
"NBAgent"=c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-09-02 1234216]
"Microsoft Default Manager"=C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2009-11-11 288088]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-10-05 98304]
"SVPWUTIL"=C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [2010-03-03 352256]
"HWSetup"=C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [2010-03-04 423936]
"KeNotify"=C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [2010-08-15 34160]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START []
"TWebCamera"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2010-05-01 2454840]
"ToshibaServiceStation"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2009-10-06 1294136]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
TRDCReminder.lnk - C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-03-31 07:35:29 ----D---- C:\AdwCleaner
2018-03-30 21:42:11 ----D---- C:\Program Files\trend micro
2018-03-30 21:42:10 ----D---- C:\rsit
2018-03-30 18:15:01 ----D---- C:\Users\user\AppData\Roaming\AVG
2018-03-30 14:59:06 ----A---- C:\Windows\system32\drivers\avgStm.sys
2018-03-30 14:59:04 ----A---- C:\Windows\system32\drivers\avgVmm.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgSP.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgRvrt.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgMonFlt.sys
2018-03-30 14:59:00 ----A---- C:\Windows\system32\drivers\avgHwid.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgRdr2.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgArPot.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgSnx.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgbuniva.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbloga.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbidsha.sys
2018-03-30 14:58:50 ----A---- C:\Windows\system32\drivers\avgbidsdrivera.sys
2018-03-30 14:58:47 ----A---- C:\Windows\system32\drivers\avgbdiska.sys
2018-03-30 14:56:37 ----A---- C:\Windows\system32\avgBoot.exe
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files\AVG
2018-03-30 14:50:28 ----D---- C:\Program Files\AVG
2018-03-30 13:50:20 ----ASH---- C:\pagefile.sys
2018-03-23 11:46:54 ----D---- C:\Program Files (x86)\AVG
2018-03-23 11:45:51 ----HD---- C:\ProgramData\Common Files
2018-03-23 11:45:51 ----D---- C:\ProgramData\Avg
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-03-23 10:30:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-03-23 10:30:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-03-23 10:30:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-03-23 10:30:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-03-23 10:30:20 ----A---- C:\Windows\system32\ieui.dll
2018-03-23 10:30:18 ----A---- C:\Windows\system32\mshtmled.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\jscript9diag.dll
2018-03-23 10:30:12 ----A---- C:\Windows\system32\jscript9.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\wininet.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\jsproxy.dll
2018-03-23 10:30:02 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-03-23 10:29:45 ----A---- C:\Windows\system32\mshtml.dll
2018-03-23 10:29:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-03-23 10:29:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-03-23 10:29:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-03-23 10:28:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-03-23 10:28:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-03-23 10:28:42 ----A---- C:\Windows\system32\msfeeds.dll
2018-03-23 10:28:33 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-03-23 10:28:32 ----A---- C:\Windows\system32\ieapfltr.dll
2018-03-23 10:28:26 ----A---- C:\Windows\system32\ieframe.dll
2018-03-23 10:28:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-03-23 10:28:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\shell32.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\iertutil.dll
2018-03-23 10:28:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-03-23 10:28:19 ----A---- C:\Windows\system32\urlmon.dll
2018-03-23 10:28:17 ----A---- C:\Windows\SYSWOW64\shell32.dll
2018-03-23 10:28:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-03-23 10:28:16 ----A---- C:\Windows\system32\win32k.sys
2018-03-23 10:28:16 ----A---- C:\Windows\system32\vbscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ole32.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\jscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ieUnatt.exe
2018-03-23 10:28:15 ----A---- C:\Windows\system32\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ntdll.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-03-23 10:28:13 ----A---- C:\Windows\system32\xpsrchvw.exe
2018-03-23 10:28:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-03-23 10:28:12 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\schedsvc.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\ie4uinit.exe
2018-03-23 10:28:10 ----A---- C:\Windows\system32\lsasrv.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\IKEEXT.DLL
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtrans.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\sysmain.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\rpcrt4.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\MPSSVC.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\winlogon.exe
2018-03-23 10:28:08 ----A---- C:\Windows\system32\webcheck.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\rpcss.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\srv.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\authui.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\kerberos.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\drivers\http.sys
2018-03-23 10:28:07 ----A---- C:\Windows\system32\crypt32.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\actxprxy.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\schannel.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-03-23 10:28:06 ----A---- C:\Windows\system32\BFE.DLL
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\taskcomp.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\spoolsv.exe
2018-03-23 10:28:05 ----A---- C:\Windows\system32\msrating.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\atmfd.dll
2018-03-23 10:28:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winload.exe
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winhttp.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\ncsi.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\advapi32.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\p2psvc.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\KernelBase.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nlasvc.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\msv1_0.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\kernel32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\inseng.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\iernonce.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\pnrpsvc.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\occache.dll
2018-03-23 10:28:00 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wisptis.exe
2018-03-23 10:28:00 ----A---- C:\Windows\system32\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wcncsvc.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\P2P.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\rpchttp.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\clfs.sys
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\P2P.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\ncrypt.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\cdosys.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\mscms.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\wanarp.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\consent.exe
2018-03-23 10:27:57 ----A---- C:\Windows\system32\certcli.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\adtschema.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\wow64win.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\t2embed.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\netio.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wow64.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\winsrv.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wdigest.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\WcnApi.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\TSpkg.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\icm32.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\hal.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\srcore.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\icfupgd.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\fdWCN.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\pacer.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\conhost.exe
2018-03-23 10:27:54 ----A---- C:\Windows\system32\bcrypt.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appinfo.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appidsvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\mscms.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\icm32.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\TabSvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\nlaapi.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\netbios.sys
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\appid.sys
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidparse.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\csrsrv.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\appidapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\smss.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\secur32.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\rstrui.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\lsass.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-03-23 10:27:50 ----A---- C:\Windows\system32\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\sspicli.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\srclient.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-03-23 10:27:50 ----A---- C:\Windows\system32\auditpol.exe
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasser.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasmxs.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2018-03-23 10:27:49 ----A---- C:\Windows\system32\credssp.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapAuthProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasser.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshnetbs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\sspisrv.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\lpk.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\drivers\hidusb.sys
2018-03-23 10:27:48 ----A---- C:\Windows\system32\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\atmlib.dll
2018-03-23 10:27:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\wow64cpu.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\comcat.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----A---- C:\Windows\system32\apisetschema.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\user.exe
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\INETRES.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptnet.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msobjs.dll
2018-03-22 17:33:59 ----D---- C:\ProgramData\BDLogging
2018-03-22 17:33:59 ----A---- C:\Windows\system32\drivers\trufos.sys
2018-03-22 17:33:58 ----D---- C:\Users\user\AppData\Roaming\IObit
2018-03-22 17:33:54 ----D---- C:\ProgramData\ProductData
2018-03-22 17:30:37 ----D---- C:\Program Files (x86)\IObit
2018-03-22 17:30:20 ----D---- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2018-03-22 17:30:19 ----D---- C:\ProgramData\IObit
2018-03-19 13:37:13 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\drivers\rdbss.sys
2018-03-19 13:37:12 ----A---- C:\Windows\system32\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itircl.dll
2018-03-19 13:37:10 ----A---- C:\Windows\SYSWOW64\iprtprio.dll
2018-03-19 13:37:10 ----A---- C:\Windows\system32\iprtprio.dll
2018-03-19 13:37:07 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-03-19 13:37:07 ----A---- C:\Windows\system32\tzres.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\invagent.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\generaltel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\devinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\centel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\appraiser.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aitstatic.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aepic.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aeinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\acmigration.dll
2018-03-19 13:00:48 ----D---- C:\Windows\rescache
======List of files/folders modified in the last 1 month======
2018-03-31 13:51:16 ----D---- C:\Windows\Temp
2018-03-31 11:43:00 ----D---- C:\Windows\SYSWOW64\Macromed
2018-03-31 11:22:34 ----D---- C:\Users\user\AppData\Roaming\Skype
2018-03-31 07:53:58 ----D---- C:\Windows\system32\config
2018-03-31 07:53:36 ----A---- C:\Windows\system32\rpcnetp.exe
2018-03-31 07:53:34 ----A---- C:\Windows\SYSWOW64\rpcnet.dll
2018-03-31 07:53:34 ----A---- C:\Windows\SYSWOW64\log.txt
2018-03-30 22:30:43 ----D---- C:\Windows\System32
2018-03-30 22:30:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-03-30 22:30:37 ----D---- C:\Windows\inf
2018-03-30 21:42:11 ----RD---- C:\Program Files
2018-03-30 21:21:27 ----HD---- C:\Config.Msi
2018-03-30 19:27:39 ----D---- C:\Windows\system32\Tasks
2018-03-30 19:27:38 ----SHD---- C:\Windows\Installer
2018-03-30 19:23:38 ----D---- C:\Windows\SysWOW64
2018-03-30 14:59:06 ----D---- C:\Windows\system32\drivers
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files
2018-03-30 13:50:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-30 13:07:45 ----SHD---- C:\System Volume Information
2018-03-30 12:29:26 ----SD---- C:\ProgramData\Microsoft
2018-03-30 12:29:24 ----D---- C:\Program Files (x86)\Microsoft
2018-03-30 12:24:29 ----RD---- C:\Program Files (x86)
2018-03-30 12:19:20 ----D---- C:\Program Files (x86)\Common Files
2018-03-30 10:53:12 ----D---- C:\Windows
2018-03-30 10:53:08 ----D---- C:\Windows\system32\catroot2
2018-03-30 10:52:41 ----D---- C:\Windows\winsxs
2018-03-28 17:11:30 ----D---- C:\Windows\twain_32
2018-03-27 06:26:01 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-03-26 10:56:05 ----D---- C:\Windows\Microsoft.NET
2018-03-26 10:53:22 ----RSD---- C:\Windows\assembly
2018-03-26 10:35:42 ----D---- C:\Program Files\Internet Explorer
2018-03-26 10:35:40 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-03-26 10:35:40 ----D---- C:\Windows\ehome
2018-03-26 10:35:39 ----D---- C:\Windows\SYSWOW64\en-US
2018-03-26 10:35:28 ----D---- C:\Windows\system32\sk-SK
2018-03-26 10:35:26 ----D---- C:\Windows\system32\en-US
2018-03-26 10:35:11 ----D---- C:\Windows\AppPatch
2018-03-26 10:35:11 ----D---- C:\Program Files (x86)\Internet Explorer
2018-03-26 10:35:06 ----D---- C:\Windows\system32\migration
2018-03-26 10:35:06 ----D---- C:\Windows\system32\Boot
2018-03-26 10:34:58 ----D---- C:\Windows\system32\DriverStore
2018-03-26 10:34:42 ----A---- C:\Windows\SYSWOW64\rpcnetp.dll
2018-03-26 10:32:30 ----A---- C:\Windows\SYSWOW64\rpcnetp.exe
2018-03-26 10:23:43 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-03-23 11:45:51 ----HD---- C:\ProgramData
2018-03-20 17:08:41 ----D---- C:\Windows\Prefetch
2018-03-20 15:29:34 ----D---- C:\Windows\SYSWOW64\Setup
2018-03-20 15:29:32 ----D---- C:\Windows\system32\Setup
2018-03-20 15:29:29 ----D---- C:\Windows\system32\appraiser
2018-03-20 11:22:08 ----D---- C:\ProgramData\Microsoft Help
2018-03-20 10:52:17 ----A---- C:\Windows\win.ini
2018-03-15 11:49:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-03-15 11:49:10 ----D---- C:\Windows\system32\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avgbidsh;avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [2018-03-30 193024]
R0 avgblog;avgblog; C:\Windows\system32\drivers\avgbloga.sys [2018-03-30 337344]
R0 avgbuniv;avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [2018-03-30 51272]
R0 avgRvrt;avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [2018-03-30 76760]
R0 avgVmm;avgVmm; C:\Windows\system32\drivers\avgVmm.sys [2018-03-30 372920]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-01-15 538136]
R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2010-03-22 46192]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2010-07-07 529000]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2010-07-07 283232]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840]
R1 avgArPot;avgArPot; C:\Windows\system32\drivers\avgArPot.sys [2018-03-30 189032]
R1 avgbdisk;avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [2018-03-30 166552]
R1 avgbidsdriver;avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [2018-03-30 221096]
R1 avgRdr;avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [2018-03-30 102720]
R1 avgSnx;avgSnx; C:\Windows\system32\drivers\avgSnx.sys [2018-03-30 1019088]
R1 avgSP;avgSP; C:\Windows\system32\drivers\avgSP.sys [2018-03-30 452904]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2010-07-07 75032]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2009-07-28 81768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgMonFlt;avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [2018-03-30 139040]
R2 avgStm;avgStm; C:\Windows\system32\drivers\avgStm.sys [2018-03-30 198368]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-10-05 7884288]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-10-05 285696]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-05 2637824]
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver; C:\Windows\system32\DRIVERS\btfilter.sys [2010-10-18 42096]
R3 CeKbFilter;CeKbFilter; C:\Windows\system32\DRIVERS\CeKbFilter.sys [2016-05-13 20592]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2010-07-07 121248]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2010-07-07 190136]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2010-07-07 440688]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008]
R3 RDPDISPM;RDPDISPM; C:\Windows\system32\DRIVERS\rdpdispm.sys [2010-08-31 10752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]
R3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-03-10 316464]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2009-06-17 54664]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2010-04-07 214248]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2010-06-18 18872]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2009-06-19 94336]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2010-05-13 59704]
S3 avgHwid;avgHwid; C:\Windows\system32\drivers\avgHwid.sys [2018-03-30 39352]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2010-07-07 62800]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2010-07-07 94736]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-01-07 232992]
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2009-06-19 50664]
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2009-07-24 26472]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2010-04-26 63488]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S4 IMFMBRProtect;IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFMBRProtect.sys []
S4 IMFSafeBox;IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFSafeBox.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-10-05 203264]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [2018-03-30 304776]
R2 cfWiMAXService;Služba ConfigFree WiMAX; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
R2 ConfigFree Service;Služba ConfigFree; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2010-08-27 1811456]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-03-19 604312]
R2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-07-07 200056]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-07-07 245352]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2010-07-07 149032]
R2 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2010-09-28 489384]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 avgbIDSAgent;avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [2018-03-30 7607288]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 TMachInfo;TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-10-06 51512]
R3 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2010-04-12 196976]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-02-05 137560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 rpcnet;Remote Procedure Call (RPC) Net; C:\Windows\SysWOW64\rpcnet.exe [2016-10-23 73232]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-22 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-15 272384]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-02-10 116224]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-27 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2010-05-11 124368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-01 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
Pripajam novy log z RSIT
Logfile of random's system information tool 1.10 (written by random/random)
Run by user at 2018-03-31 13:53:57
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 8 GB (5%) free of 153 GB
Total RAM: 2995 MB (28% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:55:44, on 31. 3. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18921)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files\AVG\Antivirus\avBugReport.exe
C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NBAgent] "c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [KeNotify] "C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
O23 - Service: Služba ConfigFree WiMAX (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: Služba ConfigFree (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\SysWOW64\rpcnet.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16798 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 3903680
\??\C:\Windows\system32\conhost.exe "-204049579214822663877905139166388758-1772647177-1886204754-53564494-1495510139
"C:\Program Files\AVG\Antivirus\AVGSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {7CDC5DBF-AB90-4AD1-AB2A-E27D1FB98B3E}
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Windows\system32\mfevtps.exe"
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"
"C:\Program Files\Windows Live\Mesh\wlcrasvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
C:\Windows\system32\svchost.exe -k HPService
WLIDSvcM.exe 2524
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe" -userServiceMode
"C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe"
"C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe"
"C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe"
"C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
AVGUI.exe /nogui
taskeng.exe {B68374A2-CB15-400D-836A-603470AC5B10}
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosA2dp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHid.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHsp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.0.1137665784\317424259" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" "C:\Users\user\AppData\LocalLow\Mozilla\Temp-{eef804cf-b508-48ec-85be-6f6279072928}" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.13.243744482\1406862029" -childID 2 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.20.441519698\1375860640" -childID 3 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" "C:\Program Files (x86)\McAfee\SiteAdvisor\siteadvisor.mcafee.firefox.extension.json" {4ED1F68A-5463-4931-9384-8FFF5ED91D92}
\??\C:\Windows\system32\conhost.exe "-615136719-958506277-1453061184967440026810162071-15112375101099214602-293962467
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.34.1585971704\554044864" -childID 5 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files\AVG\Antivirus\avBugReport.exe" --send dumps|report --silent
\??\C:\Windows\system32\conhost.exe "1569338873689659117-5787714691307809288-2112204525841371322489490745-1531822392
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.55.1261817647\623508262" -childID 8 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="6436.62.1207585665\1904923545" -childID 9 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 6436 "\\.\pipe\gecko-crash-server-pipe.6436" tab
"C:\Program Files\AVG\Antivirus\AvEmUpdate.exe"
"C:\Windows\system32\wermgr.exe" "-outproc" "1260" "716"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe"
"C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe"
"C:\Users\user\Desktop\RSITx64.exe"
taskhost.exe $(Arg0)
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe16_ Global\UsGthrCtrlFltPipeMssGthrPipe16 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
=========Mozilla firefox=========
ProfilePath - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\3gqmevlp.default-1477556252661
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 78968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2018-03-19 199648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 73288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-09-23 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2018-03-19 167480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]
TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2010-03-19 529784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TosNC"=C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2010-04-23 595816]
"TosReelTimeMonitor"=C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2010-07-09 38304]
"Toshiba TEMPRO"=C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [2010-05-11 1050072]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-07-28 2120808]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2010-09-28 566184]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-08-13 570680]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2010-05-10 915320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-03-10 2052392]
"SmartFaceVWatcher"=C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [2009-10-19 238080]
"TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2010-02-05 709976]
"TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376]
"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [2010-04-19 136136]
"AVGUI.exe"=C:\Program Files\AVG\Antivirus\AvLaunch.exe [2018-03-30 294928]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-04-02 27774936]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
"NBAgent"=c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-09-02 1234216]
"Microsoft Default Manager"=C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2009-11-11 288088]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-10-05 98304]
"SVPWUTIL"=C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [2010-03-03 352256]
"HWSetup"=C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [2010-03-04 423936]
"KeNotify"=C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [2010-08-15 34160]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START []
"TWebCamera"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2010-05-01 2454840]
"ToshibaServiceStation"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2009-10-06 1294136]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
TRDCReminder.lnk - C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-03-31 07:35:29 ----D---- C:\AdwCleaner
2018-03-30 21:42:11 ----D---- C:\Program Files\trend micro
2018-03-30 21:42:10 ----D---- C:\rsit
2018-03-30 18:15:01 ----D---- C:\Users\user\AppData\Roaming\AVG
2018-03-30 14:59:06 ----A---- C:\Windows\system32\drivers\avgStm.sys
2018-03-30 14:59:04 ----A---- C:\Windows\system32\drivers\avgVmm.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgSP.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgRvrt.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgMonFlt.sys
2018-03-30 14:59:00 ----A---- C:\Windows\system32\drivers\avgHwid.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgRdr2.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgArPot.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgSnx.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgbuniva.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbloga.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbidsha.sys
2018-03-30 14:58:50 ----A---- C:\Windows\system32\drivers\avgbidsdrivera.sys
2018-03-30 14:58:47 ----A---- C:\Windows\system32\drivers\avgbdiska.sys
2018-03-30 14:56:37 ----A---- C:\Windows\system32\avgBoot.exe
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files\AVG
2018-03-30 14:50:28 ----D---- C:\Program Files\AVG
2018-03-30 13:50:20 ----ASH---- C:\pagefile.sys
2018-03-23 11:46:54 ----D---- C:\Program Files (x86)\AVG
2018-03-23 11:45:51 ----HD---- C:\ProgramData\Common Files
2018-03-23 11:45:51 ----D---- C:\ProgramData\Avg
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-03-23 10:30:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-03-23 10:30:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-03-23 10:30:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-03-23 10:30:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-03-23 10:30:20 ----A---- C:\Windows\system32\ieui.dll
2018-03-23 10:30:18 ----A---- C:\Windows\system32\mshtmled.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\jscript9diag.dll
2018-03-23 10:30:12 ----A---- C:\Windows\system32\jscript9.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\wininet.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\jsproxy.dll
2018-03-23 10:30:02 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-03-23 10:29:45 ----A---- C:\Windows\system32\mshtml.dll
2018-03-23 10:29:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-03-23 10:29:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-03-23 10:29:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-03-23 10:28:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-03-23 10:28:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-03-23 10:28:42 ----A---- C:\Windows\system32\msfeeds.dll
2018-03-23 10:28:33 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-03-23 10:28:32 ----A---- C:\Windows\system32\ieapfltr.dll
2018-03-23 10:28:26 ----A---- C:\Windows\system32\ieframe.dll
2018-03-23 10:28:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-03-23 10:28:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\shell32.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\iertutil.dll
2018-03-23 10:28:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-03-23 10:28:19 ----A---- C:\Windows\system32\urlmon.dll
2018-03-23 10:28:17 ----A---- C:\Windows\SYSWOW64\shell32.dll
2018-03-23 10:28:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-03-23 10:28:16 ----A---- C:\Windows\system32\win32k.sys
2018-03-23 10:28:16 ----A---- C:\Windows\system32\vbscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ole32.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\jscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ieUnatt.exe
2018-03-23 10:28:15 ----A---- C:\Windows\system32\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ntdll.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-03-23 10:28:13 ----A---- C:\Windows\system32\xpsrchvw.exe
2018-03-23 10:28:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-03-23 10:28:12 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\schedsvc.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\ie4uinit.exe
2018-03-23 10:28:10 ----A---- C:\Windows\system32\lsasrv.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\IKEEXT.DLL
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtrans.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\sysmain.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\rpcrt4.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\MPSSVC.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\winlogon.exe
2018-03-23 10:28:08 ----A---- C:\Windows\system32\webcheck.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\rpcss.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\srv.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\authui.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\kerberos.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\drivers\http.sys
2018-03-23 10:28:07 ----A---- C:\Windows\system32\crypt32.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\actxprxy.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\schannel.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-03-23 10:28:06 ----A---- C:\Windows\system32\BFE.DLL
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\taskcomp.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\spoolsv.exe
2018-03-23 10:28:05 ----A---- C:\Windows\system32\msrating.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\atmfd.dll
2018-03-23 10:28:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winload.exe
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winhttp.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\ncsi.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\advapi32.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\p2psvc.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\KernelBase.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nlasvc.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\msv1_0.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\kernel32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\inseng.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\iernonce.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\pnrpsvc.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\occache.dll
2018-03-23 10:28:00 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wisptis.exe
2018-03-23 10:28:00 ----A---- C:\Windows\system32\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wcncsvc.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\P2P.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\rpchttp.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\clfs.sys
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\P2P.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\ncrypt.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\cdosys.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\mscms.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\wanarp.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\consent.exe
2018-03-23 10:27:57 ----A---- C:\Windows\system32\certcli.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\adtschema.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\wow64win.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\t2embed.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\netio.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wow64.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\winsrv.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wdigest.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\WcnApi.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\TSpkg.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\icm32.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\hal.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\srcore.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\icfupgd.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\fdWCN.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\pacer.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\conhost.exe
2018-03-23 10:27:54 ----A---- C:\Windows\system32\bcrypt.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appinfo.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appidsvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\mscms.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\icm32.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\TabSvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\nlaapi.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\netbios.sys
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\appid.sys
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidparse.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\csrsrv.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\appidapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\smss.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\secur32.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\rstrui.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\lsass.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-03-23 10:27:50 ----A---- C:\Windows\system32\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\sspicli.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\srclient.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-03-23 10:27:50 ----A---- C:\Windows\system32\auditpol.exe
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasser.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasmxs.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2018-03-23 10:27:49 ----A---- C:\Windows\system32\credssp.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapAuthProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasser.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshnetbs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\sspisrv.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\lpk.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\drivers\hidusb.sys
2018-03-23 10:27:48 ----A---- C:\Windows\system32\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\atmlib.dll
2018-03-23 10:27:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\wow64cpu.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\comcat.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----A---- C:\Windows\system32\apisetschema.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\user.exe
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\INETRES.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptnet.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msobjs.dll
2018-03-22 17:33:59 ----D---- C:\ProgramData\BDLogging
2018-03-22 17:33:59 ----A---- C:\Windows\system32\drivers\trufos.sys
2018-03-22 17:33:58 ----D---- C:\Users\user\AppData\Roaming\IObit
2018-03-22 17:33:54 ----D---- C:\ProgramData\ProductData
2018-03-22 17:30:37 ----D---- C:\Program Files (x86)\IObit
2018-03-22 17:30:20 ----D---- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2018-03-22 17:30:19 ----D---- C:\ProgramData\IObit
2018-03-19 13:37:13 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\drivers\rdbss.sys
2018-03-19 13:37:12 ----A---- C:\Windows\system32\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itircl.dll
2018-03-19 13:37:10 ----A---- C:\Windows\SYSWOW64\iprtprio.dll
2018-03-19 13:37:10 ----A---- C:\Windows\system32\iprtprio.dll
2018-03-19 13:37:07 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-03-19 13:37:07 ----A---- C:\Windows\system32\tzres.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\invagent.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\generaltel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\devinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\centel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\appraiser.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aitstatic.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aepic.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aeinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\acmigration.dll
2018-03-19 13:00:48 ----D---- C:\Windows\rescache
======List of files/folders modified in the last 1 month======
2018-03-31 13:51:16 ----D---- C:\Windows\Temp
2018-03-31 11:43:00 ----D---- C:\Windows\SYSWOW64\Macromed
2018-03-31 11:22:34 ----D---- C:\Users\user\AppData\Roaming\Skype
2018-03-31 07:53:58 ----D---- C:\Windows\system32\config
2018-03-31 07:53:36 ----A---- C:\Windows\system32\rpcnetp.exe
2018-03-31 07:53:34 ----A---- C:\Windows\SYSWOW64\rpcnet.dll
2018-03-31 07:53:34 ----A---- C:\Windows\SYSWOW64\log.txt
2018-03-30 22:30:43 ----D---- C:\Windows\System32
2018-03-30 22:30:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-03-30 22:30:37 ----D---- C:\Windows\inf
2018-03-30 21:42:11 ----RD---- C:\Program Files
2018-03-30 21:21:27 ----HD---- C:\Config.Msi
2018-03-30 19:27:39 ----D---- C:\Windows\system32\Tasks
2018-03-30 19:27:38 ----SHD---- C:\Windows\Installer
2018-03-30 19:23:38 ----D---- C:\Windows\SysWOW64
2018-03-30 14:59:06 ----D---- C:\Windows\system32\drivers
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files
2018-03-30 13:50:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-30 13:07:45 ----SHD---- C:\System Volume Information
2018-03-30 12:29:26 ----SD---- C:\ProgramData\Microsoft
2018-03-30 12:29:24 ----D---- C:\Program Files (x86)\Microsoft
2018-03-30 12:24:29 ----RD---- C:\Program Files (x86)
2018-03-30 12:19:20 ----D---- C:\Program Files (x86)\Common Files
2018-03-30 10:53:12 ----D---- C:\Windows
2018-03-30 10:53:08 ----D---- C:\Windows\system32\catroot2
2018-03-30 10:52:41 ----D---- C:\Windows\winsxs
2018-03-28 17:11:30 ----D---- C:\Windows\twain_32
2018-03-27 06:26:01 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-03-26 10:56:05 ----D---- C:\Windows\Microsoft.NET
2018-03-26 10:53:22 ----RSD---- C:\Windows\assembly
2018-03-26 10:35:42 ----D---- C:\Program Files\Internet Explorer
2018-03-26 10:35:40 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-03-26 10:35:40 ----D---- C:\Windows\ehome
2018-03-26 10:35:39 ----D---- C:\Windows\SYSWOW64\en-US
2018-03-26 10:35:28 ----D---- C:\Windows\system32\sk-SK
2018-03-26 10:35:26 ----D---- C:\Windows\system32\en-US
2018-03-26 10:35:11 ----D---- C:\Windows\AppPatch
2018-03-26 10:35:11 ----D---- C:\Program Files (x86)\Internet Explorer
2018-03-26 10:35:06 ----D---- C:\Windows\system32\migration
2018-03-26 10:35:06 ----D---- C:\Windows\system32\Boot
2018-03-26 10:34:58 ----D---- C:\Windows\system32\DriverStore
2018-03-26 10:34:42 ----A---- C:\Windows\SYSWOW64\rpcnetp.dll
2018-03-26 10:32:30 ----A---- C:\Windows\SYSWOW64\rpcnetp.exe
2018-03-26 10:23:43 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-03-23 11:45:51 ----HD---- C:\ProgramData
2018-03-20 17:08:41 ----D---- C:\Windows\Prefetch
2018-03-20 15:29:34 ----D---- C:\Windows\SYSWOW64\Setup
2018-03-20 15:29:32 ----D---- C:\Windows\system32\Setup
2018-03-20 15:29:29 ----D---- C:\Windows\system32\appraiser
2018-03-20 11:22:08 ----D---- C:\ProgramData\Microsoft Help
2018-03-20 10:52:17 ----A---- C:\Windows\win.ini
2018-03-15 11:49:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-03-15 11:49:10 ----D---- C:\Windows\system32\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avgbidsh;avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [2018-03-30 193024]
R0 avgblog;avgblog; C:\Windows\system32\drivers\avgbloga.sys [2018-03-30 337344]
R0 avgbuniv;avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [2018-03-30 51272]
R0 avgRvrt;avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [2018-03-30 76760]
R0 avgVmm;avgVmm; C:\Windows\system32\drivers\avgVmm.sys [2018-03-30 372920]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-01-15 538136]
R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2010-03-22 46192]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2010-07-07 529000]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2010-07-07 283232]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840]
R1 avgArPot;avgArPot; C:\Windows\system32\drivers\avgArPot.sys [2018-03-30 189032]
R1 avgbdisk;avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [2018-03-30 166552]
R1 avgbidsdriver;avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [2018-03-30 221096]
R1 avgRdr;avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [2018-03-30 102720]
R1 avgSnx;avgSnx; C:\Windows\system32\drivers\avgSnx.sys [2018-03-30 1019088]
R1 avgSP;avgSP; C:\Windows\system32\drivers\avgSP.sys [2018-03-30 452904]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2010-07-07 75032]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2009-07-28 81768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgMonFlt;avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [2018-03-30 139040]
R2 avgStm;avgStm; C:\Windows\system32\drivers\avgStm.sys [2018-03-30 198368]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-10-05 7884288]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-10-05 285696]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-05 2637824]
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver; C:\Windows\system32\DRIVERS\btfilter.sys [2010-10-18 42096]
R3 CeKbFilter;CeKbFilter; C:\Windows\system32\DRIVERS\CeKbFilter.sys [2016-05-13 20592]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2010-07-07 121248]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2010-07-07 190136]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2010-07-07 440688]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008]
R3 RDPDISPM;RDPDISPM; C:\Windows\system32\DRIVERS\rdpdispm.sys [2010-08-31 10752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]
R3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-03-10 316464]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2009-06-17 54664]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2010-04-07 214248]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2010-06-18 18872]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2009-06-19 94336]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2010-05-13 59704]
S3 avgHwid;avgHwid; C:\Windows\system32\drivers\avgHwid.sys [2018-03-30 39352]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2010-07-07 62800]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2010-07-07 94736]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-01-07 232992]
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2009-06-19 50664]
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2009-07-24 26472]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2010-04-26 63488]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S4 IMFMBRProtect;IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFMBRProtect.sys []
S4 IMFSafeBox;IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFSafeBox.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-10-05 203264]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [2018-03-30 304776]
R2 cfWiMAXService;Služba ConfigFree WiMAX; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
R2 ConfigFree Service;Služba ConfigFree; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2010-08-27 1811456]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-03-19 604312]
R2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-07-07 200056]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-07-07 245352]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2010-07-07 149032]
R2 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2010-09-28 489384]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 avgbIDSAgent;avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [2018-03-30 7607288]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 TMachInfo;TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-10-06 51512]
R3 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2010-04-12 196976]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-02-05 137560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 rpcnet;Remote Procedure Call (RPC) Net; C:\Windows\SysWOW64\rpcnet.exe [2016-10-23 73232]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-22 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-15 272384]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-02-10 116224]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-27 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2010-05-11 124368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-01 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119428
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.:files
C:\Program Files (x86)\Skype\Toolbars
C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]/64
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
nech sa paci...novy log
Logfile of random's system information tool 1.10 (written by random/random)
Run by user at 2018-04-02 12:59:03
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 9 GB (6%) free of 153 GB
Total RAM: 2995 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:59:20, on 2. 4. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18921)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NBAgent] "c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [KeNotify] "C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
O23 - Service: Služba ConfigFree WiMAX (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: Služba ConfigFree (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\SysWOW64\rpcnet.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16645 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
atieclxx
"C:\Windows\system32\makecab.exe" C:\Windows\Logs\CBS\CbsPersist_20160607054159.log C:\Windows\Logs\CBS\CbsPersist_20160607054159.cab
\??\C:\Windows\system32\conhost.exe "-260823738-801392991278475197-17693098981303280272320131418476143881388665885
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 24091520
\??\C:\Windows\system32\conhost.exe "-467164685-1812008551-886805718-5463435141351287298-931253907225339639-1366838562
"C:\Program Files\AVG\Antivirus\AVGSvc.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {69A1FB59-C2A9-4FA0-9F79-B98C2B89E945}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Windows\system32\mfevtps.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"
"C:\Program Files\Windows Live\Mesh\wlcrasvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
WLIDSvcM.exe 2600
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe"
"C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe"
taskeng.exe {88582667-B772-4CED-AD7E-09CFDD9B9F26}
"C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe" -userServiceMode
"C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
AVGUI.exe /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosA2dp.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHid.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHsp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe"
"C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe"
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.0.1142368127\249831754" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" "C:\Users\user\AppData\LocalLow\Mozilla\Temp-{eef804cf-b508-48ec-85be-6f6279072928}" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.3.1863847705\690489213" -childID 1 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.13.752677300\527591822" -childID 2 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" tab
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" "C:\Program Files (x86)\McAfee\SiteAdvisor\siteadvisor.mcafee.firefox.extension.json" {4ED1F68A-5463-4931-9384-8FFF5ED91D92}
\??\C:\Windows\system32\conhost.exe "-1625811030-2465234521339615343-221046982-731908001297050258694849953-1100885289
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.27.1673470851\1198647472" -childID 4 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" tab
"C:\Program Files\AVG\Antivirus\AvEmUpdate.exe"
"C:\Program Files\AVG\Antivirus\AVGUI.exe" --type=renderer --disable-gpu-compositing --disable-pinch --no-sandbox --primordial-pipe-token=3C8A1C749627B4672863E545C490A9FF --lang=en-US --lang=en-US --log-file="C:\Users\user\AppData\Roaming\AVG\Antivirus\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 Avastium (18.2.3046)" --proxy-auto-detect --disable-webaudio --mute-audio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=3C8A1C749627B4672863E545C490A9FF --renderer-client-id=3 --mojo-platform-channel-handle=3640 /prefetch:1
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.34.1333528640\1960784337" -childID 5 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" tab
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe" /send
"C:\Users\user\Desktop\RSITx64.exe"
"C:\Windows\system32\RunDll32.exe" "C:\Windows\system32\WerConCpl.dll", LaunchErcApp -queuereporting
=========Mozilla firefox=========
ProfilePath - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\3gqmevlp.default-1477556252661
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 78968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2018-03-19 199648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 73288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-09-23 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2018-03-19 167480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]
TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2010-03-19 529784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TosNC"=C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2010-04-23 595816]
"TosReelTimeMonitor"=C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2010-07-09 38304]
"Toshiba TEMPRO"=C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [2010-05-11 1050072]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-07-28 2120808]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2010-09-28 566184]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-08-13 570680]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2010-05-10 915320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-03-10 2052392]
"SmartFaceVWatcher"=C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [2009-10-19 238080]
"TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2010-02-05 709976]
"TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376]
"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [2010-04-19 136136]
"AVGUI.exe"=C:\Program Files\AVG\Antivirus\AvLaunch.exe [2018-03-30 294928]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-04-02 27774936]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
"NBAgent"=c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-09-02 1234216]
"Microsoft Default Manager"=C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2009-11-11 288088]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-10-05 98304]
"SVPWUTIL"=C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [2010-03-03 352256]
"HWSetup"=C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [2010-03-04 423936]
"KeNotify"=C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [2010-08-15 34160]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START []
"TWebCamera"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2010-05-01 2454840]
"ToshibaServiceStation"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2009-10-06 1294136]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
TRDCReminder.lnk - C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-04-02 07:52:01 ----D---- C:\_OTM
2018-03-31 07:35:29 ----D---- C:\AdwCleaner
2018-03-30 21:42:11 ----D---- C:\Program Files\trend micro
2018-03-30 21:42:10 ----D---- C:\rsit
2018-03-30 18:15:01 ----D---- C:\Users\user\AppData\Roaming\AVG
2018-03-30 14:59:06 ----A---- C:\Windows\system32\drivers\avgStm.sys
2018-03-30 14:59:04 ----A---- C:\Windows\system32\drivers\avgVmm.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgSP.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgRvrt.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgMonFlt.sys
2018-03-30 14:59:00 ----A---- C:\Windows\system32\drivers\avgHwid.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgRdr2.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgArPot.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgSnx.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgbuniva.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbloga.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbidsha.sys
2018-03-30 14:58:50 ----A---- C:\Windows\system32\drivers\avgbidsdrivera.sys
2018-03-30 14:58:47 ----A---- C:\Windows\system32\drivers\avgbdiska.sys
2018-03-30 14:56:37 ----A---- C:\Windows\system32\avgBoot.exe
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files\AVG
2018-03-30 14:50:28 ----D---- C:\Program Files\AVG
2018-03-30 13:50:20 ----ASH---- C:\pagefile.sys
2018-03-23 11:46:54 ----D---- C:\Program Files (x86)\AVG
2018-03-23 11:45:51 ----HD---- C:\ProgramData\Common Files
2018-03-23 11:45:51 ----D---- C:\ProgramData\Avg
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-03-23 10:30:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-03-23 10:30:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-03-23 10:30:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-03-23 10:30:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-03-23 10:30:20 ----A---- C:\Windows\system32\ieui.dll
2018-03-23 10:30:18 ----A---- C:\Windows\system32\mshtmled.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\jscript9diag.dll
2018-03-23 10:30:12 ----A---- C:\Windows\system32\jscript9.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\wininet.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\jsproxy.dll
2018-03-23 10:30:02 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-03-23 10:29:45 ----A---- C:\Windows\system32\mshtml.dll
2018-03-23 10:29:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-03-23 10:29:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-03-23 10:29:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-03-23 10:28:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-03-23 10:28:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-03-23 10:28:42 ----A---- C:\Windows\system32\msfeeds.dll
2018-03-23 10:28:33 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-03-23 10:28:32 ----A---- C:\Windows\system32\ieapfltr.dll
2018-03-23 10:28:26 ----A---- C:\Windows\system32\ieframe.dll
2018-03-23 10:28:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-03-23 10:28:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\shell32.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\iertutil.dll
2018-03-23 10:28:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-03-23 10:28:19 ----A---- C:\Windows\system32\urlmon.dll
2018-03-23 10:28:17 ----A---- C:\Windows\SYSWOW64\shell32.dll
2018-03-23 10:28:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-03-23 10:28:16 ----A---- C:\Windows\system32\win32k.sys
2018-03-23 10:28:16 ----A---- C:\Windows\system32\vbscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ole32.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\jscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ieUnatt.exe
2018-03-23 10:28:15 ----A---- C:\Windows\system32\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ntdll.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-03-23 10:28:13 ----A---- C:\Windows\system32\xpsrchvw.exe
2018-03-23 10:28:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-03-23 10:28:12 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\schedsvc.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\ie4uinit.exe
2018-03-23 10:28:10 ----A---- C:\Windows\system32\lsasrv.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\IKEEXT.DLL
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtrans.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\sysmain.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\rpcrt4.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\MPSSVC.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\winlogon.exe
2018-03-23 10:28:08 ----A---- C:\Windows\system32\webcheck.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\rpcss.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\srv.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\authui.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\kerberos.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\drivers\http.sys
2018-03-23 10:28:07 ----A---- C:\Windows\system32\crypt32.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\actxprxy.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\schannel.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-03-23 10:28:06 ----A---- C:\Windows\system32\BFE.DLL
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\taskcomp.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\spoolsv.exe
2018-03-23 10:28:05 ----A---- C:\Windows\system32\msrating.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\atmfd.dll
2018-03-23 10:28:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winload.exe
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winhttp.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\ncsi.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\advapi32.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\p2psvc.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\KernelBase.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nlasvc.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\msv1_0.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\kernel32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\inseng.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\iernonce.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\pnrpsvc.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\occache.dll
2018-03-23 10:28:00 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wisptis.exe
2018-03-23 10:28:00 ----A---- C:\Windows\system32\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wcncsvc.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\P2P.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\rpchttp.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\clfs.sys
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\P2P.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\ncrypt.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\cdosys.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\mscms.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\wanarp.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\consent.exe
2018-03-23 10:27:57 ----A---- C:\Windows\system32\certcli.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\adtschema.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\wow64win.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\t2embed.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\netio.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wow64.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\winsrv.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wdigest.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\WcnApi.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\TSpkg.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\icm32.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\hal.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\srcore.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\icfupgd.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\fdWCN.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\pacer.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\conhost.exe
2018-03-23 10:27:54 ----A---- C:\Windows\system32\bcrypt.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appinfo.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appidsvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\mscms.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\icm32.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\TabSvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\nlaapi.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\netbios.sys
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\appid.sys
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidparse.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\csrsrv.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\appidapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\smss.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\secur32.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\rstrui.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\lsass.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-03-23 10:27:50 ----A---- C:\Windows\system32\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\sspicli.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\srclient.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-03-23 10:27:50 ----A---- C:\Windows\system32\auditpol.exe
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasser.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasmxs.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2018-03-23 10:27:49 ----A---- C:\Windows\system32\credssp.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapAuthProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasser.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshnetbs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\sspisrv.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\lpk.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\drivers\hidusb.sys
2018-03-23 10:27:48 ----A---- C:\Windows\system32\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\atmlib.dll
2018-03-23 10:27:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\wow64cpu.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\comcat.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----A---- C:\Windows\system32\apisetschema.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\user.exe
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\INETRES.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptnet.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msobjs.dll
2018-03-22 17:33:59 ----D---- C:\ProgramData\BDLogging
2018-03-22 17:33:59 ----A---- C:\Windows\system32\drivers\trufos.sys
2018-03-22 17:33:58 ----D---- C:\Users\user\AppData\Roaming\IObit
2018-03-22 17:33:54 ----D---- C:\ProgramData\ProductData
2018-03-22 17:30:37 ----D---- C:\Program Files (x86)\IObit
2018-03-22 17:30:19 ----D---- C:\ProgramData\IObit
2018-03-19 13:37:13 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\drivers\rdbss.sys
2018-03-19 13:37:12 ----A---- C:\Windows\system32\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itircl.dll
2018-03-19 13:37:10 ----A---- C:\Windows\SYSWOW64\iprtprio.dll
2018-03-19 13:37:10 ----A---- C:\Windows\system32\iprtprio.dll
2018-03-19 13:37:07 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-03-19 13:37:07 ----A---- C:\Windows\system32\tzres.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\invagent.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\generaltel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\devinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\centel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\appraiser.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aitstatic.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aepic.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aeinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\acmigration.dll
2018-03-19 13:00:48 ----D---- C:\Windows\rescache
======List of files/folders modified in the last 1 month======
2018-04-02 12:53:43 ----D---- C:\Users\user\AppData\Roaming\Skype
2018-04-02 12:52:43 ----D---- C:\Windows\Temp
2018-04-02 12:46:17 ----D---- C:\Windows\system32\config
2018-04-02 12:45:57 ----A---- C:\Windows\system32\rpcnetp.exe
2018-04-02 12:45:54 ----A---- C:\Windows\SYSWOW64\rpcnet.dll
2018-04-02 12:45:51 ----A---- C:\Windows\SYSWOW64\log.txt
2018-04-02 07:57:15 ----A---- C:\Windows\SYSWOW64\rpcnetp.dll
2018-04-02 07:56:50 ----A---- C:\Windows\SYSWOW64\rpcnetp.exe
2018-04-02 07:52:08 ----RD---- C:\Program Files (x86)\Skype
2018-04-02 07:52:08 ----HD---- C:\ProgramData
2018-04-02 07:05:52 ----D---- C:\Windows\System32
2018-04-02 07:05:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-04-02 07:05:30 ----D---- C:\Windows\inf
2018-04-01 20:17:51 ----D---- C:\Windows\SYSWOW64\Macromed
2018-03-30 21:42:11 ----RD---- C:\Program Files
2018-03-30 21:21:27 ----HD---- C:\Config.Msi
2018-03-30 19:27:39 ----D---- C:\Windows\system32\Tasks
2018-03-30 19:27:38 ----SHD---- C:\Windows\Installer
2018-03-30 19:23:38 ----D---- C:\Windows\SysWOW64
2018-03-30 14:59:06 ----D---- C:\Windows\system32\drivers
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files
2018-03-30 13:50:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-30 13:07:45 ----SHD---- C:\System Volume Information
2018-03-30 12:29:26 ----SD---- C:\ProgramData\Microsoft
2018-03-30 12:29:24 ----D---- C:\Program Files (x86)\Microsoft
2018-03-30 12:24:29 ----RD---- C:\Program Files (x86)
2018-03-30 12:19:20 ----D---- C:\Program Files (x86)\Common Files
2018-03-30 10:53:12 ----D---- C:\Windows
2018-03-30 10:53:08 ----D---- C:\Windows\system32\catroot2
2018-03-30 10:52:41 ----D---- C:\Windows\winsxs
2018-03-28 17:11:30 ----D---- C:\Windows\twain_32
2018-03-27 06:26:01 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-03-26 10:56:05 ----D---- C:\Windows\Microsoft.NET
2018-03-26 10:53:22 ----RSD---- C:\Windows\assembly
2018-03-26 10:35:42 ----D---- C:\Program Files\Internet Explorer
2018-03-26 10:35:40 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-03-26 10:35:40 ----D---- C:\Windows\ehome
2018-03-26 10:35:39 ----D---- C:\Windows\SYSWOW64\en-US
2018-03-26 10:35:28 ----D---- C:\Windows\system32\sk-SK
2018-03-26 10:35:26 ----D---- C:\Windows\system32\en-US
2018-03-26 10:35:11 ----D---- C:\Windows\AppPatch
2018-03-26 10:35:11 ----D---- C:\Program Files (x86)\Internet Explorer
2018-03-26 10:35:06 ----D---- C:\Windows\system32\migration
2018-03-26 10:35:06 ----D---- C:\Windows\system32\Boot
2018-03-26 10:34:58 ----D---- C:\Windows\system32\DriverStore
2018-03-26 10:23:43 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-03-20 17:08:41 ----D---- C:\Windows\Prefetch
2018-03-20 15:29:34 ----D---- C:\Windows\SYSWOW64\Setup
2018-03-20 15:29:32 ----D---- C:\Windows\system32\Setup
2018-03-20 15:29:29 ----D---- C:\Windows\system32\appraiser
2018-03-20 11:22:08 ----D---- C:\ProgramData\Microsoft Help
2018-03-20 10:52:17 ----A---- C:\Windows\win.ini
2018-03-15 11:49:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-03-15 11:49:10 ----D---- C:\Windows\system32\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avgbidsh;avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [2018-03-30 193024]
R0 avgblog;avgblog; C:\Windows\system32\drivers\avgbloga.sys [2018-03-30 337344]
R0 avgbuniv;avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [2018-03-30 51272]
R0 avgRvrt;avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [2018-03-30 76760]
R0 avgVmm;avgVmm; C:\Windows\system32\drivers\avgVmm.sys [2018-03-30 372920]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-01-15 538136]
R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2010-03-22 46192]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2010-07-07 529000]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2010-07-07 283232]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840]
R1 avgArPot;avgArPot; C:\Windows\system32\drivers\avgArPot.sys [2018-03-30 189032]
R1 avgbdisk;avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [2018-03-30 166552]
R1 avgbidsdriver;avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [2018-03-30 221096]
R1 avgRdr;avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [2018-03-30 102720]
R1 avgSnx;avgSnx; C:\Windows\system32\drivers\avgSnx.sys [2018-03-30 1019088]
R1 avgSP;avgSP; C:\Windows\system32\drivers\avgSP.sys [2018-03-30 452904]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2010-07-07 75032]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2009-07-28 81768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgMonFlt;avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [2018-03-30 139040]
R2 avgStm;avgStm; C:\Windows\system32\drivers\avgStm.sys [2018-03-30 198368]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-10-05 7884288]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-10-05 285696]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-05 2637824]
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver; C:\Windows\system32\DRIVERS\btfilter.sys [2010-10-18 42096]
R3 CeKbFilter;CeKbFilter; C:\Windows\system32\DRIVERS\CeKbFilter.sys [2016-05-13 20592]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2010-07-07 121248]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2010-07-07 190136]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2010-07-07 440688]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008]
R3 RDPDISPM;RDPDISPM; C:\Windows\system32\DRIVERS\rdpdispm.sys [2010-08-31 10752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]
R3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-03-10 316464]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2009-06-17 54664]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2010-04-07 214248]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2010-06-18 18872]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2009-06-19 94336]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2010-05-13 59704]
S3 avgHwid;avgHwid; C:\Windows\system32\drivers\avgHwid.sys [2018-03-30 39352]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2010-07-07 62800]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2010-07-07 94736]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-01-07 232992]
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2009-06-19 50664]
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2009-07-24 26472]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2010-04-26 63488]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S4 IMFMBRProtect;IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFMBRProtect.sys []
S4 IMFSafeBox;IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFSafeBox.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-10-05 203264]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [2018-03-30 304776]
R2 cfWiMAXService;Služba ConfigFree WiMAX; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
R2 ConfigFree Service;Služba ConfigFree; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2010-08-27 1811456]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-03-19 604312]
R2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-07-07 200056]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-07-07 245352]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2010-07-07 149032]
R2 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2010-09-28 489384]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 TMachInfo;TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-10-06 51512]
R3 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2010-04-12 196976]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-02-05 137560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S2 rpcnet;Remote Procedure Call (RPC) Net; C:\Windows\SysWOW64\rpcnet.exe [2016-10-23 73232]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-22 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-15 272384]
S3 avgbIDSAgent;avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [2018-03-30 7607288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-02-10 116224]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-27 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2010-05-11 124368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-01 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
Logfile of random's system information tool 1.10 (written by random/random)
Run by user at 2018-04-02 12:59:03
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 9 GB (6%) free of 153 GB
Total RAM: 2995 MB (34% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:59:20, on 2. 4. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18921)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files\AVG\Antivirus\AvEmUpdate.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://toshiba.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NBAgent] "c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [KeNotify] "C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
O4 - HKLM\..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe /hide:60
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
O23 - Service: Služba ConfigFree WiMAX (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: Služba ConfigFree (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McShield - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @c:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\SysWOW64\rpcnet.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16645 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
atieclxx
"C:\Windows\system32\makecab.exe" C:\Windows\Logs\CBS\CbsPersist_20160607054159.log C:\Windows\Logs\CBS\CbsPersist_20160607054159.cab
\??\C:\Windows\system32\conhost.exe "-260823738-801392991278475197-17693098981303280272320131418476143881388665885
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 24091520
\??\C:\Windows\system32\conhost.exe "-467164685-1812008551-886805718-5463435141351287298-931253907225339639-1366838562
"C:\Program Files\AVG\Antivirus\AVGSvc.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {69A1FB59-C2A9-4FA0-9F79-B98C2B89E945}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Windows\system32\mfevtps.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"
"C:\Program Files\Windows Live\Mesh\wlcrasvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
WLIDSvcM.exe 2600
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe"
"C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE3
"C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe"
"C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe"
taskeng.exe {88582667-B772-4CED-AD7E-09CFDD9B9F26}
"C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe" -userServiceMode
"C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
AVGUI.exe /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosA2dp.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe" LPCM
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHid.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHsp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe"
"C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe"
"C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe"
"C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.0.1142368127\249831754" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" "C:\Users\user\AppData\LocalLow\Mozilla\Temp-{eef804cf-b508-48ec-85be-6f6279072928}" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.3.1863847705\690489213" -childID 1 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.13.752677300\527591822" -childID 2 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" tab
"c:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" "C:\Program Files (x86)\McAfee\SiteAdvisor\siteadvisor.mcafee.firefox.extension.json" {4ED1F68A-5463-4931-9384-8FFF5ED91D92}
\??\C:\Windows\system32\conhost.exe "-1625811030-2465234521339615343-221046982-731908001297050258694849953-1100885289
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.27.1673470851\1198647472" -childID 4 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" tab
"C:\Program Files\AVG\Antivirus\AvEmUpdate.exe"
"C:\Program Files\AVG\Antivirus\AVGUI.exe" --type=renderer --disable-gpu-compositing --disable-pinch --no-sandbox --primordial-pipe-token=3C8A1C749627B4672863E545C490A9FF --lang=en-US --lang=en-US --log-file="C:\Users\user\AppData\Roaming\AVG\Antivirus\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.124 Safari/537.36 Avastium (18.2.3046)" --proxy-auto-detect --disable-webaudio --mute-audio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-webrtc-hw-vp8-encoding --disable-gpu-compositing --service-request-channel-token=3C8A1C749627B4672863E545C490A9FF --renderer-client-id=3 --mojo-platform-channel-handle=3640 /prefetch:1
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="5912.34.1333528640\1960784337" -childID 5 -isForBrowser -intPrefs 6:50|7:-1|34:1000|42:20|43:5|44:10|51:0|57:128|58:10000|63:0|65:400|66:1|67:0|68:0|69:100|74:0|75:120|76:120|159:2|160:1|164:60|165:30|166:512000|175:5000|177:6|191:8192|192:524288|193:5|206:10000|227:24|228:32768|230:0|231:0|240:5|244:1048576|246:100|247:5000|249:600|251:1|260:2000|277:4|281:0|290:60000|308:300|309:30| -boolPrefs 1:0|2:0|4:1|5:0|24:1|27:0|28:1|29:1|31:1|32:1|33:1|36:0|37:0|38:1|41:1|45:1|46:0|47:0|48:1|49:1|50:1|52:0|55:1|56:1|59:0|60:0|61:0|62:0|64:0|70:1|71:1|72:0|73:1|77:1|78:1|79:0|80:0|81:1|82:1|83:0|84:1|87:0|88:0|91:1|92:1|96:1|97:1|98:0|99:1|100:0|101:0|103:0|104:0|105:1|106:1|107:1|110:1|111:1|112:1|113:1|114:1|115:0|116:0|117:0|119:0|120:1|121:1|122:0|123:0|124:0|125:0|127:1|128:0|129:1|130:1|131:1|132:0|133:0|134:1|135:1|136:1|137:1|138:0|139:1|140:1|141:1|142:1|143:1|144:1|145:0|146:1|147:1|148:0|149:1|150:0|152:0|153:0|154:0|155:1|156:1|157:1|158:1|161:1|162:0|172:0|173:0|174:1|178:1|181:0|182:1|184:1|186:0|188:1|194:1|195:0|196:1|197:1|198:0|201:1|205:1|207:1|208:0|210:1|213:0|219:0|220:1|221:0|222:1|225:0|226:0|229:1|232:0|234:1|235:1|237:1|238:0|245:1|248:1|253:0|254:0|255:0|256:1|257:1|258:0|259:1|264:0|267:1|268:1|269:1|270:1|271:1|272:0|273:0|279:0|282:0|283:0|284:1|285:1|286:0|287:1|288:1|289:1|291:0|292:0|294:0|303:1|304:1|305:0|306:0|307:0| -stringPrefs "3:7;release|151:0;|212:3;1.0|223:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|224:4;high|278:38;{eef804cf-b508-48ec-85be-6f6279072928}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 5912 "\\.\pipe\gecko-crash-server-pipe.5912" tab
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe" /send
"C:\Users\user\Desktop\RSITx64.exe"
"C:\Windows\system32\RunDll32.exe" "C:\Windows\system32\WerConCpl.dll", LaunchErcApp -queuereporting
=========Mozilla firefox=========
ProfilePath - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\3gqmevlp.default-1477556252661
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.113 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_113.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 78968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2018-03-19 199648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20101124075603.dll [2010-07-07 73288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-09-23 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2018-03-19 167480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]
TOSHIBA Media Controller Plug-in - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll [2010-03-19 529784]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21 509496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TosNC"=C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2010-04-23 595816]
"TosReelTimeMonitor"=C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2010-07-09 38304]
"Toshiba TEMPRO"=C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [2010-05-11 1050072]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-28 11101800]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-07-28 2120808]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2010-09-28 566184]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-08-13 570680]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2010-05-10 915320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-03-10 2052392]
"SmartFaceVWatcher"=C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [2009-10-19 238080]
"TosSENotify"=C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2010-02-05 709976]
"TosVolRegulator"=C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [2009-11-11 24376]
"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [2010-04-19 136136]
"AVGUI.exe"=C:\Program Files\AVG\Antivirus\AvLaunch.exe [2018-03-30 294928]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-04-02 27774936]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
"NBAgent"=c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-09-02 1234216]
"Microsoft Default Manager"=C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2009-11-11 288088]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-10-05 98304]
"SVPWUTIL"=C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [2010-03-03 352256]
"HWSetup"=C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [2010-03-04 423936]
"KeNotify"=C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [2010-08-15 34160]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START []
"TWebCamera"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2010-05-01 2454840]
"ToshibaServiceStation"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [2009-10-06 1294136]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
TRDCReminder.lnk - C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-04-02 07:52:01 ----D---- C:\_OTM
2018-03-31 07:35:29 ----D---- C:\AdwCleaner
2018-03-30 21:42:11 ----D---- C:\Program Files\trend micro
2018-03-30 21:42:10 ----D---- C:\rsit
2018-03-30 18:15:01 ----D---- C:\Users\user\AppData\Roaming\AVG
2018-03-30 14:59:06 ----A---- C:\Windows\system32\drivers\avgStm.sys
2018-03-30 14:59:04 ----A---- C:\Windows\system32\drivers\avgVmm.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgSP.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgRvrt.sys
2018-03-30 14:59:02 ----A---- C:\Windows\system32\drivers\avgMonFlt.sys
2018-03-30 14:59:00 ----A---- C:\Windows\system32\drivers\avgHwid.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgRdr2.sys
2018-03-30 14:58:58 ----A---- C:\Windows\system32\drivers\avgArPot.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgSnx.sys
2018-03-30 14:58:54 ----A---- C:\Windows\system32\drivers\avgbuniva.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbloga.sys
2018-03-30 14:58:52 ----A---- C:\Windows\system32\drivers\avgbidsha.sys
2018-03-30 14:58:50 ----A---- C:\Windows\system32\drivers\avgbidsdrivera.sys
2018-03-30 14:58:47 ----A---- C:\Windows\system32\drivers\avgbdiska.sys
2018-03-30 14:56:37 ----A---- C:\Windows\system32\avgBoot.exe
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files\AVG
2018-03-30 14:50:28 ----D---- C:\Program Files\AVG
2018-03-30 13:50:20 ----ASH---- C:\pagefile.sys
2018-03-23 11:46:54 ----D---- C:\Program Files (x86)\AVG
2018-03-23 11:45:51 ----HD---- C:\ProgramData\Common Files
2018-03-23 11:45:51 ----D---- C:\ProgramData\Avg
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-03-23 10:30:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-03-23 10:30:36 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-03-23 10:30:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-03-23 10:30:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-03-23 10:30:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-03-23 10:30:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-03-23 10:30:30 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-03-23 10:30:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-03-23 10:30:20 ----A---- C:\Windows\system32\ieui.dll
2018-03-23 10:30:18 ----A---- C:\Windows\system32\mshtmled.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-03-23 10:30:14 ----A---- C:\Windows\system32\jscript9diag.dll
2018-03-23 10:30:12 ----A---- C:\Windows\system32\jscript9.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\wininet.dll
2018-03-23 10:30:10 ----A---- C:\Windows\system32\jsproxy.dll
2018-03-23 10:30:02 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-03-23 10:29:45 ----A---- C:\Windows\system32\mshtml.dll
2018-03-23 10:29:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-03-23 10:29:15 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-03-23 10:29:06 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-03-23 10:28:48 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-03-23 10:28:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-03-23 10:28:42 ----A---- C:\Windows\system32\msfeeds.dll
2018-03-23 10:28:33 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-03-23 10:28:32 ----A---- C:\Windows\system32\ieapfltr.dll
2018-03-23 10:28:26 ----A---- C:\Windows\system32\ieframe.dll
2018-03-23 10:28:23 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-03-23 10:28:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\shell32.dll
2018-03-23 10:28:22 ----A---- C:\Windows\system32\iertutil.dll
2018-03-23 10:28:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-03-23 10:28:19 ----A---- C:\Windows\system32\urlmon.dll
2018-03-23 10:28:17 ----A---- C:\Windows\SYSWOW64\shell32.dll
2018-03-23 10:28:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-03-23 10:28:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-03-23 10:28:16 ----A---- C:\Windows\system32\win32k.sys
2018-03-23 10:28:16 ----A---- C:\Windows\system32\vbscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ole32.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\jscript.dll
2018-03-23 10:28:16 ----A---- C:\Windows\system32\ieUnatt.exe
2018-03-23 10:28:15 ----A---- C:\Windows\system32\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ntdll.dll
2018-03-23 10:28:14 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-03-23 10:28:13 ----A---- C:\Windows\system32\xpsrchvw.exe
2018-03-23 10:28:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-03-23 10:28:12 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\schedsvc.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\iedkcs32.dll
2018-03-23 10:28:11 ----A---- C:\Windows\system32\ie4uinit.exe
2018-03-23 10:28:10 ----A---- C:\Windows\system32\lsasrv.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\IKEEXT.DLL
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtrans.dll
2018-03-23 10:28:10 ----A---- C:\Windows\system32\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-03-23 10:28:09 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\sysmain.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\rpcrt4.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\MPSSVC.dll
2018-03-23 10:28:09 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\winlogon.exe
2018-03-23 10:28:08 ----A---- C:\Windows\system32\webcheck.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\rpcss.dll
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\srv.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-03-23 10:28:08 ----A---- C:\Windows\system32\authui.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\kerberos.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\drivers\http.sys
2018-03-23 10:28:07 ----A---- C:\Windows\system32\crypt32.dll
2018-03-23 10:28:07 ----A---- C:\Windows\system32\actxprxy.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\schannel.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\inetcomm.dll
2018-03-23 10:28:06 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-03-23 10:28:06 ----A---- C:\Windows\system32\BFE.DLL
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-03-23 10:28:05 ----A---- C:\Windows\SYSWOW64\authui.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\taskcomp.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\spoolsv.exe
2018-03-23 10:28:05 ----A---- C:\Windows\system32\msrating.dll
2018-03-23 10:28:05 ----A---- C:\Windows\system32\atmfd.dll
2018-03-23 10:28:04 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winload.exe
2018-03-23 10:28:04 ----A---- C:\Windows\system32\winhttp.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\ncsi.dll
2018-03-23 10:28:04 ----A---- C:\Windows\system32\advapi32.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\xpsrchvw.exe
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-03-23 10:28:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\p2psvc.dll
2018-03-23 10:28:03 ----A---- C:\Windows\system32\KernelBase.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nshwfp.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\nlasvc.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\msv1_0.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\kernel32.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\inseng.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\iernonce.dll
2018-03-23 10:28:02 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2018-03-23 10:28:01 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\pnrpsvc.dll
2018-03-23 10:28:01 ----A---- C:\Windows\system32\occache.dll
2018-03-23 10:28:00 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wisptis.exe
2018-03-23 10:28:00 ----A---- C:\Windows\system32\WinSCard.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\wcncsvc.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\P2P.dll
2018-03-23 10:28:00 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-03-23 10:28:00 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-03-23 10:27:59 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\rpchttp.dll
2018-03-23 10:27:59 ----A---- C:\Windows\system32\clfs.sys
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-03-23 10:27:58 ----A---- C:\Windows\SYSWOW64\P2P.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\ncrypt.dll
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-03-23 10:27:58 ----A---- C:\Windows\system32\cdosys.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-03-23 10:27:57 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\mscms.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\wanarp.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-03-23 10:27:57 ----A---- C:\Windows\system32\consent.exe
2018-03-23 10:27:57 ----A---- C:\Windows\system32\certcli.dll
2018-03-23 10:27:57 ----A---- C:\Windows\system32\adtschema.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-03-23 10:27:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\wow64win.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\t2embed.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\iesetup.dll
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\netio.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-03-23 10:27:56 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2018-03-23 10:27:55 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wow64.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\winsrv.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\wdigest.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\WcnApi.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\TSpkg.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\icm32.dll
2018-03-23 10:27:55 ----A---- C:\Windows\system32\hal.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-03-23 10:27:54 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\srcore.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\icfupgd.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\fdWCN.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\pacer.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-03-23 10:27:54 ----A---- C:\Windows\system32\conhost.exe
2018-03-23 10:27:54 ----A---- C:\Windows\system32\bcrypt.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appinfo.dll
2018-03-23 10:27:54 ----A---- C:\Windows\system32\appidsvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\mscms.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\icm32.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-03-23 10:27:53 ----A---- C:\Windows\SYSWOW64\actxprxy.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\TabSvc.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\nlaapi.dll
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\netbios.sys
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-03-23 10:27:53 ----A---- C:\Windows\system32\drivers\appid.sys
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2018-03-23 10:27:52 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidparse.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\drivers\hidclass.sys
2018-03-23 10:27:52 ----A---- C:\Windows\system32\csrsrv.dll
2018-03-23 10:27:52 ----A---- C:\Windows\system32\appidapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\smss.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\secur32.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\rstrui.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\oleres.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\lsass.exe
2018-03-23 10:27:51 ----A---- C:\Windows\system32\fontsub.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\cryptbase.dll
2018-03-23 10:27:51 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-03-23 10:27:50 ----A---- C:\Windows\system32\WcsPlugInService.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\sspicli.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\srclient.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rasdiag.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\rascfg.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\ntvdm64.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\msaudite.dll
2018-03-23 10:27:50 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-03-23 10:27:50 ----A---- C:\Windows\system32\auditpol.exe
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\wfapigp.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasser.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\rasmxs.dll
2018-03-23 10:27:49 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2018-03-23 10:27:49 ----A---- C:\Windows\system32\credssp.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\WcnEapAuthProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasser.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\rasmxs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshqos.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\wshnetbs.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\traffic.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\sspisrv.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\lpk.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\drivers\hidusb.sys
2018-03-23 10:27:48 ----A---- C:\Windows\system32\dciman32.dll
2018-03-23 10:27:48 ----A---- C:\Windows\system32\atmlib.dll
2018-03-23 10:27:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\lpk.dll
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-03-23 10:27:47 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\wow64cpu.dll
2018-03-23 10:27:47 ----A---- C:\Windows\system32\comcat.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-03-23 10:27:46 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-03-23 10:27:46 ----A---- C:\Windows\system32\apisetschema.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-03-23 10:27:45 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2018-03-23 10:27:45 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-03-23 10:27:44 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\user.exe
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\wintrust.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\INETRES.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptsvc.dll
2018-03-23 10:27:44 ----A---- C:\Windows\system32\cryptnet.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msxml6r.dll
2018-03-23 10:27:43 ----A---- C:\Windows\system32\msobjs.dll
2018-03-22 17:33:59 ----D---- C:\ProgramData\BDLogging
2018-03-22 17:33:59 ----A---- C:\Windows\system32\drivers\trufos.sys
2018-03-22 17:33:58 ----D---- C:\Users\user\AppData\Roaming\IObit
2018-03-22 17:33:54 ----D---- C:\ProgramData\ProductData
2018-03-22 17:30:37 ----D---- C:\Program Files (x86)\IObit
2018-03-22 17:30:19 ----D---- C:\ProgramData\IObit
2018-03-19 13:37:13 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\gpedit.dll
2018-03-19 13:37:13 ----A---- C:\Windows\system32\drivers\rdbss.sys
2018-03-19 13:37:12 ----A---- C:\Windows\system32\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-03-19 13:37:11 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\rtm.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\mprdim.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itss.dll
2018-03-19 13:37:11 ----A---- C:\Windows\system32\itircl.dll
2018-03-19 13:37:10 ----A---- C:\Windows\SYSWOW64\iprtprio.dll
2018-03-19 13:37:10 ----A---- C:\Windows\system32\iprtprio.dll
2018-03-19 13:37:07 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-03-19 13:37:07 ----A---- C:\Windows\system32\tzres.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\invagent.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\generaltel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\devinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\centel.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\appraiser.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aitstatic.exe
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aepic.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\aeinv.dll
2018-03-19 13:35:37 ----A---- C:\Windows\system32\acmigration.dll
2018-03-19 13:00:48 ----D---- C:\Windows\rescache
======List of files/folders modified in the last 1 month======
2018-04-02 12:53:43 ----D---- C:\Users\user\AppData\Roaming\Skype
2018-04-02 12:52:43 ----D---- C:\Windows\Temp
2018-04-02 12:46:17 ----D---- C:\Windows\system32\config
2018-04-02 12:45:57 ----A---- C:\Windows\system32\rpcnetp.exe
2018-04-02 12:45:54 ----A---- C:\Windows\SYSWOW64\rpcnet.dll
2018-04-02 12:45:51 ----A---- C:\Windows\SYSWOW64\log.txt
2018-04-02 07:57:15 ----A---- C:\Windows\SYSWOW64\rpcnetp.dll
2018-04-02 07:56:50 ----A---- C:\Windows\SYSWOW64\rpcnetp.exe
2018-04-02 07:52:08 ----RD---- C:\Program Files (x86)\Skype
2018-04-02 07:52:08 ----HD---- C:\ProgramData
2018-04-02 07:05:52 ----D---- C:\Windows\System32
2018-04-02 07:05:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-04-02 07:05:30 ----D---- C:\Windows\inf
2018-04-01 20:17:51 ----D---- C:\Windows\SYSWOW64\Macromed
2018-03-30 21:42:11 ----RD---- C:\Program Files
2018-03-30 21:21:27 ----HD---- C:\Config.Msi
2018-03-30 19:27:39 ----D---- C:\Windows\system32\Tasks
2018-03-30 19:27:38 ----SHD---- C:\Windows\Installer
2018-03-30 19:23:38 ----D---- C:\Windows\SysWOW64
2018-03-30 14:59:06 ----D---- C:\Windows\system32\drivers
2018-03-30 14:56:32 ----D---- C:\Program Files\Common Files
2018-03-30 13:50:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-30 13:07:45 ----SHD---- C:\System Volume Information
2018-03-30 12:29:26 ----SD---- C:\ProgramData\Microsoft
2018-03-30 12:29:24 ----D---- C:\Program Files (x86)\Microsoft
2018-03-30 12:24:29 ----RD---- C:\Program Files (x86)
2018-03-30 12:19:20 ----D---- C:\Program Files (x86)\Common Files
2018-03-30 10:53:12 ----D---- C:\Windows
2018-03-30 10:53:08 ----D---- C:\Windows\system32\catroot2
2018-03-30 10:52:41 ----D---- C:\Windows\winsxs
2018-03-28 17:11:30 ----D---- C:\Windows\twain_32
2018-03-27 06:26:01 ----D---- C:\Program Files (x86)\Mozilla Firefox
2018-03-26 10:56:05 ----D---- C:\Windows\Microsoft.NET
2018-03-26 10:53:22 ----RSD---- C:\Windows\assembly
2018-03-26 10:35:42 ----D---- C:\Program Files\Internet Explorer
2018-03-26 10:35:40 ----D---- C:\Windows\SYSWOW64\sk-SK
2018-03-26 10:35:40 ----D---- C:\Windows\ehome
2018-03-26 10:35:39 ----D---- C:\Windows\SYSWOW64\en-US
2018-03-26 10:35:28 ----D---- C:\Windows\system32\sk-SK
2018-03-26 10:35:26 ----D---- C:\Windows\system32\en-US
2018-03-26 10:35:11 ----D---- C:\Windows\AppPatch
2018-03-26 10:35:11 ----D---- C:\Program Files (x86)\Internet Explorer
2018-03-26 10:35:06 ----D---- C:\Windows\system32\migration
2018-03-26 10:35:06 ----D---- C:\Windows\system32\Boot
2018-03-26 10:34:58 ----D---- C:\Windows\system32\DriverStore
2018-03-26 10:23:43 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-03-20 17:08:41 ----D---- C:\Windows\Prefetch
2018-03-20 15:29:34 ----D---- C:\Windows\SYSWOW64\Setup
2018-03-20 15:29:32 ----D---- C:\Windows\system32\Setup
2018-03-20 15:29:29 ----D---- C:\Windows\system32\appraiser
2018-03-20 11:22:08 ----D---- C:\ProgramData\Microsoft Help
2018-03-20 10:52:17 ----A---- C:\Windows\win.ini
2018-03-15 11:49:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-03-15 11:49:10 ----D---- C:\Windows\system32\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avgbidsh;avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [2018-03-30 193024]
R0 avgblog;avgblog; C:\Windows\system32\drivers\avgbloga.sys [2018-03-30 337344]
R0 avgbuniv;avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [2018-03-30 51272]
R0 avgRvrt;avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [2018-03-30 76760]
R0 avgVmm;avgVmm; C:\Windows\system32\drivers\avgVmm.sys [2018-03-30 372920]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-01-15 538136]
R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2010-03-22 46192]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2010-07-07 529000]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2010-07-07 283232]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840]
R1 avgArPot;avgArPot; C:\Windows\system32\drivers\avgArPot.sys [2018-03-30 189032]
R1 avgbdisk;avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [2018-03-30 166552]
R1 avgbidsdriver;avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [2018-03-30 221096]
R1 avgRdr;avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [2018-03-30 102720]
R1 avgSnx;avgSnx; C:\Windows\system32\drivers\avgSnx.sys [2018-03-30 1019088]
R1 avgSP;avgSP; C:\Windows\system32\drivers\avgSP.sys [2018-03-30 452904]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2010-07-07 75032]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2009-07-28 81768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgMonFlt;avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [2018-03-30 139040]
R2 avgStm;avgStm; C:\Windows\system32\drivers\avgStm.sys [2018-03-30 198368]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-10-05 7884288]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-10-05 285696]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-05 2637824]
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver; C:\Windows\system32\DRIVERS\btfilter.sys [2010-10-18 42096]
R3 CeKbFilter;CeKbFilter; C:\Windows\system32\DRIVERS\CeKbFilter.sys [2016-05-13 20592]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-28 2445672]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2010-07-07 121248]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2010-07-07 190136]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2010-07-07 440688]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008]
R3 RDPDISPM;RDPDISPM; C:\Windows\system32\DRIVERS\rdpdispm.sys [2010-08-31 10752]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]
R3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-03-10 316464]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2009-06-17 54664]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2010-04-07 214248]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2010-06-18 18872]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2009-06-19 94336]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2010-05-13 59704]
S3 avgHwid;avgHwid; C:\Windows\system32\drivers\avgHwid.sys [2018-03-30 39352]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2010-07-07 62800]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2010-07-07 94736]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-01-07 232992]
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2009-06-19 50664]
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2009-07-24 26472]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2010-04-26 63488]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S4 IMFMBRProtect;IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFMBRProtect.sys []
S4 IMFSafeBox;IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFSafeBox.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-10-05 203264]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [2018-03-30 304776]
R2 cfWiMAXService;Služba ConfigFree WiMAX; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
R2 ConfigFree Service;Služba ConfigFree; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2010-08-27 1811456]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-03 268824]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-03-19 604312]
R2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-07-07 200056]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-07-07 245352]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2010-07-07 149032]
R2 NAUpdate;@c:\Program Files (x86)\Nero\Update\NASvc.exe,-200; c:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2010-09-28 489384]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-03 2320920]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 TMachInfo;TMachInfo; C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-10-06 51512]
R3 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2010-04-12 196976]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-02-05 137560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S2 rpcnet;Remote Procedure Call (RPC) Net; C:\Windows\SysWOW64\rpcnet.exe [2016-10-23 73232]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-22 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-15 272384]
S3 avgbIDSAgent;avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [2018-03-30 7607288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28 154440]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-02-10 116224]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-27 194512]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO); C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [2010-05-11 124368]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-01 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119428
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
trosku..subjektivne -minimalne.
Stale mam pocit ako keby na pozadi nieco bezalo a nacitavalao..dlhe spustanie Web stranok- potom zamrznutie (program nereaguje), dlhe nacitavanie programov (MS office- Excel, Word) atd.
neviem co s tym dalej.
Stale mam pocit ako keby na pozadi nieco bezalo a nacitavalao..dlhe spustanie Web stranok- potom zamrznutie (program nereaguje), dlhe nacitavanie programov (MS office- Excel, Word) atd.
neviem co s tym dalej.
-
Rudy
- Site Admin
- Příspěvky: 119428
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
po preskenovani, mi vygenerovalo nasledujuce hlasenie
niesom si vsak isty , ci ste chceli citat toto...
Malwarebytes
www.malwarebytes.com
-Podrobnosti denníka-
Dátum skenovania: 02.04.18
Čas skenovania: 17:16
Súbor denníka: d7ce87ba-3688-11e8-95ee-b870f460c2df.json
Správca: Áno
-Údaje o softvéri-
Verzia: 3.4.5.2467
Verzia súčastí: 1.0.342
Aktualizovať verziu balíka: 1.0.4584
Licencia: Skúšobná verzia
-Systémové informácie-
OS: Windows 7 Service Pack 1
Procesor: x64
Systém súborov: NTFS
Používateľ: user-TOSH\user
-Zhrnutie skenovania-
Typ skenovania: Vyhľadávanie hrozieb
Skenovanie bolo spustené: Manuálne
Výsledok: Dokončené
Preskenované objekty: 306565
Zistené hrozby: 0
(Nezistili sa nijaké škodlivé položky)
Hrozby umiestnené do karantény: 0
(Nezistili sa nijaké škodlivé položky)
Uplynulý čas: 39 min, 3 s
-Možnosti skenovania-
Pamäť: Povolené
Spúšťanie: Povolené
Systém súborov: Povolené
Archívy: Povolené
Rootkity: Zakázané
Heuristika: Povolené
PUP: Zistiť
PUM: Zistiť
-Podrobnosti skenovania-
Proces: 0
(Nezistili sa nijaké škodlivé položky)
Modul: 0
(Nezistili sa nijaké škodlivé položky)
Kľúč databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)
Hodnota databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)
Údaje databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)
Prúd údajov: 0
(Nezistili sa nijaké škodlivé položky)
Priečinok: 0
(Nezistili sa nijaké škodlivé položky)
Súbor: 0
(Nezistili sa nijaké škodlivé položky)
Fyzický sektor: 0
(Nezistili sa nijaké škodlivé položky)
(end)
niesom si vsak isty , ci ste chceli citat toto...
Malwarebytes
www.malwarebytes.com
-Podrobnosti denníka-
Dátum skenovania: 02.04.18
Čas skenovania: 17:16
Súbor denníka: d7ce87ba-3688-11e8-95ee-b870f460c2df.json
Správca: Áno
-Údaje o softvéri-
Verzia: 3.4.5.2467
Verzia súčastí: 1.0.342
Aktualizovať verziu balíka: 1.0.4584
Licencia: Skúšobná verzia
-Systémové informácie-
OS: Windows 7 Service Pack 1
Procesor: x64
Systém súborov: NTFS
Používateľ: user-TOSH\user
-Zhrnutie skenovania-
Typ skenovania: Vyhľadávanie hrozieb
Skenovanie bolo spustené: Manuálne
Výsledok: Dokončené
Preskenované objekty: 306565
Zistené hrozby: 0
(Nezistili sa nijaké škodlivé položky)
Hrozby umiestnené do karantény: 0
(Nezistili sa nijaké škodlivé položky)
Uplynulý čas: 39 min, 3 s
-Možnosti skenovania-
Pamäť: Povolené
Spúšťanie: Povolené
Systém súborov: Povolené
Archívy: Povolené
Rootkity: Zakázané
Heuristika: Povolené
PUP: Zistiť
PUM: Zistiť
-Podrobnosti skenovania-
Proces: 0
(Nezistili sa nijaké škodlivé položky)
Modul: 0
(Nezistili sa nijaké škodlivé položky)
Kľúč databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)
Hodnota databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)
Údaje databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)
Prúd údajov: 0
(Nezistili sa nijaké škodlivé položky)
Priečinok: 0
(Nezistili sa nijaké škodlivé položky)
Súbor: 0
(Nezistili sa nijaké škodlivé položky)
Fyzický sektor: 0
(Nezistili sa nijaké škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119428
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Je to ono a je to v pořádku. Otevřte správce úloh a zjistěte, který proces nejvíce zatěžuje systém a jak moc (v %).
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Tak tomuto uz rozumiem pomenej resp. skoro vobec nie 
Po otvoreni spravcu uloh mi vypisuje procesy,ktore bezia..a najvacsie % zatazenia procesora je pri firefox.exe. ale mam ho tam napisany 4x (hoc mam otvorene iba 1 okno) percenta sa pri nom pohybuju 25-37% , resp. 12ˇ, resp 2% resp. 0
je to normalne?
som uz z toho na nervy...
stale pri vypnuti PC sa mi snazi aktualizovat - konfigurovat system Windows...a neskutocne dlho to trva...
Po otvoreni spravcu uloh mi vypisuje procesy,ktore bezia..a najvacsie % zatazenia procesora je pri firefox.exe. ale mam ho tam napisany 4x (hoc mam otvorene iba 1 okno) percenta sa pri nom pohybuju 25-37% , resp. 12ˇ, resp 2% resp. 0
je to normalne?
som uz z toho na nervy...
stale pri vypnuti PC sa mi snazi aktualizovat - konfigurovat system Windows...a neskutocne dlho to trva...
-
Rudy
- Site Admin
- Příspěvky: 119428
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o pomoc.N&eskutocne spomaleny notebook..
Zkuste ještě kontrolu systému. Start>přík. řádek (napsat) sfc /scannow>Enter. Proběhne sken, příp. oprava systémových souborů. Po skončení restratujte a sdělte, zda se něco změnilo. Ta stálá konfigurace systému při vypnutí se mi moc nelíbí.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?