pocitac s win 7 sa mi vzdy tak cca za 3 hodiny vypne, virus?
Napsal: 31 črc 2018 10:39
Ahoj, chcem poprosit o pomoc, neviem co sa deje, ale moj pocitac s Win 7 SK Home sa mi vzdy po dlhsej prace, cca za 3 hodiny sam zacne vypinat, postupne pozatvara vsetky okna a vypne sa. Cely system som oscanovbal Nodom, ten nieco nasiel, to som odstranil, vyliecil, ale robi to stale. Neviem ci to je virus, alebo co to je? Nezname prilohy zasadne neotvaram, cracknute programy stahujem uplne minimalne, v poslednom case vobec. Neporadi niekto co s tym?
v prilohe LOG:
Logfile of random's system information tool 1.09 (written by random/random)
Run by ideacentre at 2018-07-31 11:27:00
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 228 GB (51%) free of 451 GB
Total RAM: 8172 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:27:03, on 31. 7. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19081)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\jmesoft\hotkey.exe
C:\Program Files\Lenovo\Bluetooth Manager\BluetoothManager.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
F:\instalacky programov\JDownloader-2.0-DC-31.03.2016\JDownloader 2 24052016\JDownloader-2.0-DC-04.05.2016-Portable\JDownloader 2.0 DC 04.05.2016\JDownloader2.exe
C:\Program Files (x86)\Teacher\TEACHER.EXE
C:\Program Files (x86)\PC Translator\wtran32.exe
C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\ideacentre.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 0000000000
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: (no name) - {AEAF002F-E6D8-4A21-ABD3-2B309B79A6CE} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [jmekey] C:\Program Files (x86)\jmesoft\hotkey.exe
O4 - HKLM\..\Run: [Bluetooth Manager] C:\Program Files\Lenovo\Bluetooth Manager\BluetoothManager.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Google Update] C:\Users\ideacentre\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [iCloudServices] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Vyplniť formulár - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Vyplniť formulár - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Uložiť - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Uložiť formulár - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Zobraziť panel nástrojov - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Nástrojová lišta RoboFormu - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSISVCUchrome - {78A543EB-3A61-4ED3 - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\windows\system32\DbxSvc.exe (file missing)
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Digital Wave Ltd. - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
O23 - Service: ESET SHA Service (ESHASRV) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: GoPro Device Detection Service (GoProDeviceDetectionService) - Unknown owner - C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\windows\system32\IProsetMonitor.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\windows\system32\nvvsvc.exe
O23 - Service: Session Launcher Service (PelService) - Unknown owner - C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: Samsung Network Fax Server - Samsung Electronics Co., Ltd. - C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16964 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\windows\system32\nvvsvc.exe -session -first
/QuitInfo:0000000000000214;000000000000022C; /AddRef;
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\system32\DbxSvc.exe
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe"
"C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe"
/QuitInfo:0000000000000480;0000000000000484; /AddRef;
/QuitInfo:000000000000031C;000000000000048C;
taskeng.exe {27FC29A7-A60E-4C21-8C24-C802457AC536}
/loadhooks /Parent:0000000000000BFC
"taskhost.exe"
"C:\Program Files\EasySync Solutions\EasySync CryptoMonitor\CryptoMonitor.exe" /StartMinimized
C:\windows\Explorer.EXE
"C:\windows\system32\Dwm.exe"
taskeng.exe {C676586F-7445-4C64-B293-223D2F0DC37A}
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
C:\windows\system32\IProsetMonitor.exe
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
"C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe" /hide /waitservice
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" -tray
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\jmesoft\hotkey.exe"
"C:\Program Files\Lenovo\Bluetooth Manager\BluetoothManager.exe"
"C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe"
"C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe"
"C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1788
"C:\Program Files\iPod\bin\iPodService.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k bthsvcs
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --reporter-url=https://rink.hockeyapp.net/api/2/apps/a ... hes/upload --application-name=skype-preview "--crashes-directory=C:\Users\IDEACE~1\AppData\Local\Temp\skype-preview Crashes" --v=1
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{E88E80C3-CC7D-4562-A286-870169B0404B}
{1C27D80B-4E4B-4F7A-941E-CD59D53F2E45}
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=gpu-process --no-sandbox --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=9,12,13,19,20,22,23,24,27,49,84 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --disable-accelerated-video-decode --gpu-vendor-id=0x10de --gpu-device-id=0x0deb --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.6859 --gpu-driver-date=5-13-2011 --service-request-channel-token=C059F7D6B761AAB7CDB78C586E49E4D3 --mojo-platform-channel-handle=1328 /prefetch:2
"C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=renderer --ms-disable-indexeddb-transaction-timeout --no-sandbox --service-pipe-token=FA2E99C1A84BC708499D976C07FE61CD --lang=sk --app-user-model-id=Microsoft.Skype.SkypeDesktop --app-path="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar" --node-integration=false --webview-tag=true --no-sandbox --preload="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar\Preload.js" --context-id=2 --enable-pinch --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --enable-gpu-async-worker-context --service-request-channel-token=FA2E99C1A84BC708499D976C07FE61CD --renderer-client-id=4 --mojo-platform-channel-handle=1760 /prefetch:1
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=renderer --ms-disable-indexeddb-transaction-timeout --no-sandbox --service-pipe-token=4A692156933ED392818ABE9A837B8824 --lang=sk --app-user-model-id=Microsoft.Skype.SkypeDesktop --app-path="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar" --node-integration=true --webview-tag=true --no-sandbox --context-id=2 --enable-pinch --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --enable-gpu-async-worker-context --service-request-channel-token=4A692156933ED392818ABE9A837B8824 --renderer-client-id=6 --mojo-platform-channel-handle=2104 /prefetch:1
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer13_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer13_Logfile.log
"C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE"
C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-3260c110-3ae3-4570-82ac-d09d52aed832 -SystemEventPortName:HostProcess-31525513-5498-46e0-a2b8-15bcea1ca663 -IoCancelEventPortName:HostProcess-6d7b1f39-1dba-4239-867c-f151608ce640 -NonStateChangingEventPortName:HostProcess-c1e9a212-31bf-47b6-8a6d-eba58e2475c0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b2b24f24-1f17-4e80-9646-cb1387a4ca6b -DeviceGroupId:
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e2542a9f-969f-4647-b4ec-f82987d5257f -SystemEventPortName:HostProcess-8e49b66e-cab0-4a92-909a-839cc61f5364 -IoCancelEventPortName:HostProcess-c71fbd73-bd8b-4da0-be4b-ada3f9bf0400 -NonStateChangingEventPortName:HostProcess-43e68d09-3ead-49f2-a66a-7a2f738957a3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0a4b6a6f-ffbf-4824-86e5-3afba63cfcaa -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe"
"C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE" /n "H:\sd karta\Nový priečinok\poziarne\Quintal\vydane faktury\vydane faktury 2016\zalohove 2016\ceske zalohove 2016\zalohova Cejc 20161108 ukony cz banka.rtf"
C:\windows\splwow64.exe 8192
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2596 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\ideacentre\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\ideacentre\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\ideacentre\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=68.0.3440.75 --initial-client-data=0x80,0x84,0x88,0x7c,0x8c,0x7fee0d734d0,0x7fee0d734e0,0x7fee0d734f0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=9520 --on-initialized-event-handle=320 --parent-handle=324 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=793F835972B9275337137E5968775EDB --mojo-platform-channel-handle=1120 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=D57D3621C5FBEB0A0357AD5779C11377 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=D57D3621C5FBEB0A0357AD5779C11377 --renderer-client-id=12 --mojo-platform-channel-handle=1904 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=1A15EE66E6A441F5334A152E9D9743B8 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1A15EE66E6A441F5334A152E9D9743B8 --renderer-client-id=3 --mojo-platform-channel-handle=2348 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=69D75E0F463B27DBDBC196B5B887C1D4 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=69D75E0F463B27DBDBC196B5B887C1D4 --renderer-client-id=4 --mojo-platform-channel-handle=2696 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=14AE0108541C37A9AD0CE6AB934D5E0C --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14AE0108541C37A9AD0CE6AB934D5E0C --renderer-client-id=5 --mojo-platform-channel-handle=2808 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=5FEFBD8BDC35FC3F101AE4FCAE57D246 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5FEFBD8BDC35FC3F101AE4FCAE57D246 --renderer-client-id=7 --mojo-platform-channel-handle=2968 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=8A933DCECA3E4694D4F3CDFA7281D4A7 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=8A933DCECA3E4694D4F3CDFA7281D4A7 --renderer-client-id=8 --mojo-platform-channel-handle=3092 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=7518E8806B954174E8182701EC8818C7 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=7518E8806B954174E8182701EC8818C7 --renderer-client-id=9 --mojo-platform-channel-handle=3192 /prefetch:1
C:\windows\system32\cmd.exe /d /c "C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe" chrome-extension://fkepacicchenbjecpbpbclokcabebhah/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.ed86844927e3fc1e > \\.\pipe\chrome.nativeMessaging.out.ed86844927e3fc1e
\??\C:\windows\system32\conhost.exe "542951882-1659866595133192414403651754-13763663951297956542-13072549211194632739
"C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe" chrome-extension://fkepacicchenbjecpbpbclokcabebhah/ --parent-window=0
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=82DA805FAA96AFFF6D8FE1AED23BC923 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=82DA805FAA96AFFF6D8FE1AED23BC923 --renderer-client-id=21 --mojo-platform-channel-handle=4124 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=3DB47CA4023A5417816F7CA92E111CED --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=3DB47CA4023A5417816F7CA92E111CED --renderer-client-id=24 --mojo-platform-channel-handle=6080 /prefetch:1
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2596 CREDAT:202064 /prefetch:2
"F:\instalacky programov\JDownloader-2.0-DC-31.03.2016\JDownloader 2 24052016\JDownloader-2.0-DC-04.05.2016-Portable\JDownloader 2.0 DC 04.05.2016\JDownloader2.exe" -afterupdate
"C:\windows\system32\notepad.exe"
"C:\windows\system32\calc.exe"
"C:\windows\system32\NOTEPAD.EXE" H:\sd karta\Nový priečinok\poziarne\pokecy\vsetky\pokec 2.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=71CAB7632D86376C958E83E322CF0AF4 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=71CAB7632D86376C958E83E322CF0AF4 --renderer-client-id=33 --mojo-platform-channel-handle=2100 /prefetch:1
"C:\Program Files (x86)\Teacher\TEACHER.EXE"
"C:\Program Files (x86)\PC Translator\wtran32.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=603266DC9036B14100DA4DA78630B4B4 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=603266DC9036B14100DA4DA78630B4B4 --renderer-client-id=36 --mojo-platform-channel-handle=1668 /prefetch:1
"C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" /Embedding
taskeng.exe {677CA696-A11A-4F70-AC07-52ED83392E48}
C:\windows\System32\svchost.exe -k WerSvcGroup
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-4082759503-1401401991-2524271345-100148_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-4082759503-1401401991-2524271345-100148 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2596 CREDAT:4068847 /prefetch:2
"C:\Users\ideacentre\Desktop\RSITx64.exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe49_ Global\UsGthrCtrlFltPipeMssGthrPipe49 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\windows\tasks\DropboxUpdateTaskMachineCore.job
C:\windows\tasks\DropboxUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\ideacentre\AppData\Roaming\Mozilla\Firefox\Profiles\m8jb4xws.default
prefs.js - "browser.search.useDBForOrder" - true
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.134 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.134 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll
C:\Users\ideacentre\AppData\Roaming\Mozilla\Firefox\Profiles\m8jb4xws.default\searchplugins\
Google.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2009-03-13 9498616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2009-03-13 6101504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-04 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AEAF002F-E6D8-4A21-ABD3-2B309B79A6CE}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-04 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2009-03-13 9498616]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2009-03-13 6101504]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01 193136]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-01-18 11775592]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2013-08-21 519504]
"egui"=C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe [2015-07-23 4150472]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05 508240]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11 316392]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2018-07-06 298296]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Nektra OEAPI"= []
"OEXPRESS"= []
"RoboForm"=C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2015-05-25 107000]
""= []
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-09-28 8944344]
"Google Update"=C:\Users\ideacentre\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe [2018-05-22 601680]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2018-06-26 67384]
"AdobeBridge"= []
"NokiaSuite.exe"=C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2014-11-19 1092448]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2018-06-26 49654728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTibMounterMonitor]
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-01-10 1105328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05 508240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2013-04-25 1075296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleIEDAV]
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [2018-06-26 68408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApplePhotoStreams]
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2018-06-26 67896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [2009-12-05 103720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Daemon for Mouse Suite]
C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE [2013-03-26 87040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dropbox]
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2018-07-13 3754168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM tray]
C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe [2013-03-29 2081792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eID_klient]
C:\Program Files (x86)\eID klient\eID_klient.exe [2017-04-11 6357560]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\ideacentre\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoPro Tray App]
C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [2016-11-14 866224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iCloudDrive]
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2018-06-26 110392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iCloudServices]
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2018-06-26 67384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iSkysoft Helper Compact.exe]
C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2016-06-20 2131856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2018-07-06 298296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo Dynamic Brightness System]
C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe [2011-02-25 287232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo EE Boot Optimizer]
C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [2011-12-24 114688]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo Eye Distance System]
C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe [2010-09-09 265216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2014-11-19 1092448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NUSB3MON]
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProductUpdater]
C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [2016-02-10 73216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefaultSCR]
C:\Program Files (x86)\Lenovo\Lenovo Screensaver\SetDefaultSCR.exe [2009-12-31 102400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SideSync]
C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [2018-03-07 12476064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2015-09-23 457088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TMCMonitor]
C:\Program Files (x86)\Lenovo\Lenovo EBook&QuickNotes\TMCMonitor.exe [2009-11-10 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2013-09-20 7801088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePRCShortCut]
C:\Program Files\Lenovo\OneKey App\Lenovo Rescue System\MUITransfer\MUIStartMenu.exe [2009-05-14 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Mirage]
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2011-01-29 136488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Tray]
C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [2011-01-29 228448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zune Launcher]
C:\Program Files\Zune\ZuneLauncher.exe [2011-08-05 163552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Network PC Fax.lnk]
C:\Windows\System32\spool\drivers\x64\3\NETFAX~2.EXE [2013-02-05 380976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS Premium Sound.lnk]
C:\PROGRA~1\SRSLAB~1\SRSCON~1\SRSPAN~1.EXE [2011-06-15 2091864]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"jmekey"=C:\Program Files (x86)\jmesoft\hotkey.exe [2009-08-25 225280]
"Bluetooth Manager"=C:\Program Files\Lenovo\Bluetooth Manager\BluetoothManager.exe [2010-07-17 552448]
""= []
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2018-07-13 3754168]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2013-04-25 1075296]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave7"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"wave8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.CFHD"=CFHD.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"vidc.tscc"=C:\windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\windows\SysWOW64\tsc2_codec64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-07-31 11:27:00 ----D---- C:\rsit
2018-07-30 09:01:47 ----D---- C:\Program Files\iPod
2018-07-30 09:00:50 ----D---- C:\Program Files\iTunes
2018-07-30 08:38:29 ----D---- C:\Program Files (x86)\Microsoft
2018-07-24 12:58:32 ----D---- C:\Program Files\Common Files\Adobe
2018-07-24 12:34:33 ----D---- C:\Program Files\Common Files\AV
2018-07-24 11:22:16 ----D---- C:\ProgramData\ESET
2018-07-24 11:22:16 ----D---- C:\Program Files\ESET
2018-07-24 11:18:27 ----D---- C:\install
2018-07-13 04:01:46 ----A---- C:\windows\system32\drivers\dbx-stable.sys
2018-07-13 04:01:46 ----A---- C:\windows\system32\drivers\dbx-dev.sys
2018-07-13 04:01:46 ----A---- C:\windows\system32\drivers\dbx-canary.sys
2018-07-13 04:01:46 ----A---- C:\windows\system32\DbxSvc.exe
2018-07-12 19:03:40 ----A---- C:\windows\system32\invagent.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\generaltel.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\devinv.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\CompatTelRunner.exe
2018-07-12 19:03:40 ----A---- C:\windows\system32\centel.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\appraiser.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\aitstatic.exe
2018-07-12 19:03:40 ----A---- C:\windows\system32\aepic.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\aeinv.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\acmigration.dll
2018-07-12 19:03:24 ----A---- C:\windows\system32\mshtml.dll
2018-07-12 19:03:23 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-07-12 19:03:22 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-07-12 19:03:22 ----A---- C:\windows\system32\ieframe.dll
2018-07-12 19:03:21 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-07-12 19:03:21 ----A---- C:\windows\system32\shell32.dll
2018-07-12 19:03:21 ----A---- C:\windows\system32\jscript9.dll
2018-07-12 19:03:20 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-07-12 19:03:20 ----A---- C:\windows\SYSWOW64\ucrtbase.dll
2018-07-12 19:03:20 ----A---- C:\windows\SYSWOW64\shell32.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\win32k.sys
2018-07-12 19:03:20 ----A---- C:\windows\system32\vbscript.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\urlmon.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\ucrtbase.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\ExplorerFrame.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\drivers\tcpip.sys
2018-07-12 19:03:19 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-07-12 19:03:19 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-07-12 19:03:19 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2018-07-12 19:03:19 ----A---- C:\windows\system32\wkssvc.dll
2018-07-12 19:03:19 ----A---- C:\windows\system32\iertutil.dll
2018-07-12 19:03:19 ----A---- C:\windows\system32\drivers\dfsc.sys
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\zipfldr.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\zipfldr.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\ntdll.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\iedkcs32.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\drivers\usbport.sys
2018-07-12 19:03:18 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2018-07-12 19:03:18 ----A---- C:\windows\system32\dnsrslvr.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\dnsapi.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-07-12 19:03:17 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-07-12 19:03:17 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2018-07-12 19:03:17 ----A---- C:\windows\SYSWOW64\dnscacheugc.exe
2018-07-12 19:03:17 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\wininet.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\ntoskrnl.exe
2018-07-12 19:03:17 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2018-07-12 19:03:17 ----A---- C:\windows\system32\hal.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\drivers\netio.sys
2018-07-12 19:03:17 ----A---- C:\windows\system32\drivers\mpsdrv.sys
2018-07-12 19:03:17 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2018-07-12 19:03:17 ----A---- C:\windows\system32\drivers\ksecdd.sys
2018-07-12 19:03:17 ----A---- C:\windows\system32\dnscacheugc.exe
2018-07-12 19:03:17 ----A---- C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\ole32.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\webcheck.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\schannel.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\rstrui.exe
2018-07-12 19:03:16 ----A---- C:\windows\system32\rpcrt4.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\ole32.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\msrating.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\mshtmlmedia.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\msfeeds.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\lsasrv.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\inseng.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\ieui.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\iesetup.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\ie4uinit.exe
2018-07-12 19:03:16 ----A---- C:\windows\system32\dxtrans.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\dxtmsft.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\drivers\usbhub.sys
2018-07-12 19:03:16 ----A---- C:\windows\system32\drivers\usbccgp.sys
2018-07-12 19:03:16 ----A---- C:\windows\system32\conhost.exe
2018-07-12 19:03:16 ----A---- C:\windows\system32\certcli.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\advapi32.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\wdigest.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\sspicli.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\schannel.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\occache.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\kernel32.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\kerberos.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\inseng.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\iesetup.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\iernonce.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\auditpol.exe
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\appidapi.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\wow64win.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\winsrv.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\wdigest.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\TSpkg.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\sspicli.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\srcore.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\smss.exe
2018-07-12 19:03:15 ----A---- C:\windows\system32\rpchttp.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\rpcss.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\occache.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ntvdm64.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ncrypt.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\msv1_0.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\mshtmled.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\MshtmlDac.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\KernelBase.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\kernel32.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\kerberos.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\jsproxy.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\jscript9diag.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ieUnatt.exe
2018-07-12 19:03:15 ----A---- C:\windows\system32\iernonce.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ieetwcollector.exe
2018-07-12 19:03:15 ----A---- C:\windows\system32\drivers\videoprt.sys
2018-07-12 19:03:15 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2018-07-12 19:03:15 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-07-12 19:03:15 ----A---- C:\windows\system32\csrsrv.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\bcrypt.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\auditpol.exe
2018-07-12 19:03:15 ----A---- C:\windows\system32\appidsvc.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\appidapi.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\wfapigp.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\user.exe
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\srclient.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\secur32.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\oleres.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\msobjs.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\msaudite.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\instnm.exe
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\credssp.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\comcat.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\bcrypt.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\adtschema.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\wow64cpu.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\wow64.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\wfapigp.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\sspisrv.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\srclient.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\setbcdlocale.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\secur32.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\oleres.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\msobjs.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\msaudite.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\MPSSVC.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\lsass.exe
2018-07-12 19:03:14 ----A---- C:\windows\system32\jscript.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\ieetwcollectorres.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\ieapfltr.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\icfupgd.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\FirewallAPI.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\usbuhci.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\usbohci.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\usbehci.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\usbd.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\appid.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\cryptbase.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\credssp.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\comcat.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\appidpolicyconverter.exe
2018-07-12 19:03:14 ----A---- C:\windows\system32\appidcertstorecheck.exe
2018-07-12 19:03:14 ----A---- C:\windows\system32\apisetschema.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\adtschema.dll
======List of files/folders modified in the last 1 month======
2018-07-31 11:27:02 ----D---- C:\Program Files\trend micro
2018-07-31 11:27:01 ----D---- C:\windows\Temp
2018-07-31 10:25:47 ----D---- C:\windows\system32\config
2018-07-31 10:04:11 ----D---- C:\windows\inf
2018-07-31 10:04:11 ----AD---- C:\windows\System32
2018-07-31 10:04:11 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-07-31 10:02:15 ----A---- C:\windows\SYSWOW64\log.txt
2018-07-31 09:58:08 ----D---- C:\Program Files (x86)\TeamViewer
2018-07-31 09:57:55 ----D---- C:\ProgramData\NVIDIA
2018-07-30 18:45:22 ----D---- C:\windows\system32\catroot
2018-07-30 16:44:38 ----D---- C:\Config.Msi
2018-07-30 10:40:34 ----D---- C:\windows\system32\NDF
2018-07-30 09:02:12 ----SHD---- C:\windows\Installer
2018-07-30 09:01:47 ----RD---- C:\Program Files
2018-07-30 09:01:07 ----SHD---- C:\System Volume Information
2018-07-30 08:38:45 ----SD---- C:\Users\ideacentre\AppData\Roaming\Microsoft
2018-07-30 08:38:29 ----RD---- C:\Program Files (x86)
2018-07-30 08:38:28 ----RD---- C:\Program Files (x86)\Skype
2018-07-30 08:38:28 ----D---- C:\ProgramData\Skype
2018-07-30 08:38:28 ----D---- C:\Program Files (x86)\Common Files
2018-07-30 08:35:23 ----D---- C:\Users\ideacentre\AppData\Roaming\Skype
2018-07-25 17:41:30 ----D---- C:\windows\system32\catroot2
2018-07-25 14:19:09 ----D---- C:\Users\ideacentre\AppData\Roaming\MyPhoneExplorer
2018-07-25 08:33:31 ----D---- C:\windows\system32\Tasks
2018-07-25 08:04:35 ----D---- C:\Program Files (x86)\Adobe
2018-07-25 08:02:10 ----D---- C:\Program Files\Adobe
2018-07-24 13:03:55 ----RSD---- C:\windows\Fonts
2018-07-24 13:03:09 ----D---- C:\windows\SysWOW64
2018-07-24 13:03:09 ----D---- C:\Users\ideacentre\AppData\Roaming\Adobe
2018-07-24 13:03:09 ----D---- C:\ProgramData\Adobe
2018-07-24 12:58:32 ----D---- C:\Program Files\Common Files
2018-07-24 11:55:23 ----D---- C:\Program Files (x86)\AppCleaner
2018-07-24 11:53:18 ----HD---- C:\ProgramData
2018-07-24 11:52:23 ----D---- C:\windows\system32\drivers
2018-07-24 11:50:32 ----D---- C:\windows\Tasks
2018-07-24 11:31:09 ----D---- C:\windows\system32\DriverStore
2018-07-24 08:36:54 ----D---- C:\windows\Microsoft.NET
2018-07-23 10:12:41 ----RSD---- C:\windows\assembly
2018-07-23 09:32:20 ----D---- C:\windows\winsxs
2018-07-23 09:28:26 ----D---- C:\windows\system32\appraiser
2018-07-23 09:28:17 ----D---- C:\Program Files\Internet Explorer
2018-07-23 09:28:17 ----D---- C:\Program Files (x86)\Internet Explorer
2018-07-23 09:28:16 ----D---- C:\windows\SYSWOW64\sk-SK
2018-07-23 09:28:16 ----D---- C:\windows\SYSWOW64\en-US
2018-07-23 09:28:13 ----D---- C:\windows\system32\sk-SK
2018-07-23 09:28:13 ----D---- C:\windows\system32\en-US
2018-07-23 09:28:13 ----D---- C:\windows\system32\drivers\en-US
2018-07-23 09:28:09 ----D---- C:\windows\AppPatch
2018-07-23 09:28:08 ----D---- C:\windows\system32\Boot
2018-07-17 00:02:20 ----N---- C:\windows\system32\MpSigStub.exe
2018-07-16 08:48:30 ----D---- C:\ProgramData\Microsoft Help
2018-07-16 08:16:36 ----D---- C:\Program Files (x86)\Dropbox
2018-07-16 08:13:31 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-07-16 08:13:25 ----D---- C:\windows\system32\Macromed
2018-07-16 08:13:22 ----D---- C:\windows\SYSWOW64\Macromed
2018-07-12 19:09:52 ----D---- C:\windows\system32\MRT
2018-07-12 19:01:55 ----AC---- C:\windows\system32\MRT.exe
2018-07-03 15:19:15 ----D---- C:\Users\ideacentre\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 EMSC;COMPAL Embedded System Control; C:\windows\system32\DRIVERS\EMSC.SYS [2009-06-27 16752]
R0 fbfmon;fbfmon; C:\windows\system32\drivers\fbfmon.sys [2011-12-24 57952]
R0 fltsrv;Acronis Storage Filter Management; C:\windows\system32\DRIVERS\fltsrv.sys [2014-03-12 116000]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-11-06 438808]
R0 pwdrvio;pwdrvio; C:\windows\system32\pwdrvio.sys [2013-09-30 19152]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 snapman;Acronis Snapshots Manager; C:\windows\system32\DRIVERS\snapman.sys [2014-03-12 269600]
R0 tib;Acronis TIB Manager; C:\windows\system32\DRIVERS\tib.sys [2014-03-12 1120032]
R0 tib_mounter;Acronis TIB Mounter; C:\windows\system32\DRIVERS\tib_mounter.sys [2014-03-12 183224]
R0 vididr;Acronis Virtual Disk; C:\windows\system32\DRIVERS\vididr.sys [2014-03-12 161568]
R0 vidsflt;Acronis Disk Storage Filter; C:\windows\system32\DRIVERS\vidsflt.sys [2014-03-12 117024]
R1 BPntDrv;BPntDrv; C:\windows\system32\drivers\BPntDrv.sys [2011-12-24 13408]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-07-14 245952]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-07-14 179544]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-07-14 170768]
R2 npf;NetGroup Packet Filter Driver; C:\windows\system32\drivers\npf.sys [2011-02-11 35344]
R2 SSPORT;SSPORT; \??\C:\windows\system32\Drivers\SSPORT.sys [2013-04-18 11576]
R3 afcdp;afcdp; C:\windows\system32\DRIVERS\afcdp.sys [2014-03-12 367200]
R3 AVerPola;AVerMedia USB Polaris Series Capture Service; C:\windows\system32\DRIVERS\AVerPola.sys [2010-06-22 504064]
R3 BthEnum;Bluetooth Enumerator Service; C:\windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 BTWAMPFL;btwampfl; C:\windows\system32\DRIVERS\btwampfl.sys [2014-07-18 599288]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2012-05-02 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2012-03-06 21544]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\windows\system32\DRIVERS\clwvd.sys [2011-01-29 31088]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c62x64.sys [2010-12-20 316080]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2011-01-19 2719336]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2011-05-10 174184]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\windows\system32\DRIVERS\RtsPStor.sys [2010-10-29 326760]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
R3 usbscan;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
R3 VMC412;Vimicro Camera Service VMC412; C:\windows\System32\Drivers\VMC412.sys [2010-08-18 239872]
S3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-07-13 5020672]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2011-01-20 89128]
S3 dbx;dbx; C:\windows\system32\DRIVERS\dbx.sys []
S3 epmntdrv;epmntdrv; \??\C:\windows\syswow64\epmntdrv.sys [2013-03-07 13896]
S3 EuGdiDrv;EuGdiDrv; \??\C:\windows\syswow64\EuGdiDrv.sys [2013-03-07 9160]
S3 FTDIBUS;USB Serial Converter Driver; C:\windows\system32\drivers\ftdibus.sys [2017-08-24 129456]
S3 FTSER2K;USB Serial Port Driver; C:\windows\system32\drivers\ftser2k.sys [2016-10-04 88752]
S3 fwlanusb6_860;AVM FRITZ!WLAN AC 860; C:\windows\system32\DRIVERS\fwlanusb6_860.sys [2015-07-20 2274336]
S3 GemCCID;GemCCID; C:\windows\system32\DRIVERS\GemCCID.sys [2014-11-10 130944]
S3 ggflt;SOMC USB Flash Driver Filter; C:\windows\system32\DRIVERS\ggflt.sys [2014-10-01 16088]
S3 ggsomc;SOMC USB Flash Driver; C:\windows\system32\DRIVERS\ggsomc.sys [2014-10-01 30424]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [2016-06-29 192216]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\windows\system32\DRIVERS\netaapl64.sys [2014-06-10 23040]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdspio;pwdspio; \??\C:\windows\system32\pwdspio.sys [2013-09-30 12504]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver; C:\windows\system32\DRIVERS\rtl8192Ce.sys [2010-09-16 1101928]
S3 ss_conn_usb_driver;SAMSUNG Mobile USB Connectivity Device Driver; C:\windows\System32\Drivers\ss_conn_usb_driver.sys [2017-01-16 43648]
S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\windows\system32\DRIVERS\tdrpman.sys [2014-03-12 1464096]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 usbser;USB Modem Driver; C:\windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 1144688]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-03-12 3869688]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2018-05-11 2321384]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-05-11 2128872]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-07-05 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-07-17 1008384]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
R2 DbxSvc;DbxSvc; C:\windows\system32\DbxSvc.exe [2018-07-13 51392]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [2015-10-29 382312]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [2015-07-27 1042064]
R2 GoProDeviceDetectionService;GoPro Device Detection Service; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [2016-11-14 37808]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\windows\system32\IProsetMonitor.exe [2010-09-22 165032]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 NVSvc;NVIDIA Driver Helper Service; C:\windows\system32\nvvsvc.exe [2011-05-13 1006696]
R2 PelService;Session Launcher Service; C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe [2012-03-13 178688]
R2 Samsung Network Fax Server;Samsung Network Fax Server; C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [2013-02-05 506928]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2017-01-16 752224]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-05-13 378472]
R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-09-02 9742080]
R2 TeamViewer;TeamViewer 13; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2018-04-03 11293936]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2018-07-06 674104]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-03 143144]
S2 FreemakeVideoCapture;FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [2016-02-10 9216]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-07-16 335872]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-03 143144]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe [2015-07-08 44744]
S3 ESHASRV;ESET SHA Service; C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe [2015-07-08 192200]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-02-10 651720]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-01-17 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2018-06-16 116224]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-05 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-14 161472]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2014-01-20 1255736]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------
v prilohe LOG:
Logfile of random's system information tool 1.09 (written by random/random)
Run by ideacentre at 2018-07-31 11:27:00
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 228 GB (51%) free of 451 GB
Total RAM: 8172 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:27:03, on 31. 7. 2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19081)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\jmesoft\hotkey.exe
C:\Program Files\Lenovo\Bluetooth Manager\BluetoothManager.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
F:\instalacky programov\JDownloader-2.0-DC-31.03.2016\JDownloader 2 24052016\JDownloader-2.0-DC-04.05.2016-Portable\JDownloader 2.0 DC 04.05.2016\JDownloader2.exe
C:\Program Files (x86)\Teacher\TEACHER.EXE
C:\Program Files (x86)\PC Translator\wtran32.exe
C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\ideacentre.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 0000000000
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RoboForm BHO - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: (no name) - {AEAF002F-E6D8-4A21-ABD3-2B309B79A6CE} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [jmekey] C:\Program Files (x86)\jmesoft\hotkey.exe
O4 - HKLM\..\Run: [Bluetooth Manager] C:\Program Files\Lenovo\Bluetooth Manager\BluetoothManager.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Google Update] C:\Users\ideacentre\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [iCloudServices] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [Skype for Desktop] C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Vyplniť formulár - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Vyplniť formulár - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Uložiť - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Uložiť formulár - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Zobraziť panel nástrojov - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra 'Tools' menuitem: Nástrojová lišta RoboFormu - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: WSISVCUchrome - {78A543EB-3A61-4ED3 - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Acronis Nonstop Backup Service (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\windows\system32\DbxSvc.exe (file missing)
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Digital Wave Ltd. - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
O23 - Service: ESET SHA Service (ESHASRV) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: GoPro Device Detection Service (GoProDeviceDetectionService) - Unknown owner - C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\windows\system32\IProsetMonitor.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\windows\system32\nvvsvc.exe
O23 - Service: Session Launcher Service (PelService) - Unknown owner - C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: Samsung Network Fax Server - Samsung Electronics Co., Ltd. - C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: TeamViewer 13 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 16964 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\windows\system32\nvvsvc.exe -session -first
/QuitInfo:0000000000000214;000000000000022C; /AddRef;
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\windows\system32\DbxSvc.exe
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe"
"C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe"
/QuitInfo:0000000000000480;0000000000000484; /AddRef;
/QuitInfo:000000000000031C;000000000000048C;
taskeng.exe {27FC29A7-A60E-4C21-8C24-C802457AC536}
/loadhooks /Parent:0000000000000BFC
"taskhost.exe"
"C:\Program Files\EasySync Solutions\EasySync CryptoMonitor\CryptoMonitor.exe" /StartMinimized
C:\windows\Explorer.EXE
"C:\windows\system32\Dwm.exe"
taskeng.exe {C676586F-7445-4C64-B293-223D2F0DC37A}
"C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
C:\windows\system32\IProsetMonitor.exe
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
"C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe" /hide /waitservice
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" -tray
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\jmesoft\hotkey.exe"
"C:\Program Files\Lenovo\Bluetooth Manager\BluetoothManager.exe"
"C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe"
"C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe"
"C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1788
"C:\Program Files\iPod\bin\iPodService.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k bthsvcs
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --reporter-url=https://rink.hockeyapp.net/api/2/apps/a ... hes/upload --application-name=skype-preview "--crashes-directory=C:\Users\IDEACE~1\AppData\Local\Temp\skype-preview Crashes" --v=1
"C:\windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{E88E80C3-CC7D-4562-A286-870169B0404B}
{1C27D80B-4E4B-4F7A-941E-CD59D53F2E45}
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=gpu-process --no-sandbox --disable-d3d11 --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=9,12,13,19,20,22,23,24,27,49,84 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --disable-accelerated-video-decode --gpu-vendor-id=0x10de --gpu-device-id=0x0deb --gpu-driver-vendor=NVIDIA --gpu-driver-version=8.17.12.6859 --gpu-driver-date=5-13-2011 --service-request-channel-token=C059F7D6B761AAB7CDB78C586E49E4D3 --mojo-platform-channel-handle=1328 /prefetch:2
"C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=renderer --ms-disable-indexeddb-transaction-timeout --no-sandbox --service-pipe-token=FA2E99C1A84BC708499D976C07FE61CD --lang=sk --app-user-model-id=Microsoft.Skype.SkypeDesktop --app-path="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar" --node-integration=false --webview-tag=true --no-sandbox --preload="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar\Preload.js" --context-id=2 --enable-pinch --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --enable-gpu-async-worker-context --service-request-channel-token=FA2E99C1A84BC708499D976C07FE61CD --renderer-client-id=4 --mojo-platform-channel-handle=1760 /prefetch:1
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe" --type=renderer --ms-disable-indexeddb-transaction-timeout --no-sandbox --service-pipe-token=4A692156933ED392818ABE9A837B8824 --lang=sk --app-user-model-id=Microsoft.Skype.SkypeDesktop --app-path="C:\Program Files (x86)\Microsoft\Skype for Desktop\resources\app.asar" --node-integration=true --webview-tag=true --no-sandbox --context-id=2 --enable-pinch --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --disable-accelerated-video-decode --enable-gpu-async-worker-context --service-request-channel-token=4A692156933ED392818ABE9A837B8824 --renderer-client-id=6 --mojo-platform-channel-handle=2104 /prefetch:1
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer13_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer13_Logfile.log
"C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE"
C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-3260c110-3ae3-4570-82ac-d09d52aed832 -SystemEventPortName:HostProcess-31525513-5498-46e0-a2b8-15bcea1ca663 -IoCancelEventPortName:HostProcess-6d7b1f39-1dba-4239-867c-f151608ce640 -NonStateChangingEventPortName:HostProcess-c1e9a212-31bf-47b6-8a6d-eba58e2475c0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b2b24f24-1f17-4e80-9646-cb1387a4ca6b -DeviceGroupId:
"C:\windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e2542a9f-969f-4647-b4ec-f82987d5257f -SystemEventPortName:HostProcess-8e49b66e-cab0-4a92-909a-839cc61f5364 -IoCancelEventPortName:HostProcess-c71fbd73-bd8b-4da0-be4b-ada3f9bf0400 -NonStateChangingEventPortName:HostProcess-43e68d09-3ead-49f2-a66a-7a2f738957a3 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0a4b6a6f-ffbf-4824-86e5-3afba63cfcaa -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe"
"C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE" /n "H:\sd karta\Nový priečinok\poziarne\Quintal\vydane faktury\vydane faktury 2016\zalohove 2016\ceske zalohove 2016\zalohova Cejc 20161108 ukony cz banka.rtf"
C:\windows\splwow64.exe 8192
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2596 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\ideacentre\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\ideacentre\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\ideacentre\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=68.0.3440.75 --initial-client-data=0x80,0x84,0x88,0x7c,0x8c,0x7fee0d734d0,0x7fee0d734e0,0x7fee0d734f0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=9520 --on-initialized-event-handle=320 --parent-handle=324 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --gpu-preferences=KAAAAAAAAACAAwBAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --service-request-channel-token=793F835972B9275337137E5968775EDB --mojo-platform-channel-handle=1120 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=D57D3621C5FBEB0A0357AD5779C11377 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=D57D3621C5FBEB0A0357AD5779C11377 --renderer-client-id=12 --mojo-platform-channel-handle=1904 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=1A15EE66E6A441F5334A152E9D9743B8 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1A15EE66E6A441F5334A152E9D9743B8 --renderer-client-id=3 --mojo-platform-channel-handle=2348 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=69D75E0F463B27DBDBC196B5B887C1D4 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=69D75E0F463B27DBDBC196B5B887C1D4 --renderer-client-id=4 --mojo-platform-channel-handle=2696 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=14AE0108541C37A9AD0CE6AB934D5E0C --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14AE0108541C37A9AD0CE6AB934D5E0C --renderer-client-id=5 --mojo-platform-channel-handle=2808 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=5FEFBD8BDC35FC3F101AE4FCAE57D246 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5FEFBD8BDC35FC3F101AE4FCAE57D246 --renderer-client-id=7 --mojo-platform-channel-handle=2968 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=8A933DCECA3E4694D4F3CDFA7281D4A7 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=8A933DCECA3E4694D4F3CDFA7281D4A7 --renderer-client-id=8 --mojo-platform-channel-handle=3092 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=7518E8806B954174E8182701EC8818C7 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=7518E8806B954174E8182701EC8818C7 --renderer-client-id=9 --mojo-platform-channel-handle=3192 /prefetch:1
C:\windows\system32\cmd.exe /d /c "C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe" chrome-extension://fkepacicchenbjecpbpbclokcabebhah/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.ed86844927e3fc1e > \\.\pipe\chrome.nativeMessaging.out.ed86844927e3fc1e
\??\C:\windows\system32\conhost.exe "542951882-1659866595133192414403651754-13763663951297956542-13072549211194632739
"C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe" chrome-extension://fkepacicchenbjecpbpbclokcabebhah/ --parent-window=0
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=82DA805FAA96AFFF6D8FE1AED23BC923 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=82DA805FAA96AFFF6D8FE1AED23BC923 --renderer-client-id=21 --mojo-platform-channel-handle=4124 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=3DB47CA4023A5417816F7CA92E111CED --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=3DB47CA4023A5417816F7CA92E111CED --renderer-client-id=24 --mojo-platform-channel-handle=6080 /prefetch:1
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2596 CREDAT:202064 /prefetch:2
"F:\instalacky programov\JDownloader-2.0-DC-31.03.2016\JDownloader 2 24052016\JDownloader-2.0-DC-04.05.2016-Portable\JDownloader 2.0 DC 04.05.2016\JDownloader2.exe" -afterupdate
"C:\windows\system32\notepad.exe"
"C:\windows\system32\calc.exe"
"C:\windows\system32\NOTEPAD.EXE" H:\sd karta\Nový priečinok\poziarne\pokecy\vsetky\pokec 2.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=71CAB7632D86376C958E83E322CF0AF4 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=71CAB7632D86376C958E83E322CF0AF4 --renderer-client-id=33 --mojo-platform-channel-handle=2100 /prefetch:1
"C:\Program Files (x86)\Teacher\TEACHER.EXE"
"C:\Program Files (x86)\PC Translator\wtran32.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1112,4975660565048141432,1116377697861684317,131072 --service-pipe-token=603266DC9036B14100DA4DA78630B4B4 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.5 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=603266DC9036B14100DA4DA78630B4B4 --renderer-client-id=36 --mojo-platform-channel-handle=1668 /prefetch:1
"C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" /Embedding
taskeng.exe {677CA696-A11A-4F70-AC07-52ED83392E48}
C:\windows\System32\svchost.exe -k WerSvcGroup
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-4082759503-1401401991-2524271345-100148_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-4082759503-1401401991-2524271345-100148 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2596 CREDAT:4068847 /prefetch:2
"C:\Users\ideacentre\Desktop\RSITx64.exe"
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe49_ Global\UsGthrCtrlFltPipeMssGthrPipe49 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
C:\windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\windows\tasks\DropboxUpdateTaskMachineCore.job
C:\windows\tasks\DropboxUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\ideacentre\AppData\Roaming\Mozilla\Firefox\Profiles\m8jb4xws.default
prefs.js - "browser.search.useDBForOrder" - true
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.134 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 30.0.0.134 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll
C:\Users\ideacentre\AppData\Roaming\Mozilla\Firefox\Profiles\m8jb4xws.default\searchplugins\
Google.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2009-03-13 9498616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
RoboForm Toolbar Helper - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2009-03-13 6101504]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-04 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AEAF002F-E6D8-4A21-ABD3-2B309B79A6CE}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-04 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll [2009-03-13 9498616]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-01 255088]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm Toolbar - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll [2009-03-13 6101504]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-01 193136]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-01-18 11775592]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2013-08-21 519504]
"egui"=C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe [2015-07-23 4150472]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05 508240]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11 316392]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2018-07-06 298296]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Nektra OEAPI"= []
"OEXPRESS"= []
"RoboForm"=C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2015-05-25 107000]
""= []
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-09-28 8944344]
"Google Update"=C:\Users\ideacentre\AppData\Local\Google\Update\1.3.33.17\GoogleUpdateCore.exe [2018-05-22 601680]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2018-06-26 67384]
"AdobeBridge"= []
"NokiaSuite.exe"=C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2014-11-19 1092448]
"Skype for Desktop"=C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [2018-06-26 49654728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTibMounterMonitor]
C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [2013-01-10 1105328]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05 508240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2013-04-25 1075296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleIEDAV]
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [2018-06-26 68408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApplePhotoStreams]
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2018-06-26 67896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [2009-12-05 103720]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Daemon for Mouse Suite]
C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE [2013-03-26 87040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dropbox]
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2018-07-13 3754168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM tray]
C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe [2013-03-29 2081792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eID_klient]
C:\Program Files (x86)\eID klient\eID_klient.exe [2017-04-11 6357560]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\ideacentre\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoPro Tray App]
C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [2016-11-14 866224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iCloudDrive]
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2018-06-26 110392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iCloudServices]
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2018-06-26 67384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iSkysoft Helper Compact.exe]
C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2016-06-20 2131856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2018-07-06 298296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo Dynamic Brightness System]
C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe [2011-02-25 287232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo EE Boot Optimizer]
C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [2011-12-24 114688]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lenovo Eye Distance System]
C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe [2010-09-09 265216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2014-11-19 1092448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NUSB3MON]
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProductUpdater]
C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [2016-02-10 73216]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefaultSCR]
C:\Program Files (x86)\Lenovo\Lenovo Screensaver\SetDefaultSCR.exe [2009-12-31 102400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SideSync]
C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [2018-03-07 12476064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion]
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2015-09-23 457088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TMCMonitor]
C:\Program Files (x86)\Lenovo\Lenovo EBook&QuickNotes\TMCMonitor.exe [2009-11-10 53248]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2013-09-20 7801088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePRCShortCut]
C:\Program Files\Lenovo\OneKey App\Lenovo Rescue System\MUITransfer\MUIStartMenu.exe [2009-05-14 222504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Mirage]
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2011-01-29 136488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YouCam Tray]
C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [2011-01-29 228448]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zune Launcher]
C:\Program Files\Zune\ZuneLauncher.exe [2011-08-05 163552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Samsung Network PC Fax.lnk]
C:\Windows\System32\spool\drivers\x64\3\NETFAX~2.EXE [2013-02-05 380976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS Premium Sound.lnk]
C:\PROGRA~1\SRSLAB~1\SRSCON~1\SRSPAN~1.EXE [2011-06-15 2091864]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"jmekey"=C:\Program Files (x86)\jmesoft\hotkey.exe [2009-08-25 225280]
"Bluetooth Manager"=C:\Program Files\Lenovo\Bluetooth Manager\BluetoothManager.exe [2010-07-17 552448]
""= []
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2018-07-13 3754168]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2013-04-25 1075296]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave7"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"wave8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.CFHD"=CFHD.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"vidc.tscc"=C:\windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\windows\SysWOW64\tsc2_codec64.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2018-07-31 11:27:00 ----D---- C:\rsit
2018-07-30 09:01:47 ----D---- C:\Program Files\iPod
2018-07-30 09:00:50 ----D---- C:\Program Files\iTunes
2018-07-30 08:38:29 ----D---- C:\Program Files (x86)\Microsoft
2018-07-24 12:58:32 ----D---- C:\Program Files\Common Files\Adobe
2018-07-24 12:34:33 ----D---- C:\Program Files\Common Files\AV
2018-07-24 11:22:16 ----D---- C:\ProgramData\ESET
2018-07-24 11:22:16 ----D---- C:\Program Files\ESET
2018-07-24 11:18:27 ----D---- C:\install
2018-07-13 04:01:46 ----A---- C:\windows\system32\drivers\dbx-stable.sys
2018-07-13 04:01:46 ----A---- C:\windows\system32\drivers\dbx-dev.sys
2018-07-13 04:01:46 ----A---- C:\windows\system32\drivers\dbx-canary.sys
2018-07-13 04:01:46 ----A---- C:\windows\system32\DbxSvc.exe
2018-07-12 19:03:40 ----A---- C:\windows\system32\invagent.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\generaltel.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\devinv.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\CompatTelRunner.exe
2018-07-12 19:03:40 ----A---- C:\windows\system32\centel.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\appraiser.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\aitstatic.exe
2018-07-12 19:03:40 ----A---- C:\windows\system32\aepic.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\aeinv.dll
2018-07-12 19:03:40 ----A---- C:\windows\system32\acmigration.dll
2018-07-12 19:03:24 ----A---- C:\windows\system32\mshtml.dll
2018-07-12 19:03:23 ----A---- C:\windows\SYSWOW64\mshtml.dll
2018-07-12 19:03:22 ----A---- C:\windows\SYSWOW64\ieframe.dll
2018-07-12 19:03:22 ----A---- C:\windows\system32\ieframe.dll
2018-07-12 19:03:21 ----A---- C:\windows\SYSWOW64\jscript9.dll
2018-07-12 19:03:21 ----A---- C:\windows\system32\shell32.dll
2018-07-12 19:03:21 ----A---- C:\windows\system32\jscript9.dll
2018-07-12 19:03:20 ----A---- C:\windows\SYSWOW64\urlmon.dll
2018-07-12 19:03:20 ----A---- C:\windows\SYSWOW64\ucrtbase.dll
2018-07-12 19:03:20 ----A---- C:\windows\SYSWOW64\shell32.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\win32k.sys
2018-07-12 19:03:20 ----A---- C:\windows\system32\vbscript.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\urlmon.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\ucrtbase.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\ExplorerFrame.dll
2018-07-12 19:03:20 ----A---- C:\windows\system32\drivers\tcpip.sys
2018-07-12 19:03:19 ----A---- C:\windows\SYSWOW64\vbscript.dll
2018-07-12 19:03:19 ----A---- C:\windows\SYSWOW64\iertutil.dll
2018-07-12 19:03:19 ----A---- C:\windows\SYSWOW64\ExplorerFrame.dll
2018-07-12 19:03:19 ----A---- C:\windows\system32\wkssvc.dll
2018-07-12 19:03:19 ----A---- C:\windows\system32\iertutil.dll
2018-07-12 19:03:19 ----A---- C:\windows\system32\drivers\dfsc.sys
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\zipfldr.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\ntdll.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\zipfldr.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\ntdll.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\iedkcs32.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\drivers\usbport.sys
2018-07-12 19:03:18 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2018-07-12 19:03:18 ----A---- C:\windows\system32\dnsrslvr.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\dnsapi.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-07-12 19:03:18 ----A---- C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-07-12 19:03:17 ----A---- C:\windows\SYSWOW64\wininet.dll
2018-07-12 19:03:17 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2018-07-12 19:03:17 ----A---- C:\windows\SYSWOW64\dnscacheugc.exe
2018-07-12 19:03:17 ----A---- C:\windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\wininet.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\ntoskrnl.exe
2018-07-12 19:03:17 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2018-07-12 19:03:17 ----A---- C:\windows\system32\hal.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\drivers\netio.sys
2018-07-12 19:03:17 ----A---- C:\windows\system32\drivers\mpsdrv.sys
2018-07-12 19:03:17 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2018-07-12 19:03:17 ----A---- C:\windows\system32\drivers\ksecdd.sys
2018-07-12 19:03:17 ----A---- C:\windows\system32\dnscacheugc.exe
2018-07-12 19:03:17 ----A---- C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-07-12 19:03:17 ----A---- C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\webcheck.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\ole32.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\msrating.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2018-07-12 19:03:16 ----A---- C:\windows\SYSWOW64\certcli.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\webcheck.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\schannel.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\rstrui.exe
2018-07-12 19:03:16 ----A---- C:\windows\system32\rpcrt4.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\ole32.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\msrating.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\mshtmlmedia.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\msfeeds.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\lsasrv.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\inseng.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\ieui.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\iesetup.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\ie4uinit.exe
2018-07-12 19:03:16 ----A---- C:\windows\system32\dxtrans.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\dxtmsft.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\drivers\usbhub.sys
2018-07-12 19:03:16 ----A---- C:\windows\system32\drivers\usbccgp.sys
2018-07-12 19:03:16 ----A---- C:\windows\system32\conhost.exe
2018-07-12 19:03:16 ----A---- C:\windows\system32\certcli.dll
2018-07-12 19:03:16 ----A---- C:\windows\system32\advapi32.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\wdigest.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\sspicli.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\schannel.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\setup16.exe
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\occache.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\kernel32.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\kerberos.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\inseng.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ieui.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\iesetup.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\iernonce.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\auditpol.exe
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\appidapi.dll
2018-07-12 19:03:15 ----A---- C:\windows\SYSWOW64\advapi32.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\wow64win.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\winsrv.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\wdigest.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\TSpkg.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\sspicli.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\srcore.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\smss.exe
2018-07-12 19:03:15 ----A---- C:\windows\system32\rpchttp.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\rpcss.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\occache.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ntvdm64.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ncrypt.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\msv1_0.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\mshtmled.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\MshtmlDac.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\KernelBase.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\kernel32.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\kerberos.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\jsproxy.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\jscript9diag.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ieUnatt.exe
2018-07-12 19:03:15 ----A---- C:\windows\system32\iernonce.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ieetwproxystub.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\ieetwcollector.exe
2018-07-12 19:03:15 ----A---- C:\windows\system32\drivers\videoprt.sys
2018-07-12 19:03:15 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2018-07-12 19:03:15 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2018-07-12 19:03:15 ----A---- C:\windows\system32\csrsrv.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\bcrypt.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\auditpol.exe
2018-07-12 19:03:15 ----A---- C:\windows\system32\appidsvc.dll
2018-07-12 19:03:15 ----A---- C:\windows\system32\appidapi.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-07-12 19:03:14 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\wow32.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\wfapigp.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\user.exe
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\srclient.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\secur32.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\oleres.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\msobjs.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\msaudite.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\jscript.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\instnm.exe
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\FirewallAPI.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\credssp.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\comcat.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\bcrypt.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2018-07-12 19:03:14 ----A---- C:\windows\SYSWOW64\adtschema.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\wow64cpu.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\wow64.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\wfapigp.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\sspisrv.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\srclient.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\setbcdlocale.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\secur32.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\oleres.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\msobjs.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\msaudite.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\MPSSVC.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\lsass.exe
2018-07-12 19:03:14 ----A---- C:\windows\system32\jscript.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\ieetwcollectorres.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\ieapfltr.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\icfupgd.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\FirewallAPI.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\usbuhci.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\usbohci.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\usbehci.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\usbd.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\drivers\appid.sys
2018-07-12 19:03:14 ----A---- C:\windows\system32\cryptbase.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\credssp.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\comcat.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\appidpolicyconverter.exe
2018-07-12 19:03:14 ----A---- C:\windows\system32\appidcertstorecheck.exe
2018-07-12 19:03:14 ----A---- C:\windows\system32\apisetschema.dll
2018-07-12 19:03:14 ----A---- C:\windows\system32\adtschema.dll
======List of files/folders modified in the last 1 month======
2018-07-31 11:27:02 ----D---- C:\Program Files\trend micro
2018-07-31 11:27:01 ----D---- C:\windows\Temp
2018-07-31 10:25:47 ----D---- C:\windows\system32\config
2018-07-31 10:04:11 ----D---- C:\windows\inf
2018-07-31 10:04:11 ----AD---- C:\windows\System32
2018-07-31 10:04:11 ----A---- C:\windows\system32\PerfStringBackup.INI
2018-07-31 10:02:15 ----A---- C:\windows\SYSWOW64\log.txt
2018-07-31 09:58:08 ----D---- C:\Program Files (x86)\TeamViewer
2018-07-31 09:57:55 ----D---- C:\ProgramData\NVIDIA
2018-07-30 18:45:22 ----D---- C:\windows\system32\catroot
2018-07-30 16:44:38 ----D---- C:\Config.Msi
2018-07-30 10:40:34 ----D---- C:\windows\system32\NDF
2018-07-30 09:02:12 ----SHD---- C:\windows\Installer
2018-07-30 09:01:47 ----RD---- C:\Program Files
2018-07-30 09:01:07 ----SHD---- C:\System Volume Information
2018-07-30 08:38:45 ----SD---- C:\Users\ideacentre\AppData\Roaming\Microsoft
2018-07-30 08:38:29 ----RD---- C:\Program Files (x86)
2018-07-30 08:38:28 ----RD---- C:\Program Files (x86)\Skype
2018-07-30 08:38:28 ----D---- C:\ProgramData\Skype
2018-07-30 08:38:28 ----D---- C:\Program Files (x86)\Common Files
2018-07-30 08:35:23 ----D---- C:\Users\ideacentre\AppData\Roaming\Skype
2018-07-25 17:41:30 ----D---- C:\windows\system32\catroot2
2018-07-25 14:19:09 ----D---- C:\Users\ideacentre\AppData\Roaming\MyPhoneExplorer
2018-07-25 08:33:31 ----D---- C:\windows\system32\Tasks
2018-07-25 08:04:35 ----D---- C:\Program Files (x86)\Adobe
2018-07-25 08:02:10 ----D---- C:\Program Files\Adobe
2018-07-24 13:03:55 ----RSD---- C:\windows\Fonts
2018-07-24 13:03:09 ----D---- C:\windows\SysWOW64
2018-07-24 13:03:09 ----D---- C:\Users\ideacentre\AppData\Roaming\Adobe
2018-07-24 13:03:09 ----D---- C:\ProgramData\Adobe
2018-07-24 12:58:32 ----D---- C:\Program Files\Common Files
2018-07-24 11:55:23 ----D---- C:\Program Files (x86)\AppCleaner
2018-07-24 11:53:18 ----HD---- C:\ProgramData
2018-07-24 11:52:23 ----D---- C:\windows\system32\drivers
2018-07-24 11:50:32 ----D---- C:\windows\Tasks
2018-07-24 11:31:09 ----D---- C:\windows\system32\DriverStore
2018-07-24 08:36:54 ----D---- C:\windows\Microsoft.NET
2018-07-23 10:12:41 ----RSD---- C:\windows\assembly
2018-07-23 09:32:20 ----D---- C:\windows\winsxs
2018-07-23 09:28:26 ----D---- C:\windows\system32\appraiser
2018-07-23 09:28:17 ----D---- C:\Program Files\Internet Explorer
2018-07-23 09:28:17 ----D---- C:\Program Files (x86)\Internet Explorer
2018-07-23 09:28:16 ----D---- C:\windows\SYSWOW64\sk-SK
2018-07-23 09:28:16 ----D---- C:\windows\SYSWOW64\en-US
2018-07-23 09:28:13 ----D---- C:\windows\system32\sk-SK
2018-07-23 09:28:13 ----D---- C:\windows\system32\en-US
2018-07-23 09:28:13 ----D---- C:\windows\system32\drivers\en-US
2018-07-23 09:28:09 ----D---- C:\windows\AppPatch
2018-07-23 09:28:08 ----D---- C:\windows\system32\Boot
2018-07-17 00:02:20 ----N---- C:\windows\system32\MpSigStub.exe
2018-07-16 08:48:30 ----D---- C:\ProgramData\Microsoft Help
2018-07-16 08:16:36 ----D---- C:\Program Files (x86)\Dropbox
2018-07-16 08:13:31 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2018-07-16 08:13:25 ----D---- C:\windows\system32\Macromed
2018-07-16 08:13:22 ----D---- C:\windows\SYSWOW64\Macromed
2018-07-12 19:09:52 ----D---- C:\windows\system32\MRT
2018-07-12 19:01:55 ----AC---- C:\windows\system32\MRT.exe
2018-07-03 15:19:15 ----D---- C:\Users\ideacentre\AppData\Roaming\TeamViewer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 EMSC;COMPAL Embedded System Control; C:\windows\system32\DRIVERS\EMSC.SYS [2009-06-27 16752]
R0 fbfmon;fbfmon; C:\windows\system32\drivers\fbfmon.sys [2011-12-24 57952]
R0 fltsrv;Acronis Storage Filter Management; C:\windows\system32\DRIVERS\fltsrv.sys [2014-03-12 116000]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2010-11-06 438808]
R0 pwdrvio;pwdrvio; C:\windows\system32\pwdrvio.sys [2013-09-30 19152]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 snapman;Acronis Snapshots Manager; C:\windows\system32\DRIVERS\snapman.sys [2014-03-12 269600]
R0 tib;Acronis TIB Manager; C:\windows\system32\DRIVERS\tib.sys [2014-03-12 1120032]
R0 tib_mounter;Acronis TIB Mounter; C:\windows\system32\DRIVERS\tib_mounter.sys [2014-03-12 183224]
R0 vididr;Acronis Virtual Disk; C:\windows\system32\DRIVERS\vididr.sys [2014-03-12 161568]
R0 vidsflt;Acronis Disk Storage Filter; C:\windows\system32\DRIVERS\vidsflt.sys [2014-03-12 117024]
R1 BPntDrv;BPntDrv; C:\windows\system32\drivers\BPntDrv.sys [2011-12-24 13408]
R1 eamonm;eamonm; C:\windows\system32\DRIVERS\eamonm.sys [2015-07-14 245952]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2015-07-14 179544]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 epfwwfpr;epfwwfpr; C:\windows\system32\DRIVERS\epfwwfpr.sys [2015-07-14 170768]
R2 npf;NetGroup Packet Filter Driver; C:\windows\system32\drivers\npf.sys [2011-02-11 35344]
R2 SSPORT;SSPORT; \??\C:\windows\system32\Drivers\SSPORT.sys [2013-04-18 11576]
R3 afcdp;afcdp; C:\windows\system32\DRIVERS\afcdp.sys [2014-03-12 367200]
R3 AVerPola;AVerMedia USB Polaris Series Capture Service; C:\windows\system32\DRIVERS\AVerPola.sys [2010-06-22 504064]
R3 BthEnum;Bluetooth Enumerator Service; C:\windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\drivers\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 BTWAMPFL;btwampfl; C:\windows\system32\DRIVERS\btwampfl.sys [2014-07-18 599288]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2012-05-02 184144]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2012-03-06 210984]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2011-09-17 39976]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2012-03-06 21544]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\windows\system32\DRIVERS\clwvd.sys [2011-01-29 31088]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c62x64.sys [2010-12-20 316080]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2011-01-19 2719336]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\windows\system32\drivers\nvhda64v.sys [2011-05-10 174184]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\windows\system32\DRIVERS\RtsPStor.sys [2010-10-29 326760]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2017-05-18 166288]
R3 usbscan;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
R3 VMC412;Vimicro Camera Service VMC412; C:\windows\System32\Drivers\VMC412.sys [2010-08-18 239872]
S3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-07-13 5020672]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTWDPAN;Bluetooth Personal Area Network; C:\windows\system32\DRIVERS\btwdpan.sys [2011-01-20 89128]
S3 dbx;dbx; C:\windows\system32\DRIVERS\dbx.sys []
S3 epmntdrv;epmntdrv; \??\C:\windows\syswow64\epmntdrv.sys [2013-03-07 13896]
S3 EuGdiDrv;EuGdiDrv; \??\C:\windows\syswow64\EuGdiDrv.sys [2013-03-07 9160]
S3 FTDIBUS;USB Serial Converter Driver; C:\windows\system32\drivers\ftdibus.sys [2017-08-24 129456]
S3 FTSER2K;USB Serial Port Driver; C:\windows\system32\drivers\ftser2k.sys [2016-10-04 88752]
S3 fwlanusb6_860;AVM FRITZ!WLAN AC 860; C:\windows\system32\DRIVERS\fwlanusb6_860.sys [2015-07-20 2274336]
S3 GemCCID;GemCCID; C:\windows\system32\DRIVERS\GemCCID.sys [2014-11-10 130944]
S3 ggflt;SOMC USB Flash Driver Filter; C:\windows\system32\DRIVERS\ggflt.sys [2014-10-01 16088]
S3 ggsomc;SOMC USB Flash Driver; C:\windows\system32\DRIVERS\ggsomc.sys [2014-10-01 30424]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [2016-06-29 192216]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\windows\system32\DRIVERS\netaapl64.sys [2014-06-10 23040]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2013-01-23 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdspio;pwdspio; \??\C:\windows\system32\pwdspio.sys [2013-09-30 12504]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver; C:\windows\system32\DRIVERS\rtl8192Ce.sys [2010-09-16 1101928]
S3 ss_conn_usb_driver;SAMSUNG Mobile USB Connectivity Device Driver; C:\windows\System32\Drivers\ss_conn_usb_driver.sys [2017-01-16 43648]
S3 tdrpman;Acronis Try&Decide and Restore Points filter; C:\windows\system32\DRIVERS\tdrpman.sys [2014-03-12 1464096]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2013-01-23 9216]
S3 USBAAPL64;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 usbser;USB Modem Driver; C:\windows\system32\DRIVERS\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2013-08-21 1144688]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 afcdpsrv;Acronis Nonstop Backup Service; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2014-03-12 3869688]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2018-05-11 2321384]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-05-11 2128872]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2018-07-05 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2014-07-17 1008384]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
R2 DbxSvc;DbxSvc; C:\windows\system32\DbxSvc.exe [2018-07-13 51392]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [2015-10-29 382312]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [2015-07-27 1042064]
R2 GoProDeviceDetectionService;GoPro Device Detection Service; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [2016-11-14 37808]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\windows\system32\IProsetMonitor.exe [2010-09-22 165032]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 NVSvc;NVIDIA Driver Helper Service; C:\windows\system32\nvvsvc.exe [2011-05-13 1006696]
R2 PelService;Session Launcher Service; C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe [2012-03-13 178688]
R2 Samsung Network Fax Server;Samsung Network Fax Server; C:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [2013-02-05 506928]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2017-01-16 752224]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-05-13 378472]
R2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-09-02 9742080]
R2 TeamViewer;TeamViewer 13; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2018-04-03 11293936]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2018-07-06 674104]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-03 143144]
S2 FreemakeVideoCapture;FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [2016-02-10 9216]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-07-16 335872]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-03 143144]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe [2015-07-08 44744]
S3 ESHASRV;ESET SHA Service; C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe [2015-07-08 192200]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-02-10 651720]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-01-17 194032]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2018-06-16 116224]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-05 119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-06-14 161472]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2014-01-20 1255736]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
-----------------EOF-----------------