VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosim o kontrolu

https://forum.viry.cz:443/viewtopic.php?t=154986

Stránka 1 z 1

Prosim o kontrolu

Napsal: 17 říj 2018 18:16
od mania
Dobrý večer, před pár dny jsem byla pod tlakem od mého malého syna že nutně musí vidět avengers TV mu nestačila frmol v kuchyni riziko spálení oběda atd. Šla jsem na film on-line i když tušení bylo že by mohl být prušvih než se proklikalo k samotnému filmu uzavřela jsem asi 10 reklam a mezi nima i policejní virus již zkušenosti mám. Bohužel muj v nitřní hlas (nedělej to) umlčel vyraz syna. Od té doby je PC pomalejší některé hry po netu mě nechtějí ani pustit že tu mám vir. Prosím o kotrolu a pomoc.

Logfile of random's system information tool 1.10 (written by random/random)
Run by LuciFafa at 2018-10-17 18:49:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 510 GB (54%) free of 954 GB
Total RAM: 3030 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:49:06, on 17.10.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19130)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\LuciFafa\Desktop\RSIT.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\trend micro\LuciFafa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe" -s
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [AMDDVR] "C:\Program Files\AMD\CNext\CNext\amddvr.exe"
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: ACP User Service (amdacpusrsvc) - Advanced Micro Devices - C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MRAC Service (mracsvc) - LLC Mail.Ru - C:\Windows\System32\mracsvc.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 4784 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\irpsu7o9.default-1531484938742

prefs.js - "browser.startup.homepage" - "www.google.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 31.0.0.122 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_31_0_0_122.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.161.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.161.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_161\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ngm.nexoneu.com/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\ProgramData\NexonEU\NGM\npNxGameeu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ogplanet.com/npOGPPlugin]
"Description"=OGPlanet Game Plugin
"Path"=C:\Windows\system32\npOGPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll [2018-01-23 474688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-23 188992]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2015-01-28 7519960]
"NUSB3MON"=C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-10-16 242392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 3576664]
"AMDDVR"=C:\Program Files\AMD\CNext\CNext\amddvr.exe [2018-05-16 1514888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Smart Cleaning]
C:\Program Files\CCleaner\CCleaner.exe /MONITOR []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyComGames]
C:\Users\LuciFafa\AppData\Local\MyComGames\MyComGames.exe [2018-07-12 223360]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\Combatarms.exe:*Enabled:Combatarms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe:*:Enabled:CombatArms.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe:*:Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\Nexon\Library\combatarms\appdata\CombatArms.exe"="C:\Nexon\Library\combatarms\appdata\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Library\combatarms\appdata\Engine.exe"="C:\Nexon\Library\combatarms\appdata\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\combatarms\appdata\NMService.exe"="C:\Nexon\Library\combatarms\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\VALOFEEU\CombatArms\CombatArms.exe"="C:\VALOFEEU\CombatArms\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\VALOFEEU\CombatArms\Engine.exe"="C:\VALOFEEU\CombatArms\Engine.exe:*Enabled:Engine.exe"
"C:\VALOFEEU\CombatArms\NMService.exe"="C:\VALOFEEU\CombatArms\NMService.exe:*:Enabled:NMService.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\Combatarms.exe:*Enabled:Combatarms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe:*:Enabled:CombatArms.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe:*:Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\Nexon\Library\combatarms\appdata\CombatArms.exe"="C:\Nexon\Library\combatarms\appdata\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Library\combatarms\appdata\Engine.exe"="C:\Nexon\Library\combatarms\appdata\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\combatarms\appdata\NMService.exe"="C:\Nexon\Library\combatarms\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\VALOFEEU\CombatArms\CombatArms.exe"="C:\VALOFEEU\CombatArms\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\VALOFEEU\CombatArms\Engine.exe"="C:\VALOFEEU\CombatArms\Engine.exe:*Enabled:Engine.exe"
"C:\VALOFEEU\CombatArms\NMService.exe"="C:\VALOFEEU\CombatArms\NMService.exe:*:Enabled:NMService.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"msacm.l3codecp"=l3codecp.acm
"msacm.lameacm"=LameACM.acm
"vidc.x264"=x264vfw.dll
"vidc.XVID"=xvidvfw.dll
"vidc.mjpg"=pvmjpg30.dll
"vidc.mpeg"=bdmpegv.dll
"msacm.bdmpeg"=bdmpega.acm
"vidc.mjpx"=bdmjpeg.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2018-10-17 18:49:02 ----D---- C:\rsit
2018-10-16 11:43:36 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2018-10-16 10:06:51 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2018-10-16 10:06:39 ----A---- C:\Windows\system32\aswBoot.exe
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\vbscript.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\KernelBase.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\jsproxy.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\jscript9diag.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\ieUnatt.exe
2018-10-02 17:39:12 ----A---- C:\Windows\system32\dxtmsft.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\wininet.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\msihnd.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\msiexec.exe
2018-10-02 17:39:11 ----A---- C:\Windows\system32\kernel32.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\jscript.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\dxtrans.dll
2018-10-02 17:39:10 ----A---- C:\Windows\system32\mshtmled.dll
2018-10-02 17:39:10 ----A---- C:\Windows\system32\ieui.dll
2018-10-02 17:39:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-10-02 17:39:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-10-02 17:39:09 ----A---- C:\Windows\system32\iertutil.dll
2018-10-02 17:39:08 ----A---- C:\Windows\system32\webservices.dll
2018-10-02 17:39:08 ----A---- C:\Windows\system32\msi.dll
2018-10-02 17:39:08 ----A---- C:\Windows\system32\jscript9.dll
2018-10-02 17:39:07 ----A---- C:\Windows\system32\mshtml.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\wsnmp32.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\WinSCard.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\sspisrv.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\secur32.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\rpcss.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\rpcrt4.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\oleaut32.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\MPSSVC.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\lpk.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\volmgr.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\swenum.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\processr.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\mssmbios.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\msisadrv.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\errdev.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\cscdll.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\cscapi.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\appidsvc.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\sspicli.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\ole32.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\iernonce.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\wmiacpi.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\viac7.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\vdrvroot.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\termdd.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\srv.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\pci.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\netio.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-10-02 17:39:05 ----A---- C:\Windows\system32\conhost.exe
2018-10-02 17:39:05 ----A---- C:\Windows\system32\comcat.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\catsrvut.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\appidapi.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\winsrv.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\streamci.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\srclient.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\sdchange.exe
2018-10-02 17:39:04 ----A---- C:\Windows\system32\rstrui.exe
2018-10-02 17:39:04 ----A---- C:\Windows\system32\rrinstaller.exe
2018-10-02 17:39:04 ----A---- C:\Windows\system32\racpldlg.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\msrahc.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\itircl.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\inseng.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\ie4uinit.exe
2018-10-02 17:39:04 ----A---- C:\Windows\system32\hhsetup.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\halacpi.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\hal.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-10-02 17:39:04 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-10-02 17:39:04 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-10-02 17:39:04 ----A---- C:\Windows\system32\drivers\isapnp.sys
2018-10-02 17:39:04 ----A---- C:\Windows\system32\dnsrslvr.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\csrsrv.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\comsvcs.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\atmfd.dll
2018-10-02 17:39:04 ----A---- C:\Windows\hh.exe
2018-10-02 17:39:03 ----A---- C:\Windows\system32\WinSetupUI.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\urlmon.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\srcore.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\occache.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\msra.exe
2018-10-02 17:39:03 ----A---- C:\Windows\system32\iedkcs32.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-10-02 17:39:03 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-10-02 17:39:03 ----A---- C:\Windows\system32\drivers\appid.sys
2018-10-02 17:39:03 ----A---- C:\Windows\system32\drivers\acpi.sys
2018-10-02 17:39:03 ----A---- C:\Windows\system32\dnsapi.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\zipfldr.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\MSVidCtl.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\inetcomm.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\consent.exe
2018-10-02 17:39:02 ----A---- C:\Windows\system32\authui.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\appinfo.dll
2018-10-02 17:39:01 ----A---- C:\Windows\system32\halmacpi.dll
2018-10-02 17:39:01 ----A---- C:\Windows\system32\drivers\ks.sys
2018-10-02 17:39:00 ----A---- C:\Windows\system32\smss.exe
2018-10-02 17:39:00 ----A---- C:\Windows\system32\ntkrnlpa.exe
2018-10-02 17:39:00 ----A---- C:\Windows\system32\ntdll.dll
2018-10-02 17:39:00 ----A---- C:\Windows\system32\msfeeds.dll
2018-10-02 17:39:00 ----A---- C:\Windows\system32\ieapfltr.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\webcheck.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\shell32.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\msrating.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\INETRES.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\iesetup.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\wdigest.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\tzres.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\sscore.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\schannel.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-10-02 17:38:58 ----A---- C:\Windows\system32\msv1_0.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\mferror.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\ieframe.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\dciman32.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\apisetschema.dll
2018-10-02 17:38:57 ----A---- C:\Windows\system32\TSpkg.dll
2018-10-02 17:38:57 ----A---- C:\Windows\system32\clfs.sys
2018-10-02 17:38:56 ----A---- C:\Windows\system32\wkssvc.dll
2018-10-02 17:38:56 ----A---- C:\Windows\system32\srvsvc.dll
2018-10-02 17:38:56 ----A---- C:\Windows\system32\scesrv.dll
2018-10-02 17:38:56 ----A---- C:\Windows\system32\lsass.exe
2018-10-02 17:38:56 ----A---- C:\Windows\system32\kerberos.dll
2018-10-02 17:38:56 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-10-02 17:38:56 ----A---- C:\Windows\system32\advapi32.dll
2018-10-02 17:38:55 ----A---- C:\Windows\system32\ncrypt.dll
2018-10-02 17:38:55 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-10-02 17:38:55 ----A---- C:\Windows\system32\bcrypt.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuwebv.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wudriver.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wucltux.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuaueng.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuauclt.exe
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuapp.exe
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuapi.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\win32k.sys
2018-10-02 17:38:54 ----A---- C:\Windows\system32\t2embed.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\msimg32.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\mfpmp.exe
2018-10-02 17:38:54 ----A---- C:\Windows\system32\mf.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\lsasrv.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\fontsub.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\drivers\cng.sys
2018-10-02 17:38:54 ----A---- C:\Windows\system32\cryptbase.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\winload.exe
2018-10-02 17:38:53 ----A---- C:\Windows\system32\ucrtbase.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\scksp.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-10-02 17:38:53 ----A---- C:\Windows\system32\mf3216.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\hlink.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\drivers\hidparse.sys
2018-10-02 17:38:53 ----A---- C:\Windows\system32\ci.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\basecsp.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\atmlib.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\wups2.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\wups.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\wfapigp.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\rpchttp.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\oleres.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msxml6.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msxml3.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msjet40.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msimsg.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msexcl40.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\mfps.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\itss.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-10-02 17:38:52 ----A---- C:\Windows\system32\icfupgd.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\VIAAGP.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\ULIAGPKX.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\SISAGP.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\NV_AGP.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\AMDAGP.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\AGP440.sys
2018-10-02 17:38:52 ----A---- C:\Windows\system32\credssp.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-10-02 17:38:52 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-10-02 17:38:52 ----A---- C:\Windows\system32\adtschema.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\WindowsCodecs.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\schedsvc.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\msobjs.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\msaudite.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\gdi32.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbport.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbhub.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbehci.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\hidusb.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\hidclass.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\bowser.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\dnscacheugc.exe
2018-10-02 17:38:51 ----A---- C:\Windows\system32\auditpol.exe
2018-10-02 17:38:50 ----A---- C:\Windows\system32\netevent.dll
2018-10-02 17:38:50 ----A---- C:\Windows\system32\msxml6r.dll
2018-10-02 17:38:50 ----A---- C:\Windows\system32\msxml3r.dll
2018-10-02 17:38:50 ----A---- C:\Windows\system32\drivers\usbohci.sys
2018-10-02 17:38:50 ----A---- C:\Windows\system32\drivers\usbd.sys
2018-10-02 17:36:29 ----A---- C:\Windows\system32\invagent.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\generaltel.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\devinv.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-10-02 17:36:29 ----A---- C:\Windows\system32\centel.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\appraiser.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\aitstatic.exe
2018-10-02 17:36:29 ----A---- C:\Windows\system32\aepic.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\aeinv.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\acmigration.dll
2018-09-20 10:15:44 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 month======

2018-10-17 18:49:06 ----D---- C:\Windows\Prefetch
2018-10-17 18:49:06 ----D---- C:\Program Files\trend micro
2018-10-17 18:48:58 ----D---- C:\Windows\Temp
2018-10-17 18:41:59 ----D---- C:\Windows\system32\config
2018-10-16 20:19:49 ----D---- C:\Windows
2018-10-16 11:43:36 ----D---- C:\Windows\system32\drivers
2018-10-16 10:14:20 ----D---- C:\Program Files\WinRAR
2018-10-16 10:06:53 ----D---- C:\Windows\system32\Tasks
2018-10-16 10:06:39 ----D---- C:\Windows\System32
2018-10-14 16:14:09 ----D---- C:\Windows\system32\DriverStore
2018-10-13 19:26:32 ----D---- C:\Program Files\CCleaner
2018-10-13 09:33:58 ----D---- C:\Users\LuciFafa\AppData\Roaming\vlc
2018-10-12 15:39:43 ----D---- C:\Windows\inf
2018-10-12 15:39:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-10-09 19:29:40 ----SHD---- C:\System Volume Information
2018-10-09 15:20:37 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2018-10-09 15:20:36 ----D---- C:\Windows\system32\Macromed
2018-10-05 16:45:34 ----D---- C:\Program Files\SpeedFan
2018-10-03 09:05:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2018-10-03 09:05:57 ----D---- C:\Program Files\Mozilla Firefox
2018-10-03 08:44:01 ----D---- C:\Windows\Minidump
2018-10-02 18:41:58 ----D---- C:\Windows\rescache
2018-10-02 18:14:24 ----D---- C:\Windows\Microsoft.NET
2018-10-02 18:12:02 ----RSD---- C:\Windows\assembly
2018-10-02 17:55:10 ----D---- C:\Windows\winsxs
2018-10-02 17:52:09 ----SHD---- C:\Config.Msi
2018-10-02 17:50:38 ----D---- C:\Program Files\Internet Explorer
2018-10-02 17:50:37 ----D---- C:\Windows\system32\en-US
2018-10-02 17:50:37 ----D---- C:\Windows\system32\drivers\en-US
2018-10-02 17:50:37 ----D---- C:\Windows\system32\drivers\cs-CZ
2018-10-02 17:50:37 ----D---- C:\Windows\system32\cs-CZ
2018-10-02 17:50:36 ----RSD---- C:\Windows\Fonts
2018-10-02 17:50:36 ----D---- C:\Windows\system32\migration
2018-10-02 17:50:36 ----D---- C:\Windows\system32\CodeIntegrity
2018-10-02 17:50:36 ----D---- C:\Windows\system32\Boot
2018-10-02 17:50:36 ----D---- C:\Windows\system32\appraiser
2018-10-02 17:50:36 ----D---- C:\Windows\AppPatch
2018-10-02 17:48:47 ----SHD---- C:\Windows\Installer
2018-10-02 17:45:36 ----D---- C:\Windows\Logs
2018-10-02 17:37:37 ----D---- C:\Windows\system32\catroot2
2018-09-20 11:23:10 ----D---- C:\Windows\system32\drivers\etc
2018-09-20 11:02:26 ----D---- C:\Windows\system32\catroot
2018-09-20 10:59:00 ----D---- C:\Program Files\AMD
2018-09-20 10:38:48 ----D---- C:\Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2015-03-30 73928]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2015-03-30 36040]
R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2014-10-28 40136]
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [2018-10-16 165552]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswblogx.sys [2018-10-16 284424]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [2018-10-16 58072]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-10-16 72968]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-10-16 310880]
R0 BtHidBus;Bluetooth HID Bus Service; C:\Windows\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 MBAMSwissArmy;MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [2018-10-16 220896]
R0 pwdrvio;pwdrvio; C:\Windows\system32\pwdrvio.sys [2013-09-30 15688]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 173288]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2014-07-23 14720]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-10-16 167648]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [2018-10-16 188952]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-10-16 139008]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2018-10-16 40864]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-10-16 101152]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-10-16 784728]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-10-16 397136]
R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\Windows\system32\drivers\NST\7DE070B0.02A\ccSetx86.sys [2013-09-27 127064]
R2 amdacpksd;ACP Kernel Service Driver; \??\C:\Windows\system32\drivers\amdacpksd.sys [2018-05-16 276360]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-10-16 135368]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-10-16 157112]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2016-01-14 86752]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2018-05-16 40259464]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2018-05-16 423816]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2016-01-14 179936]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2017-09-02 78848]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-10-14 25016]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2015-02-03 3473624]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2015-01-15 723160]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2015-12-14 27632]
R3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2014-02-16 48352]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2018-02-10 52928]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-10-16 42912]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\Windows\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\Windows\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 mracdrv;MRAC Driver; C:\Windows\System32\drivers\mracdrv.sys [2018-06-22 6456416]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 10320]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2018-02-10 51904]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2018-02-10 52928]
S3 ViaC7;Ovladač procesoru VIA C7; C:\Windows\system32\drivers\viac7.sys [2018-08-10 53248]
S3 xhunter1;xhunter1; \??\C:\Windows\xhunter1.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2018-05-16 379784]
R2 amdacpusrsvc;ACP User Service; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [2018-05-16 113152]
R2 asComSvc;ASUS Com Service; C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe [2014-07-23 936728]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [2014-07-23 1360016]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-10-16 325024]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2017-10-17 66872]
R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2017-10-17 107832]
R2 wlidsvc;Windows Live ID Sign-in Assistant; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2018-10-16 6800144]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1034584]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09 335872]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-08-23 104960]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-05-09 4753104]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2018-10-03 178128]
S3 mracsvc;MRAC Service; C:\Windows\System32\mracsvc.exe [2018-06-22 7188752]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\system32\GameMon.des [2018-03-15 7986848]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2018-06-09 1673504]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2018-03-26 47200]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

Re: Prosim o kontrolu

Napsal: 17 říj 2018 18:30
od mania
Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 16.10.18
Čas skenování: 11:43
Logovací soubor: 00c18750-d128-11e8-b594-14dda9805d58.json
Správce: Ano

-Informace o softwaru-
Verze: 3.5.1.2522
Verze komponentů: 1.0.365
Aktualizovat verzi balíku komponent: 1.0.7379
Licence: Bezplatný

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x86
Systém souborů: NTFS
Uživatel: LuciFafa-PC\LuciFafa

-Shrnutí skenování-
Typ skenování: Vlastní skenování
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 217772
Zjištěné hrozby: 4
Hrozby umístěné do karantény: 4
Uplynulý čas: 1 hod, 16 min, 47 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 4
RiskWare.ExtensionMismatch, C:\USERS\LUCIFAFA\DOWNLOADS\OBN\DSC00706.JPG, V karanténě, [10470], [79311],1.0.7379
RiskWare.ExtensionMismatch, C:\USERS\LUCIFAFA\DOWNLOADS\OBN\DSC00708.JPG, V karanténě, [10470], [79311],1.0.7379
RiskWare.ExtensionMismatch, C:\USERS\LUCIFAFA\DOWNLOADS\REC\DSC00708.JPG, V karanténě, [10470], [79311],1.0.7379
RiskWare.ExtensionMismatch, C:\USERS\LUCIFAFA\DOWNLOADS\REC\DSC00706.JPG, V karanténě, [10470], [79311],1.0.7379

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Re: Prosim o kontrolu

Napsal: 17 říj 2018 18:31
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dále smažte vše, co nalezl MBAM.

Re: Prosim o kontrolu

Napsal: 17 říj 2018 18:45
od mania
Tento texták mě vyjel včera dnes po opětovné instalaci ADW to zmizelo.


Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 16.10.18
Čas skenování: 11:43
Logovací soubor: 00c18750-d128-11e8-b594-14dda9805d58.json
Správce: Ano

-Informace o softwaru-
Verze: 3.5.1.2522
Verze komponentů: 1.0.365
Aktualizovat verzi balíku komponent: 1.0.7379
Licence: Bezplatný

-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x86
Systém souborů: NTFS
Uživatel: LuciFafa-PC\LuciFafa

-Shrnutí skenování-
Typ skenování: Vlastní skenování
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 217772
Zjištěné hrozby: 4
Hrozby umístěné do karantény: 4
Uplynulý čas: 1 hod, 16 min, 47 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 4
RiskWare.ExtensionMismatch, C:\USERS\LUCIFAFA\DOWNLOADS\OBN\DSC00706.JPG, V karanténě, [10470], [79311],1.0.7379
RiskWare.ExtensionMismatch, C:\USERS\LUCIFAFA\DOWNLOADS\OBN\DSC00708.JPG, V karanténě, [10470], [79311],1.0.7379
RiskWare.ExtensionMismatch, C:\USERS\LUCIFAFA\DOWNLOADS\REC\DSC00708.JPG, V karanténě, [10470], [79311],1.0.7379
RiskWare.ExtensionMismatch, C:\USERS\LUCIFAFA\DOWNLOADS\REC\DSC00706.JPG, V karanténě, [10470], [79311],1.0.7379

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)



Dnes # -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build: 09-25-2018
# Database: 2018-10-12.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-17-2018
# Duration: 00:00:09
# OS: Windows 7 Home Premium
# Scanned: 31969
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1257 octets] - [17/10/2018 19:14:09]
AdwCleaner[S01].txt - [1318 octets] - [17/10/2018 19:34:36]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########

Re: Prosim o kontrolu

Napsal: 17 říj 2018 19:52
od Rudy
OK. Dejte nový log RSIT.

Re: Prosim o kontrolu

Napsal: 18 říj 2018 16:06
od mania
Některé hry mě stále nechtějí pustit tvrdí že mam vir v PC

Logfile of random's system information tool 1.10 (written by random/random)
Run by LuciFafa at 2018-10-18 17:03:33
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 510 GB (54%) free of 954 GB
Total RAM: 3030 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:03:38, on 18.10.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19130)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
C:\Windows\System32\TiltWheelMouse.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\LuciFafa\Desktop\RSIT.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\trend micro\LuciFafa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe" -s
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
O4 - HKLM\..\Run: [MouseDriver] TiltWheelMouse.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [AMDDVR] "C:\Program Files\AMD\CNext\CNext\amddvr.exe"
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: ACP User Service (amdacpusrsvc) - Advanced Micro Devices - C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MRAC Service (mracsvc) - LLC Mail.Ru - C:\Windows\System32\mracsvc.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 4690 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\LuciFafa\AppData\Roaming\Mozilla\Firefox\Profiles\irpsu7o9.default-1531484938742

prefs.js - "browser.startup.homepage" - "www.google.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 31.0.0.122 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_31_0_0_122.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.161.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.161.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_161\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ngm.nexoneu.com/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\ProgramData\NexonEU\NGM\npNxGameeu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ogplanet.com/npOGPPlugin]
"Description"=OGPlanet Game Plugin
"Path"=C:\Windows\system32\npOGPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll [2018-01-23 474688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-23 188992]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [2015-01-28 7519960]
"NUSB3MON"=C:\Program Files\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [2012-04-11 97280]
"MouseDriver"=C:\Windows\system32\TiltWheelMouse.exe [2012-12-19 241152]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-10-16 242392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 3576664]
"AMDDVR"=C:\Program Files\AMD\CNext\CNext\amddvr.exe [2018-05-16 1514888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Smart Cleaning]
C:\Program Files\CCleaner\CCleaner.exe /MONITOR []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyComGames]
C:\Users\LuciFafa\AppData\Local\MyComGames\MyComGames.exe [2018-07-12 223360]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\Combatarms.exe:*Enabled:Combatarms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe:*:Enabled:CombatArms.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe:*:Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\Nexon\Library\combatarms\appdata\CombatArms.exe"="C:\Nexon\Library\combatarms\appdata\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Library\combatarms\appdata\Engine.exe"="C:\Nexon\Library\combatarms\appdata\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\combatarms\appdata\NMService.exe"="C:\Nexon\Library\combatarms\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\VALOFEEU\CombatArms\CombatArms.exe"="C:\VALOFEEU\CombatArms\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\VALOFEEU\CombatArms\Engine.exe"="C:\VALOFEEU\CombatArms\Engine.exe:*Enabled:Engine.exe"
"C:\VALOFEEU\CombatArms\NMService.exe"="C:\VALOFEEU\CombatArms\NMService.exe:*:Enabled:NMService.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\Combatarms.exe:*Enabled:Combatarms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\CombatArms.exe:*:Enabled:CombatArms.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\Engine.exe:*:Enabled:Engine.exe"
"C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe"="C:\Nexon\Library\CombatArmsBeta\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\Nexon\Library\combatarms\appdata\CombatArms.exe"="C:\Nexon\Library\combatarms\appdata\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Library\combatarms\appdata\Engine.exe"="C:\Nexon\Library\combatarms\appdata\Engine.exe:*Enabled:Engine.exe"
"C:\Nexon\Library\combatarms\appdata\NMService.exe"="C:\Nexon\Library\combatarms\appdata\NMService.exe:*:Enabled:NMService.exe"
"C:\VALOFEEU\CombatArms\CombatArms.exe"="C:\VALOFEEU\CombatArms\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\VALOFEEU\CombatArms\Engine.exe"="C:\VALOFEEU\CombatArms\Engine.exe:*Enabled:Engine.exe"
"C:\VALOFEEU\CombatArms\NMService.exe"="C:\VALOFEEU\CombatArms\NMService.exe:*:Enabled:NMService.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"msacm.l3codecp"=l3codecp.acm
"msacm.lameacm"=LameACM.acm
"vidc.x264"=x264vfw.dll
"vidc.XVID"=xvidvfw.dll
"vidc.mjpg"=pvmjpg30.dll
"vidc.mpeg"=bdmpegv.dll
"msacm.bdmpeg"=bdmpega.acm
"vidc.mjpx"=bdmjpeg.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2018-10-17 19:12:59 ----D---- C:\AdwCleaner
2018-10-17 18:49:02 ----D---- C:\rsit
2018-10-16 10:06:51 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2018-10-16 10:06:39 ----A---- C:\Windows\system32\aswBoot.exe
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-10-02 17:39:12 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\vbscript.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\KernelBase.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\jsproxy.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\jscript9diag.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-10-02 17:39:12 ----A---- C:\Windows\system32\ieUnatt.exe
2018-10-02 17:39:12 ----A---- C:\Windows\system32\dxtmsft.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\wininet.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\msihnd.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\msiexec.exe
2018-10-02 17:39:11 ----A---- C:\Windows\system32\kernel32.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\jscript.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-10-02 17:39:11 ----A---- C:\Windows\system32\dxtrans.dll
2018-10-02 17:39:10 ----A---- C:\Windows\system32\mshtmled.dll
2018-10-02 17:39:10 ----A---- C:\Windows\system32\ieui.dll
2018-10-02 17:39:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-10-02 17:39:09 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-10-02 17:39:09 ----A---- C:\Windows\system32\iertutil.dll
2018-10-02 17:39:08 ----A---- C:\Windows\system32\webservices.dll
2018-10-02 17:39:08 ----A---- C:\Windows\system32\msi.dll
2018-10-02 17:39:08 ----A---- C:\Windows\system32\jscript9.dll
2018-10-02 17:39:07 ----A---- C:\Windows\system32\mshtml.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\wsnmp32.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\WinSCard.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\sspisrv.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\secur32.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\rpcss.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\rpcrt4.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\oleaut32.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\MPSSVC.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\lpk.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\volmgr.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\swenum.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\processr.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\mssmbios.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\msrpc.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\msisadrv.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\intelppm.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\errdev.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\amdppm.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\drivers\amdk8.sys
2018-10-02 17:39:06 ----A---- C:\Windows\system32\cscdll.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\cscapi.dll
2018-10-02 17:39:06 ----A---- C:\Windows\system32\appidsvc.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\sspicli.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\ole32.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\iernonce.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\FirewallAPI.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\wmiacpi.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\viac7.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\vdrvroot.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\termdd.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\srv.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\pci.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\netio.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-10-02 17:39:05 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2018-10-02 17:39:05 ----A---- C:\Windows\system32\conhost.exe
2018-10-02 17:39:05 ----A---- C:\Windows\system32\comcat.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\catsrvut.dll
2018-10-02 17:39:05 ----A---- C:\Windows\system32\appidapi.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\winsrv.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\StructuredQuery.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\streamci.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\srclient.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\sdchange.exe
2018-10-02 17:39:04 ----A---- C:\Windows\system32\rstrui.exe
2018-10-02 17:39:04 ----A---- C:\Windows\system32\rrinstaller.exe
2018-10-02 17:39:04 ----A---- C:\Windows\system32\racpldlg.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\msrahc.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\itircl.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\inseng.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\ie4uinit.exe
2018-10-02 17:39:04 ----A---- C:\Windows\system32\hhsetup.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\halacpi.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\hal.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\drivers\tcpip.sys
2018-10-02 17:39:04 ----A---- C:\Windows\system32\drivers\ndis.sys
2018-10-02 17:39:04 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-10-02 17:39:04 ----A---- C:\Windows\system32\drivers\isapnp.sys
2018-10-02 17:39:04 ----A---- C:\Windows\system32\dnsrslvr.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\csrsrv.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\comsvcs.dll
2018-10-02 17:39:04 ----A---- C:\Windows\system32\atmfd.dll
2018-10-02 17:39:04 ----A---- C:\Windows\hh.exe
2018-10-02 17:39:03 ----A---- C:\Windows\system32\WinSetupUI.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\urlmon.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\srcore.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\occache.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\msra.exe
2018-10-02 17:39:03 ----A---- C:\Windows\system32\iedkcs32.dll
2018-10-02 17:39:03 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-10-02 17:39:03 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2018-10-02 17:39:03 ----A---- C:\Windows\system32\drivers\appid.sys
2018-10-02 17:39:03 ----A---- C:\Windows\system32\drivers\acpi.sys
2018-10-02 17:39:03 ----A---- C:\Windows\system32\dnsapi.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\zipfldr.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\MSVidCtl.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\inetcomm.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\ExplorerFrame.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\consent.exe
2018-10-02 17:39:02 ----A---- C:\Windows\system32\authui.dll
2018-10-02 17:39:02 ----A---- C:\Windows\system32\appinfo.dll
2018-10-02 17:39:01 ----A---- C:\Windows\system32\halmacpi.dll
2018-10-02 17:39:01 ----A---- C:\Windows\system32\drivers\ks.sys
2018-10-02 17:39:00 ----A---- C:\Windows\system32\smss.exe
2018-10-02 17:39:00 ----A---- C:\Windows\system32\ntkrnlpa.exe
2018-10-02 17:39:00 ----A---- C:\Windows\system32\ntdll.dll
2018-10-02 17:39:00 ----A---- C:\Windows\system32\msfeeds.dll
2018-10-02 17:39:00 ----A---- C:\Windows\system32\ieapfltr.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\webcheck.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\shell32.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\msrating.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\INETRES.dll
2018-10-02 17:38:59 ----A---- C:\Windows\system32\iesetup.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\wdigest.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\tzres.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\sscore.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\schannel.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-10-02 17:38:58 ----A---- C:\Windows\system32\msv1_0.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\mferror.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\ieframe.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\dciman32.dll
2018-10-02 17:38:58 ----A---- C:\Windows\system32\apisetschema.dll
2018-10-02 17:38:57 ----A---- C:\Windows\system32\TSpkg.dll
2018-10-02 17:38:57 ----A---- C:\Windows\system32\clfs.sys
2018-10-02 17:38:56 ----A---- C:\Windows\system32\wkssvc.dll
2018-10-02 17:38:56 ----A---- C:\Windows\system32\srvsvc.dll
2018-10-02 17:38:56 ----A---- C:\Windows\system32\scesrv.dll
2018-10-02 17:38:56 ----A---- C:\Windows\system32\lsass.exe
2018-10-02 17:38:56 ----A---- C:\Windows\system32\kerberos.dll
2018-10-02 17:38:56 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-10-02 17:38:56 ----A---- C:\Windows\system32\advapi32.dll
2018-10-02 17:38:55 ----A---- C:\Windows\system32\ncrypt.dll
2018-10-02 17:38:55 ----A---- C:\Windows\system32\drivers\ntfs.sys
2018-10-02 17:38:55 ----A---- C:\Windows\system32\bcrypt.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuwebv.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wudriver.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wucltux.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuaueng.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuauclt.exe
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuapp.exe
2018-10-02 17:38:54 ----A---- C:\Windows\system32\wuapi.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\win32k.sys
2018-10-02 17:38:54 ----A---- C:\Windows\system32\t2embed.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\msimg32.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\mfpmp.exe
2018-10-02 17:38:54 ----A---- C:\Windows\system32\mf.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\lsasrv.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\fontsub.dll
2018-10-02 17:38:54 ----A---- C:\Windows\system32\drivers\cng.sys
2018-10-02 17:38:54 ----A---- C:\Windows\system32\cryptbase.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\winload.exe
2018-10-02 17:38:53 ----A---- C:\Windows\system32\ucrtbase.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\scksp.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-10-02 17:38:53 ----A---- C:\Windows\system32\mf3216.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\hlink.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\drivers\hidparse.sys
2018-10-02 17:38:53 ----A---- C:\Windows\system32\ci.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\basecsp.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\atmlib.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2018-10-02 17:38:53 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\wups2.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\wups.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\wfapigp.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\rpchttp.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\oleres.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msxml6.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msxml3.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msjet40.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msimsg.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\msexcl40.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\mfps.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\itss.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-10-02 17:38:52 ----A---- C:\Windows\system32\icfupgd.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\VIAAGP.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\ULIAGPKX.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\SISAGP.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\NV_AGP.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\AMDAGP.SYS
2018-10-02 17:38:52 ----A---- C:\Windows\system32\drivers\AGP440.sys
2018-10-02 17:38:52 ----A---- C:\Windows\system32\credssp.dll
2018-10-02 17:38:52 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-10-02 17:38:52 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-10-02 17:38:52 ----A---- C:\Windows\system32\adtschema.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\WindowsCodecs.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\schedsvc.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\msobjs.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\msaudite.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\gdi32.dll
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbport.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbhub.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbehci.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\hidusb.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\hidclass.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\dfsc.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\drivers\bowser.sys
2018-10-02 17:38:51 ----A---- C:\Windows\system32\dnscacheugc.exe
2018-10-02 17:38:51 ----A---- C:\Windows\system32\auditpol.exe
2018-10-02 17:38:50 ----A---- C:\Windows\system32\netevent.dll
2018-10-02 17:38:50 ----A---- C:\Windows\system32\msxml6r.dll
2018-10-02 17:38:50 ----A---- C:\Windows\system32\msxml3r.dll
2018-10-02 17:38:50 ----A---- C:\Windows\system32\drivers\usbohci.sys
2018-10-02 17:38:50 ----A---- C:\Windows\system32\drivers\usbd.sys
2018-10-02 17:36:29 ----A---- C:\Windows\system32\invagent.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\generaltel.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\devinv.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\CompatTelRunner.exe
2018-10-02 17:36:29 ----A---- C:\Windows\system32\centel.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\appraiser.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\aitstatic.exe
2018-10-02 17:36:29 ----A---- C:\Windows\system32\aepic.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\aeinv.dll
2018-10-02 17:36:29 ----A---- C:\Windows\system32\acmigration.dll
2018-09-20 10:15:44 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 month======

2018-10-18 17:03:37 ----D---- C:\Program Files\trend micro
2018-10-18 17:03:13 ----D---- C:\Windows\Temp
2018-10-17 22:03:57 ----D---- C:\Windows\system32\config
2018-10-17 21:15:47 ----D---- C:\Windows\system32\drivers
2018-10-17 21:14:11 ----D---- C:\Windows\Prefetch
2018-10-17 21:09:34 ----D---- C:\Windows
2018-10-16 10:14:20 ----D---- C:\Program Files\WinRAR
2018-10-16 10:06:53 ----D---- C:\Windows\system32\Tasks
2018-10-16 10:06:39 ----D---- C:\Windows\System32
2018-10-14 16:14:09 ----D---- C:\Windows\system32\DriverStore
2018-10-13 19:26:32 ----D---- C:\Program Files\CCleaner
2018-10-13 09:33:58 ----D---- C:\Users\LuciFafa\AppData\Roaming\vlc
2018-10-12 15:39:43 ----D---- C:\Windows\inf
2018-10-12 15:39:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-10-09 19:29:40 ----SHD---- C:\System Volume Information
2018-10-09 15:20:37 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2018-10-09 15:20:36 ----D---- C:\Windows\system32\Macromed
2018-10-05 16:45:34 ----D---- C:\Program Files\SpeedFan
2018-10-03 09:05:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2018-10-03 09:05:57 ----D---- C:\Program Files\Mozilla Firefox
2018-10-03 08:44:01 ----D---- C:\Windows\Minidump
2018-10-02 18:41:58 ----D---- C:\Windows\rescache
2018-10-02 18:14:24 ----D---- C:\Windows\Microsoft.NET
2018-10-02 18:12:02 ----RSD---- C:\Windows\assembly
2018-10-02 17:55:10 ----D---- C:\Windows\winsxs
2018-10-02 17:52:09 ----SHD---- C:\Config.Msi
2018-10-02 17:50:38 ----D---- C:\Program Files\Internet Explorer
2018-10-02 17:50:37 ----D---- C:\Windows\system32\en-US
2018-10-02 17:50:37 ----D---- C:\Windows\system32\drivers\en-US
2018-10-02 17:50:37 ----D---- C:\Windows\system32\drivers\cs-CZ
2018-10-02 17:50:37 ----D---- C:\Windows\system32\cs-CZ
2018-10-02 17:50:36 ----RSD---- C:\Windows\Fonts
2018-10-02 17:50:36 ----D---- C:\Windows\system32\migration
2018-10-02 17:50:36 ----D---- C:\Windows\system32\CodeIntegrity
2018-10-02 17:50:36 ----D---- C:\Windows\system32\Boot
2018-10-02 17:50:36 ----D---- C:\Windows\system32\appraiser
2018-10-02 17:50:36 ----D---- C:\Windows\AppPatch
2018-10-02 17:48:47 ----SHD---- C:\Windows\Installer
2018-10-02 17:45:36 ----D---- C:\Windows\Logs
2018-10-02 17:37:37 ----D---- C:\Windows\system32\catroot2
2018-09-20 11:23:10 ----D---- C:\Windows\system32\drivers\etc
2018-09-20 11:02:26 ----D---- C:\Windows\system32\catroot
2018-09-20 10:59:00 ----D---- C:\Program Files\AMD
2018-09-20 10:38:48 ----D---- C:\Program Files

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2015-03-30 73928]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2015-03-30 36040]
R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmpfd.sys [2014-10-28 40136]
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [2018-10-16 165552]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswblogx.sys [2018-10-16 284424]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [2018-10-16 58072]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2018-10-16 72968]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2018-10-16 310880]
R0 BtHidBus;Bluetooth HID Bus Service; C:\Windows\System32\Drivers\BtHidBus.sys [2009-09-24 19592]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 pwdrvio;pwdrvio; C:\Windows\system32\pwdrvio.sys [2013-09-30 15688]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 173288]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2014-07-23 14720]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2018-10-16 167648]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [2018-10-16 188952]
R1 aswHdsKe;aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [2018-10-16 139008]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2018-10-16 40864]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2018-10-16 101152]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2018-10-16 784728]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2018-10-16 397136]
R1 ccSet_NST;Norton Identity Safe Settings Manager; C:\Windows\system32\drivers\NST\7DE070B0.02A\ccSetx86.sys [2013-09-27 127064]
R2 amdacpksd;ACP Kernel Service Driver; \??\C:\Windows\system32\drivers\amdacpksd.sys [2018-05-16 276360]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2018-10-16 135368]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2018-10-16 157112]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2016-01-14 86752]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2018-05-16 40259464]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2018-05-16 423816]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2016-01-14 179936]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2017-09-02 78848]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2015-10-14 25016]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2015-02-03 3473624]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2015-01-15 723160]
R3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2015-12-14 27632]
R3 t_mouse.sys;HID-compliand device; C:\Windows\system32\DRIVERS\t_mouse.sys [2012-12-19 5120]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2014-02-16 48352]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2018-02-10 52928]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2018-10-16 42912]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\Windows\System32\Drivers\btnetBus.sys [2009-09-24 22528]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\Windows\System32\Drivers\IvtBtBus.sys [2009-08-26 25480]
S3 k750bus;Sony Ericsson 750 driver (WDM); C:\Windows\system32\DRIVERS\k750bus.sys [2005-02-11 55216]
S3 mracdrv;MRAC Driver; C:\Windows\System32\drivers\mracdrv.sys [2018-06-22 6456416]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2013-03-01 36600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-09-30 10320]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2018-02-10 51904]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2018-02-10 52928]
S3 ViaC7;Ovladač procesoru VIA C7; C:\Windows\system32\drivers\viac7.sys [2018-08-10 53248]
S3 xhunter1;xhunter1; \??\C:\Windows\xhunter1.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2018-05-16 379784]
R2 amdacpusrsvc;ACP User Service; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [2018-05-16 113152]
R2 asComSvc;ASUS Com Service; C:\Program Files\ASUS\AXSP\1.02.00\atkexComSvc.exe [2014-07-23 936728]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [2014-07-23 1360016]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-10-16 325024]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2017-10-17 66872]
R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2017-10-17 107832]
R2 wlidsvc;Windows Live ID Sign-in Assistant; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2018-10-16 6800144]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1034584]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09 335872]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-08-23 104960]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2018-05-09 4753104]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2018-10-03 178128]
S3 mracsvc;MRAC Service; C:\Windows\System32\mracsvc.exe [2018-06-22 7188752]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\system32\GameMon.des [2018-03-15 7986848]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2013-03-01 118520]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2018-06-09 1673504]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2018-03-26 47200]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]

-----------------EOF-----------------

Re: Prosim o kontrolu

Napsal: 18 říj 2018 17:02
od Rudy
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:services
xhunter1

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

Re: Prosim o kontrolu

Napsal: 18 říj 2018 17:31
od mania
All processes killed
========== SERVICES/DRIVERS ==========
Service xhunter1 stopped successfully!
Service xhunter1 deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LuciFafa
->Temp folder emptied: 29467215 bytes
->Temporary Internet Files folder emptied: 11301477 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 1093593492 bytes
->Flash cache emptied: 2209 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 44810200 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 49983893 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 172,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: LuciFafa
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 10182018_182700

Files moved on Reboot...
File move failed. C:\Windows\temp\_avast_\AvLock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Re: Prosim o kontrolu

Napsal: 18 říj 2018 18:00
od Rudy
OK. PC by již měl být čistý.

Re: Prosim o kontrolu

Napsal: 18 říj 2018 18:15
od mania
Velice moc děkuji. PC funguje jak má i hry jdou bez problému. Chtěla bych se jen optat ve stručnosti zda to byl vir.
Ještě jednou děkuji za pomoc přeji krasný večer.

Re: Prosim o kontrolu

Napsal: 18 říj 2018 18:56
od Rudy
Byl tam jen poteciálně škodlivý soft, který jsme odstranili. Jinak jen nějaké zbytčnosti.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz