Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zasekávají se prohlížeče

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zpráva
Autor
párek
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 08 črc 2017 14:51

Zasekávají se prohlížeče

#1 Příspěvek od párek »

Dobrý večer,
v notebooku se mi najednou přestali u některých stránek dotahovat prohlížeče. Používám Firefox a Chrome. Některé stránky jako tady forum, google atd se mi načtou normálně. Ale jiné např. seznam, facebook, tipcars, the-west.cz se rozjedou, pak zamrznou a načtou se jen částečně nebo vůbec. Když chci něco stáhnout, stahování se rozjede, ale stáhne jen pár kb a také zamrzne. Připojením to nebude - na druhém notebooku to funguje normálně.
Antivir nic nenajde, ccleaner nepomáhá. Zkusil jsem komplet přeinstalovat celý notebook. Nejdříve vše vypadalo v pořádku a prohlížeče fungovali, ale asi po necelém dnu to začalo dělat znovu.
Tak bych chtěl poprosit o pomoc nebo ho už mám vyhodit? :)
Log z RSIT:

Logfile of random's system information tool 1.10 (written by random/random)
Run by M at 2017-07-08 21:04:34
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 225 GB (76%) free of 295 GB
Total RAM: 3066 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:04:36, on 8.7.2017
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\M\Desktop\RSIT (1).exe
C:\Program Files\trend micro\M.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: (no name) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe

--
End of file - 5130 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Wise Turbo Checker.job - C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe
C:\Windows\tasks\WiseUninsDetecter.job - C:\Program Files\Wise\Wise Program Uninstaller\UnMonitor.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\cxt5a1rc.default

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-07 774440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SystemExplorerAutoStart"=C:\Program Files\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-07-07 213832]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-03-03 3281600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-03-08 40048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM tray]
C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2015-09-16 2089056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM Tray Agent]
C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\TrayTipAgentE.exe [2014-11-18 255072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE [2008-07-02 821768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\Windows\system32\NvCpl.dll [2008-08-07 13543968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\Windows\system32\NvMcTray.dll [2008-08-07 92704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetL]
C:\Windows\PLFSetL.exe [2008-07-03 94208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProductReg]
C:\Program Files\Acer\WR_PopUp\ProductReg.exe [2008-09-23 6144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2016-01-22 11692688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-11-18 1996072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2008-02-12 723496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^M^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^23556fb1360f366337f97c924e76ead3.exe]
C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\23556fb1360f366337f97c924e76ead3.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2017-07-08 19:57:40 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-07-08 19:57:38 ----D---- C:\Windows\LastGood
2017-07-08 19:56:57 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-07-08 19:56:55 ----D---- C:\Users\M\AppData\Roaming\DAEMON Tools Lite
2017-07-08 19:56:50 ----D---- C:\Program Files\DAEMON Tools Lite
2017-07-08 19:56:33 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-07-08 19:55:33 ----D---- C:\ProgramData\SWCUTemp
2017-07-08 16:34:16 ----D---- C:\rsit
2017-07-08 16:34:16 ----D---- C:\Program Files\trend micro
2017-07-08 15:12:43 ----HD---- C:\$AV_ASW
2017-07-08 15:12:39 ----A---- C:\ComboFix.txt
2017-07-08 15:12:11 ----SHD---- C:\$RECYCLE.BIN
2017-07-08 14:57:01 ----A---- C:\Windows\zip.exe
2017-07-08 14:57:01 ----A---- C:\Windows\SWSC.exe
2017-07-08 14:57:01 ----A---- C:\Windows\SWREG.exe
2017-07-08 14:57:01 ----A---- C:\Windows\sed.exe
2017-07-08 14:57:01 ----A---- C:\Windows\PEV.exe
2017-07-08 14:57:01 ----A---- C:\Windows\NIRCMD.exe
2017-07-08 14:57:01 ----A---- C:\Windows\MBR.exe
2017-07-08 14:57:01 ----A---- C:\Windows\grep.exe
2017-07-08 14:55:58 ----D---- C:\Qoobox
2017-07-08 14:55:36 ----D---- C:\Windows\erdnt
2017-07-08 00:36:33 ----D---- C:\ProgramData\Malwarebytes
2017-07-08 00:25:15 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\PresentationHost.exe
2017-07-08 00:25:15 ----A---- C:\Windows\system32\netfxperf.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\mscoree.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\dfshim.dll
2017-07-07 23:26:49 ----D---- C:\AdwCleaner
2017-07-07 23:10:14 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2017-07-07 23:05:55 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-07-07 22:54:24 ----D---- C:\ProgramData\NVIDIA Corporation
2017-07-07 22:54:01 ----D---- C:\Program Files\NVIDIA Corporation
2017-07-07 22:51:28 ----D---- C:\Program Files\LSI SoftModem
2017-07-07 22:41:52 ----D---- C:\Program Files\DIFX
2017-07-07 22:41:50 ----D---- C:\cpqsystem
2017-07-07 22:41:30 ----A---- C:\Windows\system32\drivers\snp2uvc.sys
2017-07-07 22:41:30 ----A---- C:\Windows\system32\drivers\sncduvc.sys
2017-07-07 22:41:30 ----A---- C:\Windows\PLFSetL.exe
2017-07-07 22:41:30 ----A---- C:\Windows\PidList.ini
2017-07-07 22:41:29 ----A---- C:\Windows\system32\LkmdfCoInst.dll
2017-07-07 22:41:28 ----A---- C:\Windows\system32\drivers\zumbus.sys
2017-07-07 22:41:28 ----A---- C:\Windows\system32\drivers\LEqdUsb.sys
2017-07-07 22:41:26 ----A---- C:\Windows\system32\drivers\circlass.sys
2017-07-07 22:41:25 ----A---- C:\Windows\system32\drivers\NETwNv32.sys
2017-07-07 22:41:25 ----A---- C:\Windows\system32\drivers\iscsiprt.sys
2017-07-07 22:41:23 ----A---- C:\Windows\system32\NETwNr32.dll
2017-07-07 22:41:23 ----A---- C:\Windows\system32\NETwNc32.dll
2017-07-07 22:41:20 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2017-07-07 22:41:18 ----A---- C:\Windows\system32\drivers\b57nd60x.sys
2017-07-07 22:41:17 ----A---- C:\Windows\system32\OpenCL.dll
2017-07-07 22:41:10 ----A---- C:\Windows\system32\nvgenco32.dll
2017-07-07 22:41:09 ----A---- C:\Windows\system32\nvdispco32.dll
2017-07-07 22:41:07 ----A---- C:\Windows\system32\nvcuvid.dll
2017-07-07 22:41:06 ----A---- C:\Windows\system32\nvcuvenc.dll
2017-07-07 22:41:06 ----A---- C:\Windows\system32\nvcuda.dll
2017-07-07 22:41:05 ----A---- C:\Windows\system32\nvcompiler.dll
2017-07-07 22:40:53 ----A---- C:\Windows\system32\drivers\AGRSM.sys
2017-07-07 22:40:53 ----A---- C:\Windows\agrsmdel.exe
2017-07-07 22:40:51 ----A---- C:\Windows\system32\WavesLib.dll
2017-07-07 22:40:51 ----A---- C:\Windows\system32\WavesGUILib.dll
2017-07-07 22:40:50 ----A---- C:\Windows\system32\tosade.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\TepeqAPO.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\tadefxapo2.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\tadefxapo.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSWOW.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSTSXT.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSTSHD.dll
2017-07-07 22:40:48 ----A---- C:\Windows\system32\SRSHP360.dll
2017-07-07 22:40:48 ----A---- C:\Windows\system32\SFSS_APO.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFNHK.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFCOM.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFAPO.dll
2017-07-07 22:40:46 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2017-07-07 22:40:45 ----A---- C:\Windows\system32\RtkPgExt.dll
2017-07-07 22:40:43 ----A---- C:\Windows\system32\RtkCoLDR.dll
2017-07-07 22:40:43 ----A---- C:\Windows\system32\RtkCoInstII.dll
2017-07-07 22:40:42 ----A---- C:\Windows\system32\RtkApoApi.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEP32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEL32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEG32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEED32A.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\RP3DHT32.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\RP3DAA32.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2017-07-07 22:40:33 ----A---- C:\Windows\system32\RCoRes.dat
2017-07-07 22:40:31 ----A---- C:\Windows\system32\R4EEP32A.dll
2017-07-07 22:40:30 ----A---- C:\Windows\system32\R4EEL32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EEG32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EED32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EEA32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2017-07-07 22:40:28 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2017-07-07 22:40:26 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\KAAPORT.dll
2017-07-07 22:40:24 ----A---- C:\Windows\system32\FMAPO.dll
2017-07-07 22:40:24 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2017-07-07 22:40:19 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-07-07 22:40:17 ----A---- C:\Windows\system32\AERTARen.dll
2017-07-07 22:40:17 ----A---- C:\Windows\system32\AERTACap.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\nvhdap32.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2017-07-07 22:40:04 ----A---- C:\Windows\system32\nvapo32v.dll
2017-07-07 22:40:03 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2017-07-07 22:39:56 ----A---- C:\Windows\system32\SynTPAPI.dll
2017-07-07 22:39:56 ----A---- C:\Windows\system32\drivers\SynTP.sys
2017-07-07 22:39:53 ----A---- C:\Windows\system32\SynGlwPadShlExt.dll
2017-07-07 22:39:51 ----A---- C:\Windows\system32\SynCtrl.dll
2017-07-07 22:39:51 ----A---- C:\Windows\system32\SynCOM.dll
2017-07-07 22:23:29 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-07-07 22:22:49 ----D---- C:\Users\M\AppData\Roaming\AVAST Software
2017-07-07 22:20:49 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-07-07 22:20:49 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswStmXP.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswSP.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbunivx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswblogx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbidshx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbidsdriverx.sys
2017-07-07 22:20:04 ----A---- C:\Windows\ucrtbase.dll
2017-07-07 22:20:04 ----A---- C:\Windows\system32\aswBoot.exe
2017-07-07 22:18:43 ----D---- C:\Program Files\AVAST Software
2017-07-07 22:17:37 ----D---- C:\ProgramData\AVAST Software
2017-07-07 22:13:27 ----A---- C:\Windows\system32\FNTCACHE.DAT
2017-07-07 22:10:24 ----A---- C:\Windows\system32\msshsq.dll
2017-07-07 22:10:15 ----D---- C:\Program Files\MSXML 4.0
2017-07-07 20:19:59 ----A---- C:\Windows\system32\winhttp.dll
2017-07-07 20:19:52 ----A---- C:\Windows\system32\srvsvc.dll
2017-07-07 20:19:52 ----A---- C:\Windows\system32\netevent.dll
2017-07-07 20:10:46 ----A---- C:\ProgramData\nvModes.dat
2017-07-07 01:31:36 ----D---- C:\ProgramData\BSD
2017-07-07 01:18:01 ----D---- C:\Windows\pss
2017-07-07 01:07:23 ----A---- C:\Windows\WiseHDInfo32.dll
2017-07-07 01:03:47 ----D---- C:\Users\M\AppData\Roaming\Wise Uninstaller
2017-07-07 01:02:17 ----D---- C:\Users\M\AppData\Roaming\Wise Care 365
2017-07-07 01:02:16 ----A---- C:\Windows\WiseRegNotify.sys
2017-07-07 01:01:57 ----D---- C:\Program Files\Wise
2017-07-07 00:55:17 ----D---- C:\Users\M\AppData\Roaming\uTorrent
2017-07-07 00:47:39 ----D---- C:\ProgramData\SystemExplorer
2017-07-07 00:47:38 ----D---- C:\Program Files\System Explorer
2017-07-07 00:09:53 ----D---- C:\Program Files\Common Files\DESIGNER
2017-07-07 00:09:26 ----D---- C:\Windows\PCHEALTH
2017-07-07 00:09:26 ----D---- C:\Program Files\Microsoft.NET
2017-07-07 00:09:26 ----D---- C:\Program Files\Microsoft Sync Framework
2017-07-07 00:05:16 ----D---- C:\Program Files\Microsoft Visual Studio 8
2017-07-07 00:04:06 ----D---- C:\Program Files\Microsoft Analysis Services
2017-07-06 21:45:50 ----D---- C:\Users\M\AppData\Roaming\Mozilla
2017-07-06 21:45:09 ----D---- C:\ProgramData\Mozilla
2017-07-06 21:45:09 ----D---- C:\Program Files\Mozilla Maintenance Service
2017-07-06 21:45:06 ----D---- C:\Program Files\Mozilla Firefox
2017-07-06 21:33:35 ----A---- C:\Windows\system32\EuEpmGdi.dll
2017-07-06 21:33:35 ----A---- C:\Windows\system32\BootMan.exe
2017-07-06 21:33:34 ----A---- C:\Windows\system32\setupempdrv03.exe
2017-07-06 21:33:34 ----A---- C:\Windows\system32\EuGdiDrv.sys
2017-07-06 21:33:34 ----A---- C:\Windows\system32\epmntdrv.sys
2017-07-06 21:33:26 ----D---- C:\Program Files\EaseUS
2017-07-06 19:26:06 ----D---- C:\Program Files\PowerArchiver
2017-07-06 19:05:03 ----D---- C:\Windows\system32\WindowsPowerShell
2017-07-06 18:25:37 ----D---- C:\Windows\system32\MRT
2017-07-06 18:18:05 ----A---- C:\Windows\system32\msshooks.dll
2017-07-06 18:18:05 ----A---- C:\Windows\system32\msscb.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\thawbrkr.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\srchadmin.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-07-06 18:18:02 ----A---- C:\Windows\system32\propsys.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\propdefs.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\msstrc.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\mssprxy.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\mssitlb.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\korwbrkr.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\xmlfilter.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\wsepno.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\tquery.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-07-06 18:18:01 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-07-06 18:18:01 ----A---- C:\Windows\system32\rtffilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\offfilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\nlhtml.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssvp.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssrch.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssphtb.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssph.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\msscntrs.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mimefilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\chtbrkr.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\chsbrkr.dll
2017-07-06 18:15:34 ----A---- C:\Windows\system32\psisdecd.dll
2017-07-06 18:05:10 ----A---- C:\Windows\system32\nshhttp.dll
2017-07-06 18:05:06 ----A---- C:\Windows\system32\httpapi.dll
2017-07-06 18:05:06 ----A---- C:\Windows\system32\drivers\http.sys
2017-07-06 18:02:36 ----A---- C:\Windows\system32\winrsmgr.dll
2017-07-06 18:02:24 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-07-06 18:02:24 ----A---- C:\Windows\system32\winrshost.exe
2017-07-06 18:02:24 ----A---- C:\Windows\system32\winrs.exe
2017-07-06 18:02:23 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-07-06 18:02:23 ----A---- C:\Windows\system32\winrssrv.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\WsmRes.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wevtfwd.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecutil.exe
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecsvc.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecapi.dll
2017-07-06 18:02:20 ----A---- C:\Windows\system32\pwrshplugin.dll
2017-07-06 18:02:16 ----A---- C:\Windows\system32\winrm.vbs
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmSvc.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmAuto.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-07-06 18:02:14 ----A---- C:\Windows\system32\winrscmd.dll
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntkrnlpa.exe
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntdll.dll
2017-07-06 17:59:15 ----A---- C:\Windows\system32\Apphlpdm.dll
2017-07-06 17:59:12 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2017-07-06 17:59:05 ----A---- C:\Windows\system32\rpcss.dll
2017-07-06 17:59:02 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2017-07-06 17:59:01 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\sdohlp.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasrecst.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iashost.exe
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasdatastore.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasads.dll
2017-07-06 17:58:53 ----A---- C:\Windows\system32\mfc40u.dll
2017-07-06 17:58:53 ----A---- C:\Windows\system32\mfc40.dll
2017-07-06 17:58:43 ----A---- C:\Windows\system32\netiohlp.dll
2017-07-06 17:58:40 ----A---- C:\Windows\system32\TCPSVCS.EXE
2017-07-06 17:58:40 ----A---- C:\Windows\system32\NETSTAT.EXE
2017-07-06 17:58:40 ----A---- C:\Windows\system32\ARP.EXE
2017-07-06 17:58:39 ----A---- C:\Windows\system32\finger.exe
2017-07-06 17:58:38 ----A---- C:\Windows\system32\MRINFO.EXE
2017-07-06 17:58:38 ----A---- C:\Windows\system32\HOSTNAME.EXE
2017-07-06 17:58:37 ----A---- C:\Windows\system32\ROUTE.EXE
2017-07-06 17:57:40 ----A---- C:\Windows\system32\WMVCORE.DLL
2017-07-06 17:57:40 ----A---- C:\Windows\system32\mf.dll
2017-07-06 17:57:32 ----A---- C:\Windows\system32\wdigest.dll
2017-07-06 17:57:32 ----A---- C:\Windows\system32\kerberos.dll
2017-07-06 17:57:30 ----A---- C:\Windows\system32\lsasrv.dll
2017-07-06 17:57:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-07-06 17:57:27 ----A---- C:\Windows\system32\secur32.dll
2017-07-06 17:57:27 ----A---- C:\Windows\system32\lsass.exe
2017-07-06 17:57:18 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-07-06 17:57:18 ----A---- C:\Windows\system32\drivers\tunnel.sys
2017-07-06 17:57:14 ----A---- C:\Windows\system32\odbc32.dll
2017-07-06 17:57:03 ----A---- C:\Windows\system32\shlwapi.dll
2017-07-06 17:57:03 ----A---- C:\Windows\system32\shell32.dll
2017-07-06 17:56:59 ----A---- C:\Windows\system32\msxml6.dll
2017-07-06 17:56:51 ----A---- C:\Windows\system32\wmp.dll
2017-07-06 17:56:45 ----A---- C:\Windows\system32\wmploc.DLL
2017-07-06 17:56:18 ----A---- C:\Windows\system32\wlansec.dll
2017-07-06 17:56:18 ----A---- C:\Windows\system32\wlanmsm.dll
2017-07-06 17:56:18 ----A---- C:\Windows\system32\L2SecHC.dll
2017-07-06 17:56:16 ----A---- C:\Windows\system32\wlansvc.dll
2017-07-06 17:56:07 ----A---- C:\Windows\system32\apilogen.dll
2017-07-06 17:56:07 ----A---- C:\Windows\system32\amxread.dll
2017-07-06 17:56:04 ----A---- C:\Windows\system32\taskschd.dll
2017-07-06 17:56:04 ----A---- C:\Windows\system32\schedsvc.dll
2017-07-06 17:56:03 ----A---- C:\Windows\system32\wmicmiplugin.dll
2017-07-06 17:56:01 ----A---- C:\Windows\system32\taskeng.exe
2017-07-06 17:56:01 ----A---- C:\Windows\system32\taskcomp.dll
2017-07-06 17:55:42 ----A---- C:\Windows\system32\shsvcs.dll
2017-07-06 17:55:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-07-06 17:55:24 ----A---- C:\Windows\system32\oleaut32.dll
2017-07-06 17:55:22 ----A---- C:\Windows\system32\vbscript.dll
2017-07-06 17:55:22 ----A---- C:\Windows\system32\jscript.dll
2017-07-06 17:55:20 ----A---- C:\Windows\system32\localspl.dll
2017-07-06 17:55:16 ----A---- C:\Windows\system32\xolehlp.dll
2017-07-06 17:55:16 ----A---- C:\Windows\system32\msdtcprx.dll
2017-07-06 17:55:14 ----A---- C:\Windows\system32\mfc42u.dll
2017-07-06 17:55:14 ----A---- C:\Windows\system32\mfc42.dll
2017-07-06 17:55:11 ----A---- C:\Windows\system32\atmfd.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\fontsub.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\dciman32.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\atmlib.dll
2017-07-06 17:55:06 ----A---- C:\Windows\system32\win32k.sys
2017-07-06 17:55:04 ----A---- C:\Windows\system32\ole32.dll
2017-07-06 17:54:57 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-07-06 17:54:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-07-06 17:54:56 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-07-06 17:54:52 ----A---- C:\Windows\system32\drivers\srv.sys
2017-07-06 17:54:49 ----A---- C:\Windows\system32\win32spl.dll
2017-07-06 17:54:48 ----A---- C:\Windows\system32\netapi32.dll
2017-07-06 17:54:44 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-07-06 17:54:41 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2017-07-06 17:54:36 ----A---- C:\Windows\system32\consent.exe
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnsrslvr.dll
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnscacheugc.exe
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnsapi.dll
2017-07-06 17:54:30 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-07-06 17:54:29 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-07-06 17:54:27 ----A---- C:\Windows\system32\sdclt.exe
2017-07-06 17:54:25 ----A---- C:\Windows\system32\wkssvc.dll
2017-07-06 17:54:19 ----A---- C:\Windows\system32\usp10.dll
2017-07-06 17:54:16 ----A---- C:\Windows\system32\atl.dll
2017-07-06 17:54:11 ----A---- C:\Windows\system32\spoolsv.exe
2017-07-06 17:54:09 ----A---- C:\Windows\system32\rtutils.dll
2017-07-06 17:54:07 ----A---- C:\Windows\system32\wmpeffects.dll
2017-07-06 17:54:06 ----A---- C:\Windows\system32\iccvid.dll
2017-07-06 17:54:04 ----A---- C:\Windows\system32\gdi32.dll
2017-07-06 17:54:02 ----A---- C:\Windows\system32\drivers\afd.sys
2017-07-06 17:53:59 ----A---- C:\Windows\system32\EncDec.dll
2017-07-06 17:53:58 ----A---- C:\Windows\system32\sbe.dll
2017-07-06 17:53:57 ----A---- C:\Windows\system32\sbeio.dll
2017-07-06 17:53:56 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-07-06 17:53:53 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-07-06 17:53:53 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-07-06 17:53:53 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2017-07-06 17:53:51 ----A---- C:\Windows\system32\t2embed.dll
2017-07-06 17:53:49 ----A---- C:\Windows\explorer.exe
2017-07-06 17:53:48 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-07-06 17:53:46 ----A---- C:\Windows\system32\asycfilt.dll
2017-07-06 17:53:40 ----A---- C:\Windows\system32\tzres.dll
2017-07-06 17:53:07 ----A---- C:\Windows\system32\wmpmde.dll
2017-07-06 17:53:05 ----A---- C:\Windows\system32\rpcrt4.dll
2017-07-06 17:53:02 ----A---- C:\Windows\system32\inetcomm.dll
2017-07-06 17:53:00 ----A---- C:\Windows\system32\emdmgmt.dll
2017-07-06 17:52:59 ----A---- C:\Windows\system32\drivers\nwifi.sys
2017-07-06 17:52:59 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-07-06 17:52:59 ----A---- C:\Windows\system32\dataclen.dll
2017-07-06 17:52:59 ----A---- C:\Windows\system32\cdd.dll
2017-07-06 17:52:57 ----A---- C:\Windows\system32\quartz.dll
2017-07-06 17:52:52 ----A---- C:\Windows\system32\WMNetMgr.dll
2017-07-06 17:52:52 ----A---- C:\Windows\system32\logagent.exe
2017-07-06 17:52:48 ----A---- C:\Windows\system32\msasn1.dll
2017-07-06 17:52:44 ----A---- C:\Windows\system32\msxml3.dll
2017-07-06 17:52:42 ----A---- C:\Windows\system32\wersvc.dll
2017-07-06 17:52:42 ----A---- C:\Windows\system32\Faultrep.dll
2017-07-06 17:52:36 ----A---- C:\Windows\system32\wmpdxm.dll
2017-07-06 17:52:21 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-07-06 17:52:21 ----A---- C:\Windows\system32\RMActivate.exe
2017-07-06 17:52:19 ----A---- C:\Windows\system32\secproc.dll
2017-07-06 17:52:19 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-07-06 17:52:19 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-07-06 17:52:18 ----A---- C:\Windows\system32\secproc_isv.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\msdrm.dll
2017-07-06 17:52:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-07-06 17:52:10 ----A---- C:\Windows\system32\connect.dll
2017-07-06 17:52:08 ----A---- C:\Windows\system32\winsrv.dll
2017-07-06 17:52:08 ----A---- C:\Windows\system32\csrsrv.dll
2017-07-06 17:52:04 ----A---- C:\Windows\system32\mstscax.dll
2017-07-06 17:52:04 ----A---- C:\Windows\system32\mstsc.exe
2017-07-06 17:52:02 ----A---- C:\Windows\system32\kernel32.dll
2017-07-06 17:51:57 ----A---- C:\Windows\system32\msvidc32.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\msyuv.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\msrle32.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\iyuv_32.dll
2017-07-06 17:51:54 ----A---- C:\Windows\system32\tsbyuv.dll
2017-07-06 17:51:54 ----A---- C:\Windows\system32\avifil32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\msvfw32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\mciavi32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\avicap32.dll
2017-07-06 17:49:52 ----A---- C:\Windows\system32\comctl32.dll
2017-07-06 17:49:26 ----A---- C:\Windows\system32\rastls.dll
2017-07-06 17:49:26 ----A---- C:\Windows\system32\raschap.dll
2017-07-06 17:47:07 ----A---- C:\Windows\system32\WSDApi.dll
2017-07-06 17:40:09 ----A---- C:\Windows\system32\unregmp2.exe
2017-07-06 17:40:05 ----A---- C:\Windows\system32\spwmp.dll
2017-07-06 17:40:03 ----A---- C:\Windows\system32\dxmasf.dll
2017-07-06 17:38:14 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-07-06 17:38:12 ----A---- C:\Windows\system32\schannel.dll
2017-07-06 16:46:58 ----A---- C:\Windows\system32\drivers\netio.sys
2017-07-06 16:38:26 ----D---- C:\55e898352a4602b80055f7659591
2017-07-06 16:37:24 ----D---- C:\ProgramData\NVIDIA
2017-07-06 16:27:19 ----D---- C:\0237310b14e1cd16a77c6a
2017-07-06 16:18:38 ----A---- C:\Windows\system32\kbd106n.dll
2017-07-06 16:18:30 ----A---- C:\Windows\system32\kd1394.dll
2017-07-06 16:18:27 ----A---- C:\Windows\system32\srdelayed.exe
2017-07-06 16:18:26 ----A---- C:\Windows\system32\srclient.dll
2017-07-06 16:18:24 ----A---- C:\Windows\system32\ci.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\winresume.exe
2017-07-06 16:18:23 ----A---- C:\Windows\system32\winload.exe
2017-07-06 16:18:23 ----A---- C:\Windows\system32\srcore.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\rstrui.exe
2017-07-06 16:05:20 ----A---- C:\Windows\system32\untfs.dll
2017-07-06 16:05:20 ----A---- C:\Windows\system32\autochk.exe
2017-07-06 15:56:47 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-07-06 15:56:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-07-06 15:55:22 ----D---- C:\Users\M\AppData\Roaming\Macromedia
2017-07-06 15:53:52 ----A---- C:\Windows\system32\msxml4r.dll
2017-07-06 15:53:52 ----A---- C:\Windows\system32\msxml4a.dll
2017-07-06 15:51:50 ----D---- C:\ProgramData\CyberLink
2017-07-06 15:47:05 ----A---- C:\Windows\system32\drivers\atswpdrv.sys
2017-07-06 15:47:03 ----D---- C:\Program Files\Fingerprint Sensor
2017-07-06 15:47:01 ----D---- C:\Windows\Downloaded Installations
2017-07-06 15:40:25 ----A---- C:\Windows\system32\BtwRSupport.dll
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-MX
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-AR
2017-07-06 15:40:17 ----D---- C:\Program Files\WIDCOMM
2017-07-06 15:35:55 ----D---- C:\Program Files\Launch Manager
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvexpbar.dll
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvcpluir.dll
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvcplui.exe
2017-07-06 15:32:21 ----A---- C:\Windows\system32\NVUNINST.EXE
2017-07-06 15:29:22 ----A---- C:\Windows\system32\difxapi.dll
2017-07-06 15:29:14 ----A---- C:\Windows\system32\drivers\iaStor.sys
2017-07-06 15:29:01 ----D---- C:\Users\M\AppData\Roaming\InstallShield
2017-07-06 15:25:45 ----A---- C:\Windows\system32\jsproxy.dll
2017-07-06 15:25:43 ----A---- C:\Windows\system32\mstime.dll
2017-07-06 15:25:43 ----A---- C:\Windows\system32\mshtml.dll
2017-07-06 15:25:42 ----A---- C:\Windows\system32\urlmon.dll
2017-07-06 15:25:41 ----A---- C:\Windows\system32\wininet.dll
2017-07-06 15:25:39 ----A---- C:\Windows\system32\ieframe.dll
2017-07-06 15:19:15 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-07-06 15:08:06 ----D---- C:\224816ad40cc2da57a9353
2017-07-06 15:05:23 ----A---- C:\Windows\system32\wintrust.dll
2017-07-06 15:05:21 ----A---- C:\Windows\system32\cabview.dll
2017-07-06 14:58:34 ----D---- C:\Users\M\AppData\Roaming\Adobe
2017-07-06 14:58:17 ----D---- C:\Users\M\AppData\Roaming\Google
2017-07-06 14:57:30 ----A---- C:\Windows\system32\es.dll
2017-07-06 14:47:40 ----D---- C:\16cd0dc0ac1e581741473c89125b80
2017-07-06 14:43:39 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2017-07-06 14:43:12 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2017-07-06 14:43:07 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2017-07-06 14:41:53 ----A---- C:\Windows\system32\pacerprf.dll
2017-07-06 14:41:53 ----A---- C:\Windows\system32\drivers\pacer.sys
2017-07-06 14:40:48 ----A---- C:\Windows\system32\scrobj.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\wshext.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\scrrun.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\cscript.exe
2017-07-06 14:40:46 ----A---- C:\Windows\system32\wscript.exe
2017-07-06 14:37:37 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-07-06 14:36:44 ----A---- C:\Windows\system32\RacEngn.dll
2017-07-06 14:30:22 ----A---- C:\Windows\system32\gameux.dll
2017-07-06 14:28:59 ----D---- C:\Users\M\AppData\Roaming\Identities
2017-07-06 14:26:47 ----D---- C:\ProgramData\Google
2017-07-06 14:26:43 ----D---- C:\Program Files\Google
2017-07-06 14:26:21 ----SD---- C:\Users\M\AppData\Roaming\Microsoft
2017-07-06 14:26:21 ----D---- C:\Users\M\AppData\Roaming\Media Center Programs
2017-07-06 14:26:21 ----D---- C:\Users\M\AppData\Roaming\Acer GameZone Console
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Šablony
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Plocha
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Oblíbené položky
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Nabídka Start
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Dokumenty
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Data aplikací
2017-07-06 14:20:29 ----ASH---- C:\hiberfil.sys
2017-07-06 14:15:23 ----D---- C:\Windows\SoftwareDistribution
2017-07-06 14:12:26 ----ASH---- C:\pagefile.sys
2017-07-06 14:12:26 ----A---- C:\Windows\DUMPbfe4.tmp

======List of files/folders modified in the last 1 month======

2017-07-08 21:03:40 ----D---- C:\Windows\Temp
2017-07-08 20:07:57 ----SHD---- C:\System Volume Information
2017-07-08 20:04:34 ----D---- C:\Windows\System32
2017-07-08 20:04:34 ----D---- C:\Windows\inf
2017-07-08 20:04:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-07-08 19:59:10 ----D---- C:\Windows\system32\drivers
2017-07-08 19:59:09 ----D---- C:\Windows\system32\catroot
2017-07-08 19:57:38 ----D---- C:\Windows
2017-07-08 19:56:50 ----D---- C:\Program Files
2017-07-08 19:56:33 ----D---- C:\ProgramData
2017-07-08 15:41:13 ----D---- C:\Windows\system32\NDF
2017-07-08 15:09:25 ----A---- C:\Windows\system.ini
2017-07-08 15:09:19 ----D---- C:\Windows\system32\drivers\etc
2017-07-08 15:07:43 ----D---- C:\Windows\system32\config
2017-07-08 15:02:36 ----D---- C:\Windows\AppPatch
2017-07-08 15:02:34 ----D---- C:\Program Files\Common Files
2017-07-08 14:47:16 ----D---- C:\Windows\system
2017-07-08 05:37:54 ----D---- C:\Windows\Prefetch
2017-07-08 02:43:15 ----D---- C:\Windows\Logs
2017-07-08 01:12:47 ----D---- C:\Windows\Microsoft.NET
2017-07-08 01:12:46 ----RSD---- C:\Windows\assembly
2017-07-08 00:30:37 ----SHD---- C:\Windows\Installer
2017-07-08 00:30:12 ----D---- C:\Windows\system32\cs-CZ
2017-07-08 00:27:01 ----D---- C:\Windows\system32\en-US
2017-07-08 00:25:23 ----D---- C:\Windows\winsxs
2017-07-08 00:14:24 ----D---- C:\Windows\rescache
2017-07-08 00:04:49 ----D---- C:\ProgramData\Microsoft Help
2017-07-08 00:02:13 ----D---- C:\Windows\system32\catroot2
2017-07-07 23:43:39 ----D---- C:\Windows\system32\Tasks
2017-07-07 23:34:56 ----D---- C:\Windows\system32\wbem
2017-07-07 23:34:56 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-07-07 22:47:40 ----D---- C:\Windows\system32\RTCOM
2017-07-07 22:37:45 ----A---- C:\Windows\win.ini
2017-07-07 22:13:50 ----D---- C:\Windows\Debug
2017-07-07 22:13:02 ----HD---- C:\Program Files\InstallShield Installation Information
2017-07-07 22:13:02 ----D---- C:\Program Files\Acer
2017-07-07 22:07:26 ----D---- C:\ACER
2017-07-07 21:54:25 ----D---- C:\Program Files\Cyberlink
2017-07-07 21:50:21 ----D---- C:\Program Files\NewTech Infosystems
2017-07-07 21:45:57 ----D---- C:\Windows\Driver Cache
2017-07-07 21:45:43 ----D---- C:\Windows\Tasks
2017-07-07 21:15:00 ----D---- C:\Program Files\Acer GameZone
2017-07-07 21:06:17 ----D---- C:\Program Files\eSobi
2017-07-07 20:25:26 ----SD---- C:\Windows\Downloaded Program Files
2017-07-07 20:25:19 ----D---- C:\Windows\Panther
2017-07-07 20:09:55 ----D---- C:\ProgramData\McAfee
2017-07-07 01:29:46 ----D---- C:\Program Files\Microsoft Office
2017-07-07 01:23:03 ----RSD---- C:\Windows\Fonts
2017-07-07 01:11:13 ----D---- C:\ProgramData\SiteAdvisor
2017-07-07 00:18:39 ----D---- C:\Program Files\Common Files\microsoft shared
2017-07-07 00:18:17 ----D---- C:\Windows\ShellNew
2017-07-07 00:17:45 ----D---- C:\Program Files\Common Files\System
2017-07-07 00:10:46 ----D---- C:\Program Files\MSBuild
2017-07-07 00:09:26 ----SD---- C:\ProgramData\Microsoft
2017-07-06 23:54:56 ----D---- C:\Windows\system32\WDI
2017-07-06 19:32:33 ----D---- C:\Program Files\Common Files\InstallShield
2017-07-06 19:06:08 ----D---- C:\Program Files\Windows Media Player
2017-07-06 19:06:08 ----D---- C:\Program Files\Windows Mail
2017-07-06 19:05:56 ----D---- C:\Program Files\Movie Maker
2017-07-06 19:05:53 ----D---- C:\Windows\PolicyDefinitions
2017-07-06 19:05:49 ----D---- C:\Windows\ehome
2017-07-06 19:05:41 ----D---- C:\Windows\system32\manifeststore
2017-07-06 18:25:27 ----AC---- C:\Windows\system32\mrt.exe
2017-07-06 16:51:22 ----D---- C:\Windows\system32\OEM
2017-07-06 16:34:02 ----D---- C:\Windows\system32\Boot
2017-07-06 16:34:00 ----D---- C:\Windows\system32\migration
2017-07-06 15:40:26 ----SD---- C:\Windows\system32\Microsoft
2017-07-06 15:40:20 ----D---- C:\Windows\system32\zh-TW
2017-07-06 15:40:19 ----D---- C:\Windows\system32\zh-CN
2017-07-06 15:40:19 ----D---- C:\Windows\system32\sv-SE
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ru-RU
2017-07-06 15:40:19 ----D---- C:\Windows\system32\pt-BR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\pl-PL
2017-07-06 15:40:19 ----D---- C:\Windows\system32\nl-NL
2017-07-06 15:40:19 ----D---- C:\Windows\system32\nb-NO
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ko-KR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ja-JP
2017-07-06 15:40:19 ----D---- C:\Windows\system32\it-IT
2017-07-06 15:40:19 ----D---- C:\Windows\system32\fr-FR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\fi-FI
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-ES
2017-07-06 15:40:19 ----D---- C:\Windows\system32\de-DE
2017-07-06 15:40:19 ----D---- C:\Windows\system32\da-DK
2017-07-06 15:34:36 ----D---- C:\Windows\Help
2017-07-06 15:29:22 ----D---- C:\Program Files\Intel
2017-07-06 15:01:32 ----D---- C:\Windows\system32\LogFiles
2017-07-06 14:29:44 ----D---- C:\Windows\system32\restore
2017-07-06 14:26:21 ----RD---- C:\Users
2017-07-06 14:24:22 ----D---- C:\Program Files\Windows NT
2017-07-06 14:18:09 ----D---- C:\Windows\system32\oobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [2017-07-07 157384]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswblogx.sys [2017-07-07 276704]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [2017-07-07 50352]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-07-07 70840]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-07-07 296312]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-07-20 324120]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [2017-07-07 266976]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-07-07 39752]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2017-07-07 70088]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-07-07 774288]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-07-07 496976]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-07-07 123896]
R2 zumbus;Zune Bus Enumerator Driver; C:\Windows\system32\DRIVERS\zumbus.sys [2016-03-13 41472]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-12-03 1175456]
R3 aswStmXP;aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [2017-07-07 202688]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2008-04-25 146688]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2017-05-04 413704]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2008-07-02 21264]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-07-08 26168]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-07-08 40504]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2016-01-22 3346000]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-04-21 81296]
R3 NETwNv32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETwNv32.sys [2011-10-31 7346176]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2016-12-07 171312]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-08-07 7545824]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-07-28 39280]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-04-20 1759744]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-11-18 1319216]
R3 winbondcir;Winbond IR Transceiver; C:\Windows\system32\DRIVERS\winbondcir.sys [2007-03-28 43008]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-07-07 42824]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 epmntdrv;epmntdrv; \??\C:\Windows\system32\epmntdrv.sys [2014-11-18 15968]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\system32\EuGdiDrv.sys [2014-11-18 10208]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\System32\Drivers\LEqdUsb.Sys [2015-06-18 52368]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WiseHDInfo;WiseHDInfo; \??\C:\Windows\WiseHDInfo32.dll [2017-07-07 13264]
S3 WiseRegNotify;WiseRegNotify; \??\C:\Windows\WiseRegNotify.sys [2017-07-07 23984]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-07-07 263312]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-08-07 196608]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2017-07-07 5815840]
R3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
S3 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-02-12 440872]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2016-03-03 1082560]
S3 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-06 153168]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-06 153168]
S3 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-07-20 354840]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-09-11 118680]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2014-12-20 567008]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118715
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zasekávají se prohlížeče

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

párek
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 08 črc 2017 14:51

Re: Zasekávají se prohlížeče

#3 Příspěvek od párek »

# AdwCleaner v6.047 - Logfile created 08/07/2017 at 22:21:49
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-05-19.1 [Local]
# Operating System : Windows Vista (TM) Home Premium Service Pack 1 (X86)
# Username : M - M-PC
# Running from : C:\Users\M\Desktop\adwcleaner_6.047.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****



***** [ Folders ] *****



***** [ Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\WISECLEANER


***** [ Web browsers ] *****



*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [4325 Bytes] - [07/07/2017 23:43:46]
C:\AdwCleaner\AdwCleaner[C2].txt - [1368 Bytes] - [08/07/2017 15:25:44]
C:\AdwCleaner\AdwCleaner[C3].txt - [957 Bytes] - [08/07/2017 22:21:49]
C:\AdwCleaner\AdwCleaner[S0].txt - [3809 Bytes] - [07/07/2017 23:29:27]
C:\AdwCleaner\AdwCleaner[S1].txt - [4162 Bytes] - [07/07/2017 23:41:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [1659 Bytes] - [08/07/2017 15:24:02]
C:\AdwCleaner\AdwCleaner[S3].txt - [1525 Bytes] - [08/07/2017 22:21:35]

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [1321 Bytes] ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118715
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zasekávají se prohlížeče

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

párek
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 08 črc 2017 14:51

Re: Zasekávají se prohlížeče

#5 Příspěvek od párek »

Logfile of random's system information tool 1.10 (written by random/random)
Run by M at 2017-07-08 22:34:48
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 224 GB (76%) free of 295 GB
Total RAM: 3066 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:35:12, on 8.7.2017
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Wise\Wise Program Uninstaller\UnMonitor.exe
C:\Program Files\System Explorer\SystemExplorer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\M\Desktop\RSIT (1).exe
C:\Program Files\trend micro\M.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: (no name) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe

--
End of file - 5523 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Wise Turbo Checker.job - C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe
C:\Windows\tasks\WiseUninsDetecter.job - C:\Program Files\Wise\Wise Program Uninstaller\UnMonitor.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\cxt5a1rc.default

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-07 774440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SystemExplorerAutoStart"=C:\Program Files\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-07-07 213832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-03-08 40048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-03-03 3281600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM tray]
C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2015-09-16 2089056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM Tray Agent]
C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\TrayTipAgentE.exe [2014-11-18 255072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE [2008-07-02 821768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\Windows\system32\NvCpl.dll [2008-08-07 13543968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\Windows\system32\NvMcTray.dll [2008-08-07 92704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetL]
C:\Windows\PLFSetL.exe [2008-07-03 94208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProductReg]
C:\Program Files\Acer\WR_PopUp\ProductReg.exe [2008-09-23 6144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2016-01-22 11692688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-11-18 1996072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2008-02-12 723496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^M^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^23556fb1360f366337f97c924e76ead3.exe]
C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\23556fb1360f366337f97c924e76ead3.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2017-07-08 19:57:40 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-07-08 19:56:57 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-07-08 19:56:55 ----D---- C:\Users\M\AppData\Roaming\DAEMON Tools Lite
2017-07-08 19:56:50 ----D---- C:\Program Files\DAEMON Tools Lite
2017-07-08 19:56:33 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-07-08 16:34:16 ----D---- C:\rsit
2017-07-08 16:34:16 ----D---- C:\Program Files\trend micro
2017-07-08 15:12:43 ----HD---- C:\$AV_ASW
2017-07-08 15:12:39 ----A---- C:\ComboFix.txt
2017-07-08 15:12:11 ----SHD---- C:\$RECYCLE.BIN
2017-07-08 14:57:01 ----A---- C:\Windows\zip.exe
2017-07-08 14:57:01 ----A---- C:\Windows\SWSC.exe
2017-07-08 14:57:01 ----A---- C:\Windows\SWREG.exe
2017-07-08 14:57:01 ----A---- C:\Windows\sed.exe
2017-07-08 14:57:01 ----A---- C:\Windows\PEV.exe
2017-07-08 14:57:01 ----A---- C:\Windows\NIRCMD.exe
2017-07-08 14:57:01 ----A---- C:\Windows\MBR.exe
2017-07-08 14:57:01 ----A---- C:\Windows\grep.exe
2017-07-08 14:55:58 ----D---- C:\Qoobox
2017-07-08 14:55:36 ----D---- C:\Windows\erdnt
2017-07-08 00:36:33 ----D---- C:\ProgramData\Malwarebytes
2017-07-08 00:25:15 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\PresentationHost.exe
2017-07-08 00:25:15 ----A---- C:\Windows\system32\netfxperf.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\mscoree.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\dfshim.dll
2017-07-07 23:26:49 ----D---- C:\AdwCleaner
2017-07-07 23:10:14 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2017-07-07 23:05:55 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-07-07 22:54:24 ----D---- C:\ProgramData\NVIDIA Corporation
2017-07-07 22:54:01 ----D---- C:\Program Files\NVIDIA Corporation
2017-07-07 22:51:28 ----D---- C:\Program Files\LSI SoftModem
2017-07-07 22:41:52 ----D---- C:\Program Files\DIFX
2017-07-07 22:41:50 ----D---- C:\cpqsystem
2017-07-07 22:41:30 ----A---- C:\Windows\system32\drivers\snp2uvc.sys
2017-07-07 22:41:30 ----A---- C:\Windows\system32\drivers\sncduvc.sys
2017-07-07 22:41:30 ----A---- C:\Windows\PLFSetL.exe
2017-07-07 22:41:30 ----A---- C:\Windows\PidList.ini
2017-07-07 22:41:29 ----A---- C:\Windows\system32\LkmdfCoInst.dll
2017-07-07 22:41:28 ----A---- C:\Windows\system32\drivers\zumbus.sys
2017-07-07 22:41:28 ----A---- C:\Windows\system32\drivers\LEqdUsb.sys
2017-07-07 22:41:26 ----A---- C:\Windows\system32\drivers\circlass.sys
2017-07-07 22:41:25 ----A---- C:\Windows\system32\drivers\NETwNv32.sys
2017-07-07 22:41:25 ----A---- C:\Windows\system32\drivers\iscsiprt.sys
2017-07-07 22:41:23 ----A---- C:\Windows\system32\NETwNr32.dll
2017-07-07 22:41:23 ----A---- C:\Windows\system32\NETwNc32.dll
2017-07-07 22:41:20 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2017-07-07 22:41:18 ----A---- C:\Windows\system32\drivers\b57nd60x.sys
2017-07-07 22:41:17 ----A---- C:\Windows\system32\OpenCL.dll
2017-07-07 22:41:10 ----A---- C:\Windows\system32\nvgenco32.dll
2017-07-07 22:41:09 ----A---- C:\Windows\system32\nvdispco32.dll
2017-07-07 22:41:07 ----A---- C:\Windows\system32\nvcuvid.dll
2017-07-07 22:41:06 ----A---- C:\Windows\system32\nvcuvenc.dll
2017-07-07 22:41:06 ----A---- C:\Windows\system32\nvcuda.dll
2017-07-07 22:41:05 ----A---- C:\Windows\system32\nvcompiler.dll
2017-07-07 22:40:53 ----A---- C:\Windows\system32\drivers\AGRSM.sys
2017-07-07 22:40:53 ----A---- C:\Windows\agrsmdel.exe
2017-07-07 22:40:51 ----A---- C:\Windows\system32\WavesLib.dll
2017-07-07 22:40:51 ----A---- C:\Windows\system32\WavesGUILib.dll
2017-07-07 22:40:50 ----A---- C:\Windows\system32\tosade.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\TepeqAPO.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\tadefxapo2.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\tadefxapo.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSWOW.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSTSXT.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSTSHD.dll
2017-07-07 22:40:48 ----A---- C:\Windows\system32\SRSHP360.dll
2017-07-07 22:40:48 ----A---- C:\Windows\system32\SFSS_APO.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFNHK.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFCOM.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFAPO.dll
2017-07-07 22:40:46 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2017-07-07 22:40:45 ----A---- C:\Windows\system32\RtkPgExt.dll
2017-07-07 22:40:43 ----A---- C:\Windows\system32\RtkCoLDR.dll
2017-07-07 22:40:43 ----A---- C:\Windows\system32\RtkCoInstII.dll
2017-07-07 22:40:42 ----A---- C:\Windows\system32\RtkApoApi.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEP32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEL32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEG32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEED32A.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\RP3DHT32.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\RP3DAA32.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2017-07-07 22:40:33 ----A---- C:\Windows\system32\RCoRes.dat
2017-07-07 22:40:31 ----A---- C:\Windows\system32\R4EEP32A.dll
2017-07-07 22:40:30 ----A---- C:\Windows\system32\R4EEL32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EEG32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EED32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EEA32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2017-07-07 22:40:28 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2017-07-07 22:40:26 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\KAAPORT.dll
2017-07-07 22:40:24 ----A---- C:\Windows\system32\FMAPO.dll
2017-07-07 22:40:24 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2017-07-07 22:40:19 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-07-07 22:40:17 ----A---- C:\Windows\system32\AERTARen.dll
2017-07-07 22:40:17 ----A---- C:\Windows\system32\AERTACap.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\nvhdap32.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2017-07-07 22:40:04 ----A---- C:\Windows\system32\nvapo32v.dll
2017-07-07 22:40:03 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2017-07-07 22:39:56 ----A---- C:\Windows\system32\SynTPAPI.dll
2017-07-07 22:39:56 ----A---- C:\Windows\system32\drivers\SynTP.sys
2017-07-07 22:39:53 ----A---- C:\Windows\system32\SynGlwPadShlExt.dll
2017-07-07 22:39:51 ----A---- C:\Windows\system32\SynCtrl.dll
2017-07-07 22:39:51 ----A---- C:\Windows\system32\SynCOM.dll
2017-07-07 22:23:29 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-07-07 22:22:49 ----D---- C:\Users\M\AppData\Roaming\AVAST Software
2017-07-07 22:20:49 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-07-07 22:20:49 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswStmXP.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswSP.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbunivx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswblogx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbidshx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbidsdriverx.sys
2017-07-07 22:20:04 ----A---- C:\Windows\ucrtbase.dll
2017-07-07 22:20:04 ----A---- C:\Windows\system32\aswBoot.exe
2017-07-07 22:18:43 ----D---- C:\Program Files\AVAST Software
2017-07-07 22:17:37 ----D---- C:\ProgramData\AVAST Software
2017-07-07 22:13:27 ----A---- C:\Windows\system32\FNTCACHE.DAT
2017-07-07 22:10:24 ----A---- C:\Windows\system32\msshsq.dll
2017-07-07 22:10:15 ----D---- C:\Program Files\MSXML 4.0
2017-07-07 20:19:59 ----A---- C:\Windows\system32\winhttp.dll
2017-07-07 20:19:52 ----A---- C:\Windows\system32\srvsvc.dll
2017-07-07 20:19:52 ----A---- C:\Windows\system32\netevent.dll
2017-07-07 20:10:46 ----A---- C:\ProgramData\nvModes.dat
2017-07-07 01:31:36 ----D---- C:\ProgramData\BSD
2017-07-07 01:18:01 ----D---- C:\Windows\pss
2017-07-07 01:07:23 ----A---- C:\Windows\WiseHDInfo32.dll
2017-07-07 01:03:47 ----D---- C:\Users\M\AppData\Roaming\Wise Uninstaller
2017-07-07 01:02:17 ----D---- C:\Users\M\AppData\Roaming\Wise Care 365
2017-07-07 01:02:16 ----A---- C:\Windows\WiseRegNotify.sys
2017-07-07 01:01:57 ----D---- C:\Program Files\Wise
2017-07-07 00:55:17 ----D---- C:\Users\M\AppData\Roaming\uTorrent
2017-07-07 00:47:39 ----D---- C:\ProgramData\SystemExplorer
2017-07-07 00:47:38 ----D---- C:\Program Files\System Explorer
2017-07-07 00:09:53 ----D---- C:\Program Files\Common Files\DESIGNER
2017-07-07 00:09:26 ----D---- C:\Windows\PCHEALTH
2017-07-07 00:09:26 ----D---- C:\Program Files\Microsoft.NET
2017-07-07 00:09:26 ----D---- C:\Program Files\Microsoft Sync Framework
2017-07-07 00:05:16 ----D---- C:\Program Files\Microsoft Visual Studio 8
2017-07-07 00:04:06 ----D---- C:\Program Files\Microsoft Analysis Services
2017-07-06 21:45:50 ----D---- C:\Users\M\AppData\Roaming\Mozilla
2017-07-06 21:45:09 ----D---- C:\ProgramData\Mozilla
2017-07-06 21:45:09 ----D---- C:\Program Files\Mozilla Maintenance Service
2017-07-06 21:45:06 ----D---- C:\Program Files\Mozilla Firefox
2017-07-06 21:33:35 ----A---- C:\Windows\system32\EuEpmGdi.dll
2017-07-06 21:33:35 ----A---- C:\Windows\system32\BootMan.exe
2017-07-06 21:33:34 ----A---- C:\Windows\system32\setupempdrv03.exe
2017-07-06 21:33:34 ----A---- C:\Windows\system32\EuGdiDrv.sys
2017-07-06 21:33:34 ----A---- C:\Windows\system32\epmntdrv.sys
2017-07-06 21:33:26 ----D---- C:\Program Files\EaseUS
2017-07-06 19:26:06 ----D---- C:\Program Files\PowerArchiver
2017-07-06 19:05:03 ----D---- C:\Windows\system32\WindowsPowerShell
2017-07-06 18:25:37 ----D---- C:\Windows\system32\MRT
2017-07-06 18:18:05 ----A---- C:\Windows\system32\msshooks.dll
2017-07-06 18:18:05 ----A---- C:\Windows\system32\msscb.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\thawbrkr.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\srchadmin.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-07-06 18:18:02 ----A---- C:\Windows\system32\propsys.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\propdefs.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\msstrc.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\mssprxy.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\mssitlb.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\korwbrkr.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\xmlfilter.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\wsepno.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\tquery.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-07-06 18:18:01 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-07-06 18:18:01 ----A---- C:\Windows\system32\rtffilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\offfilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\nlhtml.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssvp.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssrch.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssphtb.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssph.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\msscntrs.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mimefilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\chtbrkr.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\chsbrkr.dll
2017-07-06 18:15:34 ----A---- C:\Windows\system32\psisdecd.dll
2017-07-06 18:05:10 ----A---- C:\Windows\system32\nshhttp.dll
2017-07-06 18:05:06 ----A---- C:\Windows\system32\httpapi.dll
2017-07-06 18:05:06 ----A---- C:\Windows\system32\drivers\http.sys
2017-07-06 18:02:36 ----A---- C:\Windows\system32\winrsmgr.dll
2017-07-06 18:02:24 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-07-06 18:02:24 ----A---- C:\Windows\system32\winrshost.exe
2017-07-06 18:02:24 ----A---- C:\Windows\system32\winrs.exe
2017-07-06 18:02:23 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-07-06 18:02:23 ----A---- C:\Windows\system32\winrssrv.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\WsmRes.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wevtfwd.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecutil.exe
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecsvc.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecapi.dll
2017-07-06 18:02:20 ----A---- C:\Windows\system32\pwrshplugin.dll
2017-07-06 18:02:16 ----A---- C:\Windows\system32\winrm.vbs
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmSvc.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmAuto.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-07-06 18:02:14 ----A---- C:\Windows\system32\winrscmd.dll
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntkrnlpa.exe
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntdll.dll
2017-07-06 17:59:15 ----A---- C:\Windows\system32\Apphlpdm.dll
2017-07-06 17:59:12 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2017-07-06 17:59:05 ----A---- C:\Windows\system32\rpcss.dll
2017-07-06 17:59:02 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2017-07-06 17:59:01 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\sdohlp.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasrecst.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iashost.exe
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasdatastore.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasads.dll
2017-07-06 17:58:53 ----A---- C:\Windows\system32\mfc40u.dll
2017-07-06 17:58:53 ----A---- C:\Windows\system32\mfc40.dll
2017-07-06 17:58:43 ----A---- C:\Windows\system32\netiohlp.dll
2017-07-06 17:58:40 ----A---- C:\Windows\system32\TCPSVCS.EXE
2017-07-06 17:58:40 ----A---- C:\Windows\system32\NETSTAT.EXE
2017-07-06 17:58:40 ----A---- C:\Windows\system32\ARP.EXE
2017-07-06 17:58:39 ----A---- C:\Windows\system32\finger.exe
2017-07-06 17:58:38 ----A---- C:\Windows\system32\MRINFO.EXE
2017-07-06 17:58:38 ----A---- C:\Windows\system32\HOSTNAME.EXE
2017-07-06 17:58:37 ----A---- C:\Windows\system32\ROUTE.EXE
2017-07-06 17:57:40 ----A---- C:\Windows\system32\WMVCORE.DLL
2017-07-06 17:57:40 ----A---- C:\Windows\system32\mf.dll
2017-07-06 17:57:32 ----A---- C:\Windows\system32\wdigest.dll
2017-07-06 17:57:32 ----A---- C:\Windows\system32\kerberos.dll
2017-07-06 17:57:30 ----A---- C:\Windows\system32\lsasrv.dll
2017-07-06 17:57:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-07-06 17:57:27 ----A---- C:\Windows\system32\secur32.dll
2017-07-06 17:57:27 ----A---- C:\Windows\system32\lsass.exe
2017-07-06 17:57:18 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-07-06 17:57:18 ----A---- C:\Windows\system32\drivers\tunnel.sys
2017-07-06 17:57:14 ----A---- C:\Windows\system32\odbc32.dll
2017-07-06 17:57:03 ----A---- C:\Windows\system32\shlwapi.dll
2017-07-06 17:57:03 ----A---- C:\Windows\system32\shell32.dll
2017-07-06 17:56:59 ----A---- C:\Windows\system32\msxml6.dll
2017-07-06 17:56:51 ----A---- C:\Windows\system32\wmp.dll
2017-07-06 17:56:45 ----A---- C:\Windows\system32\wmploc.DLL
2017-07-06 17:56:18 ----A---- C:\Windows\system32\wlansec.dll
2017-07-06 17:56:18 ----A---- C:\Windows\system32\wlanmsm.dll
2017-07-06 17:56:18 ----A---- C:\Windows\system32\L2SecHC.dll
2017-07-06 17:56:16 ----A---- C:\Windows\system32\wlansvc.dll
2017-07-06 17:56:07 ----A---- C:\Windows\system32\apilogen.dll
2017-07-06 17:56:07 ----A---- C:\Windows\system32\amxread.dll
2017-07-06 17:56:04 ----A---- C:\Windows\system32\taskschd.dll
2017-07-06 17:56:04 ----A---- C:\Windows\system32\schedsvc.dll
2017-07-06 17:56:03 ----A---- C:\Windows\system32\wmicmiplugin.dll
2017-07-06 17:56:01 ----A---- C:\Windows\system32\taskeng.exe
2017-07-06 17:56:01 ----A---- C:\Windows\system32\taskcomp.dll
2017-07-06 17:55:42 ----A---- C:\Windows\system32\shsvcs.dll
2017-07-06 17:55:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-07-06 17:55:24 ----A---- C:\Windows\system32\oleaut32.dll
2017-07-06 17:55:22 ----A---- C:\Windows\system32\vbscript.dll
2017-07-06 17:55:22 ----A---- C:\Windows\system32\jscript.dll
2017-07-06 17:55:20 ----A---- C:\Windows\system32\localspl.dll
2017-07-06 17:55:16 ----A---- C:\Windows\system32\xolehlp.dll
2017-07-06 17:55:16 ----A---- C:\Windows\system32\msdtcprx.dll
2017-07-06 17:55:14 ----A---- C:\Windows\system32\mfc42u.dll
2017-07-06 17:55:14 ----A---- C:\Windows\system32\mfc42.dll
2017-07-06 17:55:11 ----A---- C:\Windows\system32\atmfd.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\fontsub.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\dciman32.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\atmlib.dll
2017-07-06 17:55:06 ----A---- C:\Windows\system32\win32k.sys
2017-07-06 17:55:04 ----A---- C:\Windows\system32\ole32.dll
2017-07-06 17:54:57 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-07-06 17:54:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-07-06 17:54:56 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-07-06 17:54:52 ----A---- C:\Windows\system32\drivers\srv.sys
2017-07-06 17:54:49 ----A---- C:\Windows\system32\win32spl.dll
2017-07-06 17:54:48 ----A---- C:\Windows\system32\netapi32.dll
2017-07-06 17:54:44 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-07-06 17:54:41 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2017-07-06 17:54:36 ----A---- C:\Windows\system32\consent.exe
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnsrslvr.dll
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnscacheugc.exe
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnsapi.dll
2017-07-06 17:54:30 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-07-06 17:54:29 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-07-06 17:54:27 ----A---- C:\Windows\system32\sdclt.exe
2017-07-06 17:54:25 ----A---- C:\Windows\system32\wkssvc.dll
2017-07-06 17:54:19 ----A---- C:\Windows\system32\usp10.dll
2017-07-06 17:54:16 ----A---- C:\Windows\system32\atl.dll
2017-07-06 17:54:11 ----A---- C:\Windows\system32\spoolsv.exe
2017-07-06 17:54:09 ----A---- C:\Windows\system32\rtutils.dll
2017-07-06 17:54:07 ----A---- C:\Windows\system32\wmpeffects.dll
2017-07-06 17:54:06 ----A---- C:\Windows\system32\iccvid.dll
2017-07-06 17:54:04 ----A---- C:\Windows\system32\gdi32.dll
2017-07-06 17:54:02 ----A---- C:\Windows\system32\drivers\afd.sys
2017-07-06 17:53:59 ----A---- C:\Windows\system32\EncDec.dll
2017-07-06 17:53:58 ----A---- C:\Windows\system32\sbe.dll
2017-07-06 17:53:57 ----A---- C:\Windows\system32\sbeio.dll
2017-07-06 17:53:56 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-07-06 17:53:53 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-07-06 17:53:53 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-07-06 17:53:53 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2017-07-06 17:53:51 ----A---- C:\Windows\system32\t2embed.dll
2017-07-06 17:53:49 ----A---- C:\Windows\explorer.exe
2017-07-06 17:53:48 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-07-06 17:53:46 ----A---- C:\Windows\system32\asycfilt.dll
2017-07-06 17:53:40 ----A---- C:\Windows\system32\tzres.dll
2017-07-06 17:53:07 ----A---- C:\Windows\system32\wmpmde.dll
2017-07-06 17:53:05 ----A---- C:\Windows\system32\rpcrt4.dll
2017-07-06 17:53:02 ----A---- C:\Windows\system32\inetcomm.dll
2017-07-06 17:53:00 ----A---- C:\Windows\system32\emdmgmt.dll
2017-07-06 17:52:59 ----A---- C:\Windows\system32\drivers\nwifi.sys
2017-07-06 17:52:59 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-07-06 17:52:59 ----A---- C:\Windows\system32\dataclen.dll
2017-07-06 17:52:59 ----A---- C:\Windows\system32\cdd.dll
2017-07-06 17:52:57 ----A---- C:\Windows\system32\quartz.dll
2017-07-06 17:52:52 ----A---- C:\Windows\system32\WMNetMgr.dll
2017-07-06 17:52:52 ----A---- C:\Windows\system32\logagent.exe
2017-07-06 17:52:48 ----A---- C:\Windows\system32\msasn1.dll
2017-07-06 17:52:44 ----A---- C:\Windows\system32\msxml3.dll
2017-07-06 17:52:42 ----A---- C:\Windows\system32\wersvc.dll
2017-07-06 17:52:42 ----A---- C:\Windows\system32\Faultrep.dll
2017-07-06 17:52:36 ----A---- C:\Windows\system32\wmpdxm.dll
2017-07-06 17:52:21 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-07-06 17:52:21 ----A---- C:\Windows\system32\RMActivate.exe
2017-07-06 17:52:19 ----A---- C:\Windows\system32\secproc.dll
2017-07-06 17:52:19 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-07-06 17:52:19 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-07-06 17:52:18 ----A---- C:\Windows\system32\secproc_isv.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\msdrm.dll
2017-07-06 17:52:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-07-06 17:52:10 ----A---- C:\Windows\system32\connect.dll
2017-07-06 17:52:08 ----A---- C:\Windows\system32\winsrv.dll
2017-07-06 17:52:08 ----A---- C:\Windows\system32\csrsrv.dll
2017-07-06 17:52:04 ----A---- C:\Windows\system32\mstscax.dll
2017-07-06 17:52:04 ----A---- C:\Windows\system32\mstsc.exe
2017-07-06 17:52:02 ----A---- C:\Windows\system32\kernel32.dll
2017-07-06 17:51:57 ----A---- C:\Windows\system32\msvidc32.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\msyuv.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\msrle32.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\iyuv_32.dll
2017-07-06 17:51:54 ----A---- C:\Windows\system32\tsbyuv.dll
2017-07-06 17:51:54 ----A---- C:\Windows\system32\avifil32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\msvfw32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\mciavi32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\avicap32.dll
2017-07-06 17:49:52 ----A---- C:\Windows\system32\comctl32.dll
2017-07-06 17:49:26 ----A---- C:\Windows\system32\rastls.dll
2017-07-06 17:49:26 ----A---- C:\Windows\system32\raschap.dll
2017-07-06 17:47:07 ----A---- C:\Windows\system32\WSDApi.dll
2017-07-06 17:40:09 ----A---- C:\Windows\system32\unregmp2.exe
2017-07-06 17:40:05 ----A---- C:\Windows\system32\spwmp.dll
2017-07-06 17:40:03 ----A---- C:\Windows\system32\dxmasf.dll
2017-07-06 17:38:14 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-07-06 17:38:12 ----A---- C:\Windows\system32\schannel.dll
2017-07-06 16:46:58 ----A---- C:\Windows\system32\drivers\netio.sys
2017-07-06 16:38:26 ----D---- C:\55e898352a4602b80055f7659591
2017-07-06 16:37:24 ----D---- C:\ProgramData\NVIDIA
2017-07-06 16:27:19 ----D---- C:\0237310b14e1cd16a77c6a
2017-07-06 16:18:38 ----A---- C:\Windows\system32\kbd106n.dll
2017-07-06 16:18:30 ----A---- C:\Windows\system32\kd1394.dll
2017-07-06 16:18:27 ----A---- C:\Windows\system32\srdelayed.exe
2017-07-06 16:18:26 ----A---- C:\Windows\system32\srclient.dll
2017-07-06 16:18:24 ----A---- C:\Windows\system32\ci.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\winresume.exe
2017-07-06 16:18:23 ----A---- C:\Windows\system32\winload.exe
2017-07-06 16:18:23 ----A---- C:\Windows\system32\srcore.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\rstrui.exe
2017-07-06 16:05:20 ----A---- C:\Windows\system32\untfs.dll
2017-07-06 16:05:20 ----A---- C:\Windows\system32\autochk.exe
2017-07-06 15:56:47 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-07-06 15:56:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-07-06 15:55:22 ----D---- C:\Users\M\AppData\Roaming\Macromedia
2017-07-06 15:53:52 ----A---- C:\Windows\system32\msxml4r.dll
2017-07-06 15:53:52 ----A---- C:\Windows\system32\msxml4a.dll
2017-07-06 15:51:50 ----D---- C:\ProgramData\CyberLink
2017-07-06 15:47:05 ----A---- C:\Windows\system32\drivers\atswpdrv.sys
2017-07-06 15:47:03 ----D---- C:\Program Files\Fingerprint Sensor
2017-07-06 15:47:01 ----D---- C:\Windows\Downloaded Installations
2017-07-06 15:40:25 ----A---- C:\Windows\system32\BtwRSupport.dll
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-MX
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-AR
2017-07-06 15:40:17 ----D---- C:\Program Files\WIDCOMM
2017-07-06 15:35:55 ----D---- C:\Program Files\Launch Manager
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvexpbar.dll
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvcpluir.dll
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvcplui.exe
2017-07-06 15:32:21 ----A---- C:\Windows\system32\NVUNINST.EXE
2017-07-06 15:29:22 ----A---- C:\Windows\system32\difxapi.dll
2017-07-06 15:29:14 ----A---- C:\Windows\system32\drivers\iaStor.sys
2017-07-06 15:29:01 ----D---- C:\Users\M\AppData\Roaming\InstallShield
2017-07-06 15:25:45 ----A---- C:\Windows\system32\jsproxy.dll
2017-07-06 15:25:43 ----A---- C:\Windows\system32\mstime.dll
2017-07-06 15:25:43 ----A---- C:\Windows\system32\mshtml.dll
2017-07-06 15:25:42 ----A---- C:\Windows\system32\urlmon.dll
2017-07-06 15:25:41 ----A---- C:\Windows\system32\wininet.dll
2017-07-06 15:25:39 ----A---- C:\Windows\system32\ieframe.dll
2017-07-06 15:19:15 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-07-06 15:08:06 ----D---- C:\224816ad40cc2da57a9353
2017-07-06 15:05:23 ----A---- C:\Windows\system32\wintrust.dll
2017-07-06 15:05:21 ----A---- C:\Windows\system32\cabview.dll
2017-07-06 14:58:34 ----D---- C:\Users\M\AppData\Roaming\Adobe
2017-07-06 14:58:17 ----D---- C:\Users\M\AppData\Roaming\Google
2017-07-06 14:57:30 ----A---- C:\Windows\system32\es.dll
2017-07-06 14:47:40 ----D---- C:\16cd0dc0ac1e581741473c89125b80
2017-07-06 14:43:39 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2017-07-06 14:43:12 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2017-07-06 14:43:07 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2017-07-06 14:41:53 ----A---- C:\Windows\system32\pacerprf.dll
2017-07-06 14:41:53 ----A---- C:\Windows\system32\drivers\pacer.sys
2017-07-06 14:40:48 ----A---- C:\Windows\system32\scrobj.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\wshext.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\scrrun.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\cscript.exe
2017-07-06 14:40:46 ----A---- C:\Windows\system32\wscript.exe
2017-07-06 14:37:37 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-07-06 14:36:44 ----A---- C:\Windows\system32\RacEngn.dll
2017-07-06 14:30:22 ----A---- C:\Windows\system32\gameux.dll
2017-07-06 14:28:59 ----D---- C:\Users\M\AppData\Roaming\Identities
2017-07-06 14:26:47 ----D---- C:\ProgramData\Google
2017-07-06 14:26:43 ----D---- C:\Program Files\Google
2017-07-06 14:26:21 ----SD---- C:\Users\M\AppData\Roaming\Microsoft
2017-07-06 14:26:21 ----D---- C:\Users\M\AppData\Roaming\Media Center Programs
2017-07-06 14:26:21 ----D---- C:\Users\M\AppData\Roaming\Acer GameZone Console
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Šablony
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Plocha
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Oblíbené položky
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Nabídka Start
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Dokumenty
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Data aplikací
2017-07-06 14:20:29 ----ASH---- C:\hiberfil.sys
2017-07-06 14:15:23 ----D---- C:\Windows\SoftwareDistribution
2017-07-06 14:12:26 ----ASH---- C:\pagefile.sys
2017-07-06 14:12:26 ----A---- C:\Windows\DUMPbfe4.tmp

======List of files/folders modified in the last 1 month======

2017-07-08 22:33:53 ----D---- C:\Windows\Temp
2017-07-08 22:30:58 ----D---- C:\Windows\System32
2017-07-08 22:30:58 ----D---- C:\Windows\inf
2017-07-08 22:30:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-07-08 22:24:21 ----D---- C:\Windows
2017-07-08 22:21:59 ----D---- C:\ProgramData
2017-07-08 20:07:57 ----SHD---- C:\System Volume Information
2017-07-08 19:59:10 ----D---- C:\Windows\system32\drivers
2017-07-08 19:59:09 ----D---- C:\Windows\system32\catroot
2017-07-08 19:56:50 ----D---- C:\Program Files
2017-07-08 15:41:13 ----D---- C:\Windows\system32\NDF
2017-07-08 15:09:25 ----A---- C:\Windows\system.ini
2017-07-08 15:09:19 ----D---- C:\Windows\system32\drivers\etc
2017-07-08 15:07:43 ----D---- C:\Windows\system32\config
2017-07-08 15:02:36 ----D---- C:\Windows\AppPatch
2017-07-08 15:02:34 ----D---- C:\Program Files\Common Files
2017-07-08 14:47:16 ----D---- C:\Windows\system
2017-07-08 05:37:54 ----D---- C:\Windows\Prefetch
2017-07-08 02:43:15 ----D---- C:\Windows\Logs
2017-07-08 01:12:47 ----D---- C:\Windows\Microsoft.NET
2017-07-08 01:12:46 ----RSD---- C:\Windows\assembly
2017-07-08 00:30:37 ----SHD---- C:\Windows\Installer
2017-07-08 00:30:12 ----D---- C:\Windows\system32\cs-CZ
2017-07-08 00:27:01 ----D---- C:\Windows\system32\en-US
2017-07-08 00:25:23 ----D---- C:\Windows\winsxs
2017-07-08 00:14:24 ----D---- C:\Windows\rescache
2017-07-08 00:04:49 ----D---- C:\ProgramData\Microsoft Help
2017-07-08 00:02:13 ----D---- C:\Windows\system32\catroot2
2017-07-07 23:43:39 ----D---- C:\Windows\system32\Tasks
2017-07-07 23:34:56 ----D---- C:\Windows\system32\wbem
2017-07-07 23:34:56 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-07-07 22:47:40 ----D---- C:\Windows\system32\RTCOM
2017-07-07 22:37:45 ----A---- C:\Windows\win.ini
2017-07-07 22:13:50 ----D---- C:\Windows\Debug
2017-07-07 22:13:02 ----HD---- C:\Program Files\InstallShield Installation Information
2017-07-07 22:13:02 ----D---- C:\Program Files\Acer
2017-07-07 22:07:26 ----D---- C:\ACER
2017-07-07 21:54:25 ----D---- C:\Program Files\Cyberlink
2017-07-07 21:50:21 ----D---- C:\Program Files\NewTech Infosystems
2017-07-07 21:45:57 ----D---- C:\Windows\Driver Cache
2017-07-07 21:45:43 ----D---- C:\Windows\Tasks
2017-07-07 21:15:00 ----D---- C:\Program Files\Acer GameZone
2017-07-07 21:06:17 ----D---- C:\Program Files\eSobi
2017-07-07 20:25:26 ----SD---- C:\Windows\Downloaded Program Files
2017-07-07 20:25:19 ----D---- C:\Windows\Panther
2017-07-07 20:09:55 ----D---- C:\ProgramData\McAfee
2017-07-07 01:29:46 ----D---- C:\Program Files\Microsoft Office
2017-07-07 01:23:03 ----RSD---- C:\Windows\Fonts
2017-07-07 01:11:13 ----D---- C:\ProgramData\SiteAdvisor
2017-07-07 00:18:39 ----D---- C:\Program Files\Common Files\microsoft shared
2017-07-07 00:18:17 ----D---- C:\Windows\ShellNew
2017-07-07 00:17:45 ----D---- C:\Program Files\Common Files\System
2017-07-07 00:10:46 ----D---- C:\Program Files\MSBuild
2017-07-07 00:09:26 ----SD---- C:\ProgramData\Microsoft
2017-07-06 23:54:56 ----D---- C:\Windows\system32\WDI
2017-07-06 19:32:33 ----D---- C:\Program Files\Common Files\InstallShield
2017-07-06 19:06:08 ----D---- C:\Program Files\Windows Media Player
2017-07-06 19:06:08 ----D---- C:\Program Files\Windows Mail
2017-07-06 19:05:56 ----D---- C:\Program Files\Movie Maker
2017-07-06 19:05:53 ----D---- C:\Windows\PolicyDefinitions
2017-07-06 19:05:49 ----D---- C:\Windows\ehome
2017-07-06 19:05:41 ----D---- C:\Windows\system32\manifeststore
2017-07-06 18:25:27 ----AC---- C:\Windows\system32\mrt.exe
2017-07-06 16:51:22 ----D---- C:\Windows\system32\OEM
2017-07-06 16:34:02 ----D---- C:\Windows\system32\Boot
2017-07-06 16:34:00 ----D---- C:\Windows\system32\migration
2017-07-06 15:40:26 ----SD---- C:\Windows\system32\Microsoft
2017-07-06 15:40:20 ----D---- C:\Windows\system32\zh-TW
2017-07-06 15:40:19 ----D---- C:\Windows\system32\zh-CN
2017-07-06 15:40:19 ----D---- C:\Windows\system32\sv-SE
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ru-RU
2017-07-06 15:40:19 ----D---- C:\Windows\system32\pt-BR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\pl-PL
2017-07-06 15:40:19 ----D---- C:\Windows\system32\nl-NL
2017-07-06 15:40:19 ----D---- C:\Windows\system32\nb-NO
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ko-KR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ja-JP
2017-07-06 15:40:19 ----D---- C:\Windows\system32\it-IT
2017-07-06 15:40:19 ----D---- C:\Windows\system32\fr-FR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\fi-FI
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-ES
2017-07-06 15:40:19 ----D---- C:\Windows\system32\de-DE
2017-07-06 15:40:19 ----D---- C:\Windows\system32\da-DK
2017-07-06 15:34:36 ----D---- C:\Windows\Help
2017-07-06 15:29:22 ----D---- C:\Program Files\Intel
2017-07-06 15:01:32 ----D---- C:\Windows\system32\LogFiles
2017-07-06 14:29:44 ----D---- C:\Windows\system32\restore
2017-07-06 14:26:21 ----RD---- C:\Users
2017-07-06 14:24:22 ----D---- C:\Program Files\Windows NT
2017-07-06 14:18:09 ----D---- C:\Windows\system32\oobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [2017-07-07 157384]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswblogx.sys [2017-07-07 276704]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [2017-07-07 50352]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-07-07 70840]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-07-07 296312]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-07-20 324120]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [2017-07-07 266976]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-07-07 39752]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2017-07-07 70088]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-07-07 774288]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-07-07 496976]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-07-07 123896]
R2 zumbus;Zune Bus Enumerator Driver; C:\Windows\system32\DRIVERS\zumbus.sys [2016-03-13 41472]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-12-03 1175456]
R3 aswStmXP;aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [2017-07-07 202688]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2008-04-25 146688]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2017-05-04 413704]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2008-07-02 21264]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-07-08 26168]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-07-08 40504]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2016-01-22 3346000]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-04-21 81296]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\System32\Drivers\LEqdUsb.Sys [2015-06-18 52368]
R3 NETwNv32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETwNv32.sys [2011-10-31 7346176]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2016-12-07 171312]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-08-07 7545824]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-07-28 39280]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-04-20 1759744]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-11-18 1319216]
R3 winbondcir;Winbond IR Transceiver; C:\Windows\system32\DRIVERS\winbondcir.sys [2007-03-28 43008]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-07-07 42824]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 epmntdrv;epmntdrv; \??\C:\Windows\system32\epmntdrv.sys [2014-11-18 15968]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\system32\EuGdiDrv.sys [2014-11-18 10208]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WiseHDInfo;WiseHDInfo; \??\C:\Windows\WiseHDInfo32.dll [2017-07-07 13264]
S3 WiseRegNotify;WiseRegNotify; \??\C:\Windows\WiseRegNotify.sys [2017-07-07 23984]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-07-07 263312]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-08-07 196608]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2017-07-07 5815840]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2014-12-20 567008]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
S3 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-02-12 440872]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2016-03-03 1082560]
S3 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-06 153168]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-06 153168]
S3 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-07-20 354840]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-09-11 118680]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118715
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zasekávají se prohlížeče

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Windows\DUMPbfe4.tmp

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

párek
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 08 črc 2017 14:51

Re: Zasekávají se prohlížeče

#7 Příspěvek od párek »

Logfile of random's system information tool 1.10 (written by random/random)
Run by M at 2017-07-09 15:44:01
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 228 GB (77%) free of 295 GB
Total RAM: 3066 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:44:04, on 9.7.2017
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Wise\Wise Program Uninstaller\UnMonitor.exe
C:\Windows\Explorer.EXE
C:\Program Files\System Explorer\SystemExplorer.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\M\Desktop\RSIT (1).exe
C:\Program Files\trend micro\M.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [SystemExplorerAutoStart] "C:\Program Files\System Explorer\SystemExplorer.exe" /TRAY
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: System Explorer Service (SystemExplorerHelpService) - Mister Group - C:\Program Files\System Explorer\service\SystemExplorerService.exe
O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Program Files\Wise\Wise Care 365\BootTime.exe

--
End of file - 5561 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Wise Turbo Checker.job - C:\Program Files\Wise\Wise Care 365\WiseTurbo.exe
C:\Windows\tasks\WiseUninsDetecter.job - C:\Program Files\Wise\Wise Program Uninstaller\UnMonitor.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\cxt5a1rc.default

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-07 774440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SystemExplorerAutoStart"=C:\Program Files\System Explorer\SystemExplorer.exe [2015-08-19 3389160]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-07-07 213832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-03-08 40048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite Automount]
C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-03-03 3281600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM tray]
C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2015-09-16 2089056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM Tray Agent]
C:\Program Files\EaseUS\EaseUS Partition Master 10.8\bin\TrayPopupE\TrayTipAgentE.exe [2014-11-18 255072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE [2008-07-02 821768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\Windows\system32\NvCpl.dll [2008-08-07 13543968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\Windows\system32\NvMcTray.dll [2008-08-07 92704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetL]
C:\Windows\PLFSetL.exe [2008-07-03 94208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProductReg]
C:\Program Files\Acer\WR_PopUp\ProductReg.exe [2008-09-23 6144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2016-01-22 11692688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-11-18 1996072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2008-02-12 723496]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^M^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^23556fb1360f366337f97c924e76ead3.exe]
C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\23556fb1360f366337f97c924e76ead3.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2017-07-09 15:41:29 ----D---- C:\ProgramData\SWCUTemp
2017-07-09 15:38:36 ----D---- C:\_OTM
2017-07-09 11:27:10 ----A---- C:\Users\M\AppData\Roaming\svchost.exe.tmp
2017-07-08 23:52:20 ----A---- C:\Windows\system32\FNTCACHE.DAT
2017-07-08 19:57:40 ----A---- C:\Windows\system32\drivers\dtliteusbbus.sys
2017-07-08 19:56:57 ----A---- C:\Windows\system32\drivers\dtlitescsibus.sys
2017-07-08 19:56:55 ----D---- C:\Users\M\AppData\Roaming\DAEMON Tools Lite
2017-07-08 19:56:50 ----D---- C:\Program Files\DAEMON Tools Lite
2017-07-08 19:56:33 ----D---- C:\ProgramData\DAEMON Tools Lite
2017-07-08 16:34:16 ----D---- C:\rsit
2017-07-08 16:34:16 ----D---- C:\Program Files\trend micro
2017-07-08 15:12:43 ----HD---- C:\$AV_ASW
2017-07-08 15:12:39 ----A---- C:\ComboFix.txt
2017-07-08 15:12:11 ----SHD---- C:\$RECYCLE.BIN
2017-07-08 14:57:01 ----A---- C:\Windows\zip.exe
2017-07-08 14:57:01 ----A---- C:\Windows\SWSC.exe
2017-07-08 14:57:01 ----A---- C:\Windows\SWREG.exe
2017-07-08 14:57:01 ----A---- C:\Windows\sed.exe
2017-07-08 14:57:01 ----A---- C:\Windows\PEV.exe
2017-07-08 14:57:01 ----A---- C:\Windows\NIRCMD.exe
2017-07-08 14:57:01 ----A---- C:\Windows\MBR.exe
2017-07-08 14:57:01 ----A---- C:\Windows\grep.exe
2017-07-08 14:55:58 ----D---- C:\Qoobox
2017-07-08 14:55:36 ----D---- C:\Windows\erdnt
2017-07-08 00:36:33 ----D---- C:\ProgramData\Malwarebytes
2017-07-08 00:25:15 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\PresentationHost.exe
2017-07-08 00:25:15 ----A---- C:\Windows\system32\netfxperf.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\mscoree.dll
2017-07-08 00:25:15 ----A---- C:\Windows\system32\dfshim.dll
2017-07-07 23:26:49 ----D---- C:\AdwCleaner
2017-07-07 23:10:14 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2017-07-07 23:05:55 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2017-07-07 22:54:24 ----D---- C:\ProgramData\NVIDIA Corporation
2017-07-07 22:54:01 ----D---- C:\Program Files\NVIDIA Corporation
2017-07-07 22:51:28 ----D---- C:\Program Files\LSI SoftModem
2017-07-07 22:41:52 ----D---- C:\Program Files\DIFX
2017-07-07 22:41:50 ----D---- C:\cpqsystem
2017-07-07 22:41:30 ----A---- C:\Windows\system32\drivers\snp2uvc.sys
2017-07-07 22:41:30 ----A---- C:\Windows\system32\drivers\sncduvc.sys
2017-07-07 22:41:30 ----A---- C:\Windows\PLFSetL.exe
2017-07-07 22:41:30 ----A---- C:\Windows\PidList.ini
2017-07-07 22:41:29 ----A---- C:\Windows\system32\LkmdfCoInst.dll
2017-07-07 22:41:28 ----A---- C:\Windows\system32\drivers\zumbus.sys
2017-07-07 22:41:28 ----A---- C:\Windows\system32\drivers\LEqdUsb.sys
2017-07-07 22:41:26 ----A---- C:\Windows\system32\drivers\circlass.sys
2017-07-07 22:41:25 ----A---- C:\Windows\system32\drivers\NETwNv32.sys
2017-07-07 22:41:25 ----A---- C:\Windows\system32\drivers\iscsiprt.sys
2017-07-07 22:41:23 ----A---- C:\Windows\system32\NETwNr32.dll
2017-07-07 22:41:23 ----A---- C:\Windows\system32\NETwNc32.dll
2017-07-07 22:41:20 ----A---- C:\Windows\system32\drivers\Smb_driver_Intel.sys
2017-07-07 22:41:18 ----A---- C:\Windows\system32\drivers\b57nd60x.sys
2017-07-07 22:41:17 ----A---- C:\Windows\system32\OpenCL.dll
2017-07-07 22:41:10 ----A---- C:\Windows\system32\nvgenco32.dll
2017-07-07 22:41:09 ----A---- C:\Windows\system32\nvdispco32.dll
2017-07-07 22:41:07 ----A---- C:\Windows\system32\nvcuvid.dll
2017-07-07 22:41:06 ----A---- C:\Windows\system32\nvcuvenc.dll
2017-07-07 22:41:06 ----A---- C:\Windows\system32\nvcuda.dll
2017-07-07 22:41:05 ----A---- C:\Windows\system32\nvcompiler.dll
2017-07-07 22:40:53 ----A---- C:\Windows\system32\drivers\AGRSM.sys
2017-07-07 22:40:53 ----A---- C:\Windows\agrsmdel.exe
2017-07-07 22:40:51 ----A---- C:\Windows\system32\WavesLib.dll
2017-07-07 22:40:51 ----A---- C:\Windows\system32\WavesGUILib.dll
2017-07-07 22:40:50 ----A---- C:\Windows\system32\tosade.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\TepeqAPO.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\tadefxapo2.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\tadefxapo.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSWOW.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSTSXT.dll
2017-07-07 22:40:49 ----A---- C:\Windows\system32\SRSTSHD.dll
2017-07-07 22:40:48 ----A---- C:\Windows\system32\SRSHP360.dll
2017-07-07 22:40:48 ----A---- C:\Windows\system32\SFSS_APO.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFNHK.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFCOM.dll
2017-07-07 22:40:47 ----A---- C:\Windows\system32\SFAPO.dll
2017-07-07 22:40:46 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2017-07-07 22:40:45 ----A---- C:\Windows\system32\RtkPgExt.dll
2017-07-07 22:40:43 ----A---- C:\Windows\system32\RtkCoLDR.dll
2017-07-07 22:40:43 ----A---- C:\Windows\system32\RtkCoInstII.dll
2017-07-07 22:40:42 ----A---- C:\Windows\system32\RtkApoApi.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEP32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEL32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEEG32A.dll
2017-07-07 22:40:36 ----A---- C:\Windows\system32\RTEED32A.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\RP3DHT32.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\RP3DAA32.dll
2017-07-07 22:40:35 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2017-07-07 22:40:33 ----A---- C:\Windows\system32\RCoRes.dat
2017-07-07 22:40:31 ----A---- C:\Windows\system32\R4EEP32A.dll
2017-07-07 22:40:30 ----A---- C:\Windows\system32\R4EEL32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EEG32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EED32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\R4EEA32A.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-07-07 22:40:29 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2017-07-07 22:40:28 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2017-07-07 22:40:26 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2017-07-07 22:40:25 ----A---- C:\Windows\system32\KAAPORT.dll
2017-07-07 22:40:24 ----A---- C:\Windows\system32\FMAPO.dll
2017-07-07 22:40:24 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2017-07-07 22:40:23 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2017-07-07 22:40:22 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2017-07-07 22:40:21 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2017-07-07 22:40:19 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-07-07 22:40:17 ----A---- C:\Windows\system32\AERTARen.dll
2017-07-07 22:40:17 ----A---- C:\Windows\system32\AERTACap.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\nvhdap32.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2017-07-07 22:40:05 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2017-07-07 22:40:04 ----A---- C:\Windows\system32\nvapo32v.dll
2017-07-07 22:40:03 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2017-07-07 22:39:56 ----A---- C:\Windows\system32\SynTPAPI.dll
2017-07-07 22:39:56 ----A---- C:\Windows\system32\drivers\SynTP.sys
2017-07-07 22:39:53 ----A---- C:\Windows\system32\SynGlwPadShlExt.dll
2017-07-07 22:39:51 ----A---- C:\Windows\system32\SynCtrl.dll
2017-07-07 22:39:51 ----A---- C:\Windows\system32\SynCOM.dll
2017-07-07 22:23:29 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2017-07-07 22:22:49 ----D---- C:\Users\M\AppData\Roaming\AVAST Software
2017-07-07 22:20:49 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2017-07-07 22:20:49 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswvmm.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswStmXP.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswSP.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbunivx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswblogx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbidshx.sys
2017-07-07 22:20:08 ----A---- C:\Windows\system32\drivers\aswbidsdriverx.sys
2017-07-07 22:20:04 ----A---- C:\Windows\ucrtbase.dll
2017-07-07 22:20:04 ----A---- C:\Windows\system32\aswBoot.exe
2017-07-07 22:18:43 ----D---- C:\Program Files\AVAST Software
2017-07-07 22:17:37 ----D---- C:\ProgramData\AVAST Software
2017-07-07 22:10:24 ----A---- C:\Windows\system32\msshsq.dll
2017-07-07 22:10:15 ----D---- C:\Program Files\MSXML 4.0
2017-07-07 20:19:59 ----A---- C:\Windows\system32\winhttp.dll
2017-07-07 20:19:52 ----A---- C:\Windows\system32\srvsvc.dll
2017-07-07 20:19:52 ----A---- C:\Windows\system32\netevent.dll
2017-07-07 20:10:46 ----A---- C:\ProgramData\nvModes.dat
2017-07-07 01:31:36 ----D---- C:\ProgramData\BSD
2017-07-07 01:18:01 ----D---- C:\Windows\pss
2017-07-07 01:07:23 ----A---- C:\Windows\WiseHDInfo32.dll
2017-07-07 01:03:47 ----D---- C:\Users\M\AppData\Roaming\Wise Uninstaller
2017-07-07 01:02:17 ----D---- C:\Users\M\AppData\Roaming\Wise Care 365
2017-07-07 01:02:16 ----A---- C:\Windows\WiseRegNotify.sys
2017-07-07 01:01:57 ----D---- C:\Program Files\Wise
2017-07-07 00:55:17 ----D---- C:\Users\M\AppData\Roaming\uTorrent
2017-07-07 00:47:39 ----D---- C:\ProgramData\SystemExplorer
2017-07-07 00:47:38 ----D---- C:\Program Files\System Explorer
2017-07-07 00:09:53 ----D---- C:\Program Files\Common Files\DESIGNER
2017-07-07 00:09:26 ----D---- C:\Windows\PCHEALTH
2017-07-07 00:09:26 ----D---- C:\Program Files\Microsoft.NET
2017-07-07 00:09:26 ----D---- C:\Program Files\Microsoft Sync Framework
2017-07-07 00:05:16 ----D---- C:\Program Files\Microsoft Visual Studio 8
2017-07-07 00:04:06 ----D---- C:\Program Files\Microsoft Analysis Services
2017-07-06 21:45:50 ----D---- C:\Users\M\AppData\Roaming\Mozilla
2017-07-06 21:45:09 ----D---- C:\ProgramData\Mozilla
2017-07-06 21:45:09 ----D---- C:\Program Files\Mozilla Maintenance Service
2017-07-06 21:45:06 ----D---- C:\Program Files\Mozilla Firefox
2017-07-06 21:33:35 ----A---- C:\Windows\system32\EuEpmGdi.dll
2017-07-06 21:33:35 ----A---- C:\Windows\system32\BootMan.exe
2017-07-06 21:33:34 ----A---- C:\Windows\system32\setupempdrv03.exe
2017-07-06 21:33:34 ----A---- C:\Windows\system32\EuGdiDrv.sys
2017-07-06 21:33:34 ----A---- C:\Windows\system32\epmntdrv.sys
2017-07-06 21:33:26 ----D---- C:\Program Files\EaseUS
2017-07-06 19:26:06 ----D---- C:\Program Files\PowerArchiver
2017-07-06 19:05:03 ----D---- C:\Windows\system32\WindowsPowerShell
2017-07-06 18:25:37 ----D---- C:\Windows\system32\MRT
2017-07-06 18:18:05 ----A---- C:\Windows\system32\msshooks.dll
2017-07-06 18:18:05 ----A---- C:\Windows\system32\msscb.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\thawbrkr.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\srchadmin.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\SearchFilterHost.exe
2017-07-06 18:18:02 ----A---- C:\Windows\system32\propsys.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\propdefs.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\msstrc.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\mssprxy.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\mssitlb.dll
2017-07-06 18:18:02 ----A---- C:\Windows\system32\korwbrkr.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\xmlfilter.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\wsepno.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\tquery.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2017-07-06 18:18:01 ----A---- C:\Windows\system32\SearchIndexer.exe
2017-07-06 18:18:01 ----A---- C:\Windows\system32\rtffilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\offfilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\nlhtml.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssvp.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssrch.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssphtb.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mssph.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\msscntrs.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\mimefilt.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\chtbrkr.dll
2017-07-06 18:18:01 ----A---- C:\Windows\system32\chsbrkr.dll
2017-07-06 18:15:34 ----A---- C:\Windows\system32\psisdecd.dll
2017-07-06 18:05:10 ----A---- C:\Windows\system32\nshhttp.dll
2017-07-06 18:05:06 ----A---- C:\Windows\system32\httpapi.dll
2017-07-06 18:05:06 ----A---- C:\Windows\system32\drivers\http.sys
2017-07-06 18:02:36 ----A---- C:\Windows\system32\winrsmgr.dll
2017-07-06 18:02:24 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-07-06 18:02:24 ----A---- C:\Windows\system32\winrshost.exe
2017-07-06 18:02:24 ----A---- C:\Windows\system32\winrs.exe
2017-07-06 18:02:23 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-07-06 18:02:23 ----A---- C:\Windows\system32\winrssrv.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\WsmRes.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wevtfwd.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecutil.exe
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecsvc.dll
2017-07-06 18:02:21 ----A---- C:\Windows\system32\wecapi.dll
2017-07-06 18:02:20 ----A---- C:\Windows\system32\pwrshplugin.dll
2017-07-06 18:02:16 ----A---- C:\Windows\system32\winrm.vbs
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmSvc.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WsmAuto.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-07-06 18:02:14 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-07-06 18:02:14 ----A---- C:\Windows\system32\winrscmd.dll
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntkrnlpa.exe
2017-07-06 17:59:21 ----A---- C:\Windows\system32\ntdll.dll
2017-07-06 17:59:15 ----A---- C:\Windows\system32\Apphlpdm.dll
2017-07-06 17:59:12 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2017-07-06 17:59:05 ----A---- C:\Windows\system32\rpcss.dll
2017-07-06 17:59:02 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2017-07-06 17:59:01 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\sdohlp.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasrecst.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iashost.exe
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasdatastore.dll
2017-07-06 17:58:59 ----A---- C:\Windows\system32\iasads.dll
2017-07-06 17:58:53 ----A---- C:\Windows\system32\mfc40u.dll
2017-07-06 17:58:53 ----A---- C:\Windows\system32\mfc40.dll
2017-07-06 17:58:43 ----A---- C:\Windows\system32\netiohlp.dll
2017-07-06 17:58:40 ----A---- C:\Windows\system32\TCPSVCS.EXE
2017-07-06 17:58:40 ----A---- C:\Windows\system32\NETSTAT.EXE
2017-07-06 17:58:40 ----A---- C:\Windows\system32\ARP.EXE
2017-07-06 17:58:39 ----A---- C:\Windows\system32\finger.exe
2017-07-06 17:58:38 ----A---- C:\Windows\system32\MRINFO.EXE
2017-07-06 17:58:38 ----A---- C:\Windows\system32\HOSTNAME.EXE
2017-07-06 17:58:37 ----A---- C:\Windows\system32\ROUTE.EXE
2017-07-06 17:57:40 ----A---- C:\Windows\system32\WMVCORE.DLL
2017-07-06 17:57:40 ----A---- C:\Windows\system32\mf.dll
2017-07-06 17:57:32 ----A---- C:\Windows\system32\wdigest.dll
2017-07-06 17:57:32 ----A---- C:\Windows\system32\kerberos.dll
2017-07-06 17:57:30 ----A---- C:\Windows\system32\lsasrv.dll
2017-07-06 17:57:29 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-07-06 17:57:27 ----A---- C:\Windows\system32\secur32.dll
2017-07-06 17:57:27 ----A---- C:\Windows\system32\lsass.exe
2017-07-06 17:57:18 ----A---- C:\Windows\system32\iphlpsvc.dll
2017-07-06 17:57:18 ----A---- C:\Windows\system32\drivers\tunnel.sys
2017-07-06 17:57:14 ----A---- C:\Windows\system32\odbc32.dll
2017-07-06 17:57:03 ----A---- C:\Windows\system32\shlwapi.dll
2017-07-06 17:57:03 ----A---- C:\Windows\system32\shell32.dll
2017-07-06 17:56:59 ----A---- C:\Windows\system32\msxml6.dll
2017-07-06 17:56:51 ----A---- C:\Windows\system32\wmp.dll
2017-07-06 17:56:45 ----A---- C:\Windows\system32\wmploc.DLL
2017-07-06 17:56:18 ----A---- C:\Windows\system32\wlansec.dll
2017-07-06 17:56:18 ----A---- C:\Windows\system32\wlanmsm.dll
2017-07-06 17:56:18 ----A---- C:\Windows\system32\L2SecHC.dll
2017-07-06 17:56:16 ----A---- C:\Windows\system32\wlansvc.dll
2017-07-06 17:56:07 ----A---- C:\Windows\system32\apilogen.dll
2017-07-06 17:56:07 ----A---- C:\Windows\system32\amxread.dll
2017-07-06 17:56:04 ----A---- C:\Windows\system32\taskschd.dll
2017-07-06 17:56:04 ----A---- C:\Windows\system32\schedsvc.dll
2017-07-06 17:56:03 ----A---- C:\Windows\system32\wmicmiplugin.dll
2017-07-06 17:56:01 ----A---- C:\Windows\system32\taskeng.exe
2017-07-06 17:56:01 ----A---- C:\Windows\system32\taskcomp.dll
2017-07-06 17:55:42 ----A---- C:\Windows\system32\shsvcs.dll
2017-07-06 17:55:31 ----A---- C:\Windows\system32\msv1_0.dll
2017-07-06 17:55:24 ----A---- C:\Windows\system32\oleaut32.dll
2017-07-06 17:55:22 ----A---- C:\Windows\system32\vbscript.dll
2017-07-06 17:55:22 ----A---- C:\Windows\system32\jscript.dll
2017-07-06 17:55:20 ----A---- C:\Windows\system32\localspl.dll
2017-07-06 17:55:16 ----A---- C:\Windows\system32\xolehlp.dll
2017-07-06 17:55:16 ----A---- C:\Windows\system32\msdtcprx.dll
2017-07-06 17:55:14 ----A---- C:\Windows\system32\mfc42u.dll
2017-07-06 17:55:14 ----A---- C:\Windows\system32\mfc42.dll
2017-07-06 17:55:11 ----A---- C:\Windows\system32\atmfd.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\fontsub.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\dciman32.dll
2017-07-06 17:55:09 ----A---- C:\Windows\system32\atmlib.dll
2017-07-06 17:55:06 ----A---- C:\Windows\system32\win32k.sys
2017-07-06 17:55:04 ----A---- C:\Windows\system32\ole32.dll
2017-07-06 17:54:57 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-07-06 17:54:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-07-06 17:54:56 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-07-06 17:54:52 ----A---- C:\Windows\system32\drivers\srv.sys
2017-07-06 17:54:49 ----A---- C:\Windows\system32\win32spl.dll
2017-07-06 17:54:48 ----A---- C:\Windows\system32\netapi32.dll
2017-07-06 17:54:44 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-07-06 17:54:41 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2017-07-06 17:54:36 ----A---- C:\Windows\system32\consent.exe
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnsrslvr.dll
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnscacheugc.exe
2017-07-06 17:54:32 ----A---- C:\Windows\system32\dnsapi.dll
2017-07-06 17:54:30 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-07-06 17:54:29 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-07-06 17:54:27 ----A---- C:\Windows\system32\sdclt.exe
2017-07-06 17:54:25 ----A---- C:\Windows\system32\wkssvc.dll
2017-07-06 17:54:19 ----A---- C:\Windows\system32\usp10.dll
2017-07-06 17:54:16 ----A---- C:\Windows\system32\atl.dll
2017-07-06 17:54:11 ----A---- C:\Windows\system32\spoolsv.exe
2017-07-06 17:54:09 ----A---- C:\Windows\system32\rtutils.dll
2017-07-06 17:54:07 ----A---- C:\Windows\system32\wmpeffects.dll
2017-07-06 17:54:06 ----A---- C:\Windows\system32\iccvid.dll
2017-07-06 17:54:04 ----A---- C:\Windows\system32\gdi32.dll
2017-07-06 17:54:02 ----A---- C:\Windows\system32\drivers\afd.sys
2017-07-06 17:53:59 ----A---- C:\Windows\system32\EncDec.dll
2017-07-06 17:53:58 ----A---- C:\Windows\system32\sbe.dll
2017-07-06 17:53:57 ----A---- C:\Windows\system32\sbeio.dll
2017-07-06 17:53:56 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-07-06 17:53:53 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2017-07-06 17:53:53 ----A---- C:\Windows\system32\WindowsCodecs.dll
2017-07-06 17:53:53 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2017-07-06 17:53:51 ----A---- C:\Windows\system32\t2embed.dll
2017-07-06 17:53:49 ----A---- C:\Windows\explorer.exe
2017-07-06 17:53:48 ----A---- C:\Windows\system32\MP4SDECD.DLL
2017-07-06 17:53:46 ----A---- C:\Windows\system32\asycfilt.dll
2017-07-06 17:53:40 ----A---- C:\Windows\system32\tzres.dll
2017-07-06 17:53:07 ----A---- C:\Windows\system32\wmpmde.dll
2017-07-06 17:53:05 ----A---- C:\Windows\system32\rpcrt4.dll
2017-07-06 17:53:02 ----A---- C:\Windows\system32\inetcomm.dll
2017-07-06 17:53:00 ----A---- C:\Windows\system32\emdmgmt.dll
2017-07-06 17:52:59 ----A---- C:\Windows\system32\drivers\nwifi.sys
2017-07-06 17:52:59 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-07-06 17:52:59 ----A---- C:\Windows\system32\dataclen.dll
2017-07-06 17:52:59 ----A---- C:\Windows\system32\cdd.dll
2017-07-06 17:52:57 ----A---- C:\Windows\system32\quartz.dll
2017-07-06 17:52:52 ----A---- C:\Windows\system32\WMNetMgr.dll
2017-07-06 17:52:52 ----A---- C:\Windows\system32\logagent.exe
2017-07-06 17:52:48 ----A---- C:\Windows\system32\msasn1.dll
2017-07-06 17:52:44 ----A---- C:\Windows\system32\msxml3.dll
2017-07-06 17:52:42 ----A---- C:\Windows\system32\wersvc.dll
2017-07-06 17:52:42 ----A---- C:\Windows\system32\Faultrep.dll
2017-07-06 17:52:36 ----A---- C:\Windows\system32\wmpdxm.dll
2017-07-06 17:52:21 ----A---- C:\Windows\system32\RMActivate_isv.exe
2017-07-06 17:52:21 ----A---- C:\Windows\system32\RMActivate.exe
2017-07-06 17:52:19 ----A---- C:\Windows\system32\secproc.dll
2017-07-06 17:52:19 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2017-07-06 17:52:19 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2017-07-06 17:52:18 ----A---- C:\Windows\system32\secproc_isv.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\secproc_ssp.dll
2017-07-06 17:52:15 ----A---- C:\Windows\system32\msdrm.dll
2017-07-06 17:52:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2017-07-06 17:52:10 ----A---- C:\Windows\system32\connect.dll
2017-07-06 17:52:08 ----A---- C:\Windows\system32\winsrv.dll
2017-07-06 17:52:08 ----A---- C:\Windows\system32\csrsrv.dll
2017-07-06 17:52:04 ----A---- C:\Windows\system32\mstscax.dll
2017-07-06 17:52:04 ----A---- C:\Windows\system32\mstsc.exe
2017-07-06 17:52:02 ----A---- C:\Windows\system32\kernel32.dll
2017-07-06 17:51:57 ----A---- C:\Windows\system32\msvidc32.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\msyuv.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\msrle32.dll
2017-07-06 17:51:55 ----A---- C:\Windows\system32\iyuv_32.dll
2017-07-06 17:51:54 ----A---- C:\Windows\system32\tsbyuv.dll
2017-07-06 17:51:54 ----A---- C:\Windows\system32\avifil32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\msvfw32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\mciavi32.dll
2017-07-06 17:51:52 ----A---- C:\Windows\system32\avicap32.dll
2017-07-06 17:49:52 ----A---- C:\Windows\system32\comctl32.dll
2017-07-06 17:49:26 ----A---- C:\Windows\system32\rastls.dll
2017-07-06 17:49:26 ----A---- C:\Windows\system32\raschap.dll
2017-07-06 17:47:07 ----A---- C:\Windows\system32\WSDApi.dll
2017-07-06 17:40:09 ----A---- C:\Windows\system32\unregmp2.exe
2017-07-06 17:40:05 ----A---- C:\Windows\system32\spwmp.dll
2017-07-06 17:40:03 ----A---- C:\Windows\system32\dxmasf.dll
2017-07-06 17:38:14 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2017-07-06 17:38:12 ----A---- C:\Windows\system32\schannel.dll
2017-07-06 16:46:58 ----A---- C:\Windows\system32\drivers\netio.sys
2017-07-06 16:38:26 ----D---- C:\55e898352a4602b80055f7659591
2017-07-06 16:37:24 ----D---- C:\ProgramData\NVIDIA
2017-07-06 16:27:19 ----D---- C:\0237310b14e1cd16a77c6a
2017-07-06 16:18:38 ----A---- C:\Windows\system32\kbd106n.dll
2017-07-06 16:18:30 ----A---- C:\Windows\system32\kd1394.dll
2017-07-06 16:18:27 ----A---- C:\Windows\system32\srdelayed.exe
2017-07-06 16:18:26 ----A---- C:\Windows\system32\srclient.dll
2017-07-06 16:18:24 ----A---- C:\Windows\system32\ci.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\winresume.exe
2017-07-06 16:18:23 ----A---- C:\Windows\system32\winload.exe
2017-07-06 16:18:23 ----A---- C:\Windows\system32\srcore.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-07-06 16:18:23 ----A---- C:\Windows\system32\rstrui.exe
2017-07-06 16:05:20 ----A---- C:\Windows\system32\untfs.dll
2017-07-06 16:05:20 ----A---- C:\Windows\system32\autochk.exe
2017-07-06 15:56:47 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2017-07-06 15:56:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbport.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbhub.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbehci.sys
2017-07-06 15:56:46 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2017-07-06 15:55:22 ----D---- C:\Users\M\AppData\Roaming\Macromedia
2017-07-06 15:53:52 ----A---- C:\Windows\system32\msxml4r.dll
2017-07-06 15:53:52 ----A---- C:\Windows\system32\msxml4a.dll
2017-07-06 15:51:50 ----D---- C:\ProgramData\CyberLink
2017-07-06 15:47:05 ----A---- C:\Windows\system32\drivers\atswpdrv.sys
2017-07-06 15:47:03 ----D---- C:\Program Files\Fingerprint Sensor
2017-07-06 15:47:01 ----D---- C:\Windows\Downloaded Installations
2017-07-06 15:40:25 ----A---- C:\Windows\system32\BtwRSupport.dll
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-MX
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-AR
2017-07-06 15:40:17 ----D---- C:\Program Files\WIDCOMM
2017-07-06 15:35:55 ----D---- C:\Program Files\Launch Manager
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvexpbar.dll
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvcpluir.dll
2017-07-06 15:34:58 ----A---- C:\Windows\system32\nvcplui.exe
2017-07-06 15:32:21 ----A---- C:\Windows\system32\NVUNINST.EXE
2017-07-06 15:29:22 ----A---- C:\Windows\system32\difxapi.dll
2017-07-06 15:29:14 ----A---- C:\Windows\system32\drivers\iaStor.sys
2017-07-06 15:29:01 ----D---- C:\Users\M\AppData\Roaming\InstallShield
2017-07-06 15:25:45 ----A---- C:\Windows\system32\jsproxy.dll
2017-07-06 15:25:43 ----A---- C:\Windows\system32\mstime.dll
2017-07-06 15:25:43 ----A---- C:\Windows\system32\mshtml.dll
2017-07-06 15:25:42 ----A---- C:\Windows\system32\urlmon.dll
2017-07-06 15:25:41 ----A---- C:\Windows\system32\wininet.dll
2017-07-06 15:25:39 ----A---- C:\Windows\system32\ieframe.dll
2017-07-06 15:19:15 ----A---- C:\Windows\system32\IPSECSVC.DLL
2017-07-06 15:08:06 ----D---- C:\224816ad40cc2da57a9353
2017-07-06 15:05:23 ----A---- C:\Windows\system32\wintrust.dll
2017-07-06 15:05:21 ----A---- C:\Windows\system32\cabview.dll
2017-07-06 14:58:34 ----D---- C:\Users\M\AppData\Roaming\Adobe
2017-07-06 14:58:17 ----D---- C:\Users\M\AppData\Roaming\Google
2017-07-06 14:57:30 ----A---- C:\Windows\system32\es.dll
2017-07-06 14:47:40 ----D---- C:\16cd0dc0ac1e581741473c89125b80
2017-07-06 14:43:39 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2017-07-06 14:43:12 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2017-07-06 14:43:07 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2017-07-06 14:41:53 ----A---- C:\Windows\system32\pacerprf.dll
2017-07-06 14:41:53 ----A---- C:\Windows\system32\drivers\pacer.sys
2017-07-06 14:40:48 ----A---- C:\Windows\system32\scrobj.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\wshext.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\scrrun.dll
2017-07-06 14:40:47 ----A---- C:\Windows\system32\cscript.exe
2017-07-06 14:40:46 ----A---- C:\Windows\system32\wscript.exe
2017-07-06 14:37:37 ----A---- C:\Windows\system32\drivers\rmcast.sys
2017-07-06 14:36:44 ----A---- C:\Windows\system32\RacEngn.dll
2017-07-06 14:30:22 ----A---- C:\Windows\system32\gameux.dll
2017-07-06 14:28:59 ----D---- C:\Users\M\AppData\Roaming\Identities
2017-07-06 14:26:47 ----D---- C:\ProgramData\Google
2017-07-06 14:26:43 ----D---- C:\Program Files\Google
2017-07-06 14:26:21 ----SD---- C:\Users\M\AppData\Roaming\Microsoft
2017-07-06 14:26:21 ----D---- C:\Users\M\AppData\Roaming\Media Center Programs
2017-07-06 14:26:21 ----D---- C:\Users\M\AppData\Roaming\Acer GameZone Console
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Šablony
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Plocha
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Oblíbené položky
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Nabídka Start
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Dokumenty
2017-07-06 14:24:22 ----SHD---- C:\ProgramData\Data aplikací
2017-07-06 14:20:29 ----ASH---- C:\hiberfil.sys
2017-07-06 14:15:23 ----D---- C:\Windows\SoftwareDistribution
2017-07-06 14:12:26 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 month======

2017-07-09 15:43:58 ----D---- C:\Windows\Temp
2017-07-09 15:41:29 ----D---- C:\ProgramData
2017-07-09 15:38:36 ----D---- C:\Windows
2017-07-09 15:33:05 ----SHD---- C:\System Volume Information
2017-07-09 15:32:20 ----D---- C:\Windows\System32
2017-07-09 15:32:20 ----D---- C:\Windows\inf
2017-07-09 15:32:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-07-09 15:24:55 ----D---- C:\Windows\system32\catroot2
2017-07-09 15:23:58 ----D---- C:\Program Files\Acer
2017-07-09 15:23:55 ----D---- C:\Windows\system32\Msdtc
2017-07-09 15:23:55 ----D---- C:\Windows\system32\drivers
2017-07-09 15:23:55 ----D---- C:\Windows\Microsoft.NET
2017-07-09 15:23:50 ----D---- C:\Windows\system32\wbem
2017-07-09 15:21:40 ----D---- C:\Windows\system32\config
2017-07-09 15:20:41 ----D---- C:\Windows\winsxs
2017-07-09 15:20:07 ----D---- C:\Windows\Tasks
2017-07-09 15:20:07 ----D---- C:\Windows\system
2017-07-09 15:20:06 ----D---- C:\Windows\system32\XPSViewer
2017-07-09 15:20:06 ----D---- C:\Windows\system32\Tasks
2017-07-09 15:20:06 ----D---- C:\Windows\system32\sysprep
2017-07-09 15:20:06 ----D---- C:\Windows\system32\spool
2017-07-09 15:20:06 ----D---- C:\Windows\system32\SLUI
2017-07-09 15:20:06 ----D---- C:\Windows\system32\setup
2017-07-09 15:20:06 ----D---- C:\Windows\system32\RTCOM
2017-07-09 15:20:06 ----D---- C:\Windows\system32\ras
2017-07-09 15:20:06 ----D---- C:\Windows\system32\oobe
2017-07-09 15:20:05 ----D---- C:\Windows\system32\migwiz
2017-07-09 15:20:04 ----D---- C:\Windows\system32\migration
2017-07-09 15:20:04 ----D---- C:\Windows\system32\ias
2017-07-09 15:20:04 ----D---- C:\Windows\system32\en-US
2017-07-09 15:19:46 ----D---- C:\Windows\system32\drivers\etc
2017-07-09 15:19:46 ----D---- C:\Windows\system32\cs-CZ
2017-07-09 15:19:46 ----D---- C:\Windows\system32\CodeIntegrity
2017-07-09 15:19:45 ----D---- C:\Windows\ShellNew
2017-07-09 15:19:43 ----RD---- C:\Windows\Offline Web Pages
2017-07-09 15:19:43 ----D---- C:\Windows\rescache
2017-07-09 15:19:35 ----SHD---- C:\Windows\Installer
2017-07-09 15:19:35 ----RSD---- C:\Windows\Media
2017-07-09 15:19:33 ----RSD---- C:\Windows\Fonts
2017-07-09 15:19:32 ----RSD---- C:\Windows\assembly
2017-07-09 15:19:32 ----D---- C:\Windows\ehome
2017-07-09 15:19:23 ----D---- C:\Program Files\Windows Sidebar
2017-07-09 15:19:23 ----D---- C:\Program Files\Windows Mail
2017-07-09 15:19:23 ----D---- C:\Program Files\Windows Journal
2017-07-09 15:19:23 ----D---- C:\Program Files\Windows Defender
2017-07-09 15:19:23 ----D---- C:\Program Files\Windows Collaboration
2017-07-09 15:19:22 ----D---- C:\Program Files\Movie Maker
2017-07-09 15:19:22 ----D---- C:\Program Files\Internet Explorer
2017-07-09 15:19:21 ----D---- C:\Program Files\Common Files\System
2017-07-09 15:19:21 ----D---- C:\Program Files\Common Files\Services
2017-07-09 15:18:15 ----D---- C:\Windows\registration
2017-07-09 15:00:10 ----D---- C:\Windows\Prefetch
2017-07-09 13:48:35 ----SD---- C:\ProgramData\Microsoft
2017-07-09 13:48:33 ----D---- C:\Windows\system32\drivers\UMDF
2017-07-09 11:37:30 ----D---- C:\ProgramData\Microsoft Help
2017-07-09 01:24:02 ----D---- C:\Windows\system32\catroot
2017-07-09 01:04:41 ----D---- C:\Program Files\Common Files
2017-07-09 01:04:40 ----D---- C:\ProgramData\McAfee
2017-07-09 01:03:19 ----RHD---- C:\MSOCache
2017-07-09 00:52:53 ----SD---- C:\Windows\Downloaded Program Files
2017-07-09 00:52:53 ----D---- C:\Windows\Driver Cache
2017-07-09 00:52:41 ----D---- C:\Program Files\NewTech Infosystems
2017-07-09 00:52:40 ----HD---- C:\Program Files\InstallShield Installation Information
2017-07-09 00:52:40 ----D---- C:\Program Files\Microsoft Office
2017-07-09 00:52:39 ----D---- C:\Program Files\eSobi
2017-07-09 00:52:38 ----D---- C:\Program Files\Cyberlink
2017-07-09 00:52:30 ----D---- C:\Program Files\Acer GameZone
2017-07-09 00:52:26 ----D---- C:\ACER
2017-07-08 23:52:27 ----D---- C:\Windows\Debug
2017-07-08 19:56:50 ----D---- C:\Program Files
2017-07-08 15:41:13 ----D---- C:\Windows\system32\NDF
2017-07-08 15:09:25 ----A---- C:\Windows\system.ini
2017-07-08 15:02:36 ----D---- C:\Windows\AppPatch
2017-07-08 02:43:15 ----D---- C:\Windows\Logs
2017-07-07 23:34:56 ----D---- C:\Windows\system32\drivers\cs-CZ
2017-07-07 22:37:45 ----A---- C:\Windows\win.ini
2017-07-07 20:25:19 ----D---- C:\Windows\Panther
2017-07-07 01:11:13 ----D---- C:\ProgramData\SiteAdvisor
2017-07-07 00:18:39 ----D---- C:\Program Files\Common Files\microsoft shared
2017-07-07 00:10:46 ----D---- C:\Program Files\MSBuild
2017-07-06 23:54:56 ----D---- C:\Windows\system32\WDI
2017-07-06 19:32:33 ----D---- C:\Program Files\Common Files\InstallShield
2017-07-06 19:06:08 ----D---- C:\Program Files\Windows Media Player
2017-07-06 19:05:53 ----D---- C:\Windows\PolicyDefinitions
2017-07-06 19:05:41 ----D---- C:\Windows\system32\manifeststore
2017-07-06 18:25:27 ----AC---- C:\Windows\system32\mrt.exe
2017-07-06 16:51:22 ----D---- C:\Windows\system32\OEM
2017-07-06 16:34:02 ----D---- C:\Windows\system32\Boot
2017-07-06 15:40:26 ----SD---- C:\Windows\system32\Microsoft
2017-07-06 15:40:20 ----D---- C:\Windows\system32\zh-TW
2017-07-06 15:40:19 ----D---- C:\Windows\system32\zh-CN
2017-07-06 15:40:19 ----D---- C:\Windows\system32\sv-SE
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ru-RU
2017-07-06 15:40:19 ----D---- C:\Windows\system32\pt-BR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\pl-PL
2017-07-06 15:40:19 ----D---- C:\Windows\system32\nl-NL
2017-07-06 15:40:19 ----D---- C:\Windows\system32\nb-NO
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ko-KR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\ja-JP
2017-07-06 15:40:19 ----D---- C:\Windows\system32\it-IT
2017-07-06 15:40:19 ----D---- C:\Windows\system32\fr-FR
2017-07-06 15:40:19 ----D---- C:\Windows\system32\fi-FI
2017-07-06 15:40:19 ----D---- C:\Windows\system32\es-ES
2017-07-06 15:40:19 ----D---- C:\Windows\system32\de-DE
2017-07-06 15:40:19 ----D---- C:\Windows\system32\da-DK
2017-07-06 15:34:36 ----D---- C:\Windows\Help
2017-07-06 15:29:22 ----D---- C:\Program Files\Intel
2017-07-06 15:01:32 ----D---- C:\Windows\system32\LogFiles
2017-07-06 14:29:44 ----D---- C:\Windows\system32\restore
2017-07-06 14:26:21 ----RD---- C:\Users
2017-07-06 14:24:22 ----D---- C:\Program Files\Windows NT

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [2017-07-07 157384]
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswblogx.sys [2017-07-07 276704]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [2017-07-07 50352]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2017-07-07 70840]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2017-07-07 296312]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-07-20 324120]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [2017-07-07 266976]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2017-07-07 39752]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2017-07-07 70088]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2017-07-07 774288]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2017-07-07 496976]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2017-07-07 123896]
R2 zumbus;Zune Bus Enumerator Driver; C:\Windows\system32\DRIVERS\zumbus.sys [2016-03-13 41472]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-12-03 1175456]
R3 aswStmXP;aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [2017-07-07 202688]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2008-04-25 146688]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2017-05-04 413704]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2008-07-02 21264]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2017-07-08 26168]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2017-07-08 40504]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2016-01-22 3346000]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-04-21 81296]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\System32\Drivers\LEqdUsb.Sys [2015-06-18 52368]
R3 NETwNv32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETwNv32.sys [2011-10-31 7346176]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2016-12-07 171312]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-08-07 7545824]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-07-28 39280]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-04-20 1759744]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-11-18 1319216]
R3 winbondcir;Winbond IR Transceiver; C:\Windows\system32\DRIVERS\winbondcir.sys [2007-03-28 43008]
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys [2017-07-07 42824]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 epmntdrv;epmntdrv; \??\C:\Windows\system32\epmntdrv.sys [2014-11-18 15968]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\system32\EuGdiDrv.sys [2014-11-18 10208]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WiseHDInfo;WiseHDInfo; \??\C:\Windows\WiseHDInfo32.dll [2017-07-07 13264]
S3 WiseRegNotify;WiseRegNotify; \??\C:\Windows\WiseRegNotify.sys [2017-07-07 23984]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-07-07 263312]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-08-07 196608]
R2 WiseBootAssistant;Wise Boot Assistant; C:\Program Files\Wise\Wise Care 365\BootTime.exe [2016-07-26 1343736]
R3 SystemExplorerHelpService;System Explorer Service; C:\Program Files\System Explorer\service\SystemExplorerService.exe [2014-12-20 567008]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
S3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2017-07-07 5815840]
S3 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-02-12 440872]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2016-03-03 1082560]
S3 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-06 153168]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-06 153168]
S3 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-07-20 354840]
S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-09-11 118680]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

Ale dělá to pořád to samé... :(

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118715
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zasekávají se prohlížeče

#8 Příspěvek od Rudy »

Smazáno, ještě zkusíme prohlížeče vyčistit. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

párek
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 08 črc 2017 14:51

Re: Zasekávají se prohlížeče

#9 Příspěvek od párek »

Zoek.exe v5.0.0.1 Updated 27-09-2015
Tool run by M on ne 09.07.2017 at 18:08:49,42.
Microsoft® Windows Vista™ Home Premium 6.0.6001 Service Pack 1 x86
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\M\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

9.7.2017 18:13:00 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\Cyberlink deleted successfully
C:\Program Files\eSobi deleted successfully
C:\Program Files\MSXML 4.0 deleted successfully
C:\PROGRA~2\BSD deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1063793905-2494339301-520684143-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully
HKEY_USERS\S-1-5-21-1063793905-2494339301-520684143-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-1063793905-2494339301-520684143-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\cxt5a1rc.default\prefs.js:

Added to C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\cxt5a1rc.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\Program Files\Cyberlink not found
C:\Program Files\eSobi not found
C:\Program Files\Mozilla Firefox\.autoreg deleted
C:\Users\M\AppData\Roaming\svchost.exe.tmp deleted
C:\Users\M\AppData\Local\edsinstaller.txt-20170707.log deleted
C:\Windows\system32\config\systemprofile\AppData\Local\AVAST Software deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\cxt5a1rc.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\cxt5a1rc.default
2D45A8274592D965EDFB62ACCB1150B1 - C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll - Google Update
81FB8AE9ECFAC813A81867DFCB5B1F3B - C:\Program Files\Adobe\Reader 8.0\Reader\browser\nppdf32.dll - Adobe Acrobat


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - No path found[]
gomekmidlodglbbmalcneegieacbdmki - No path found[]

Video Downloader - M\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc
Tampermonkey - M\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo

==== Chromium Fix ======================

C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc deleted successfully
C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aiimdkdngfcipjohbjenkahhlhccpdbc_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://homepage.acer.com/rdr.aspx?b=ACA ... pire_7730g"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{ABEF07B2-78EB-4DAE-BFF4-7E2C145DFBB8}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{ABEF07B2-78EB-4DAE-BFF4-7E2C145DFBB8} Google Url="http://www.google.com/search?q={searchT ... AW_csCZ752"

==== Reset Google Chrome ======================

C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=153 folders=26 2890136 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\M\AppData\Local\Temp will be emptied at reboot
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\M\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on ne 09.07.2017 at 18:33:57,08 ======================




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows Vista (TM) Home Premium x86
Ran by M (Administrator) on ne 09.07.2017 at 18:36:01,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 20

Successfully deleted: C:\Windows\System32\Tasks\Wise Turbo Checker (Task)
Successfully deleted: C:\Windows\System32\Tasks\WiseUninsDetecter (Task)
Successfully deleted: C:\Windows\Tasks\Wise Turbo Checker.job (Task)
Successfully deleted: C:\Windows\Tasks\WiseUninsDetecter.job (Task)
Successfully deleted: C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A4Q885VR (Temporary Internet Files Folder)
Successfully deleted: C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BWUPCSD0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FH0G1701 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JNM6GKZ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KRRFH97O (Temporary Internet Files Folder)
Successfully deleted: C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LC7QV0GB (Temporary Internet Files Folder)
Successfully deleted: C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X55SSMP8 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\M\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y35J7CIW (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A4Q885VR (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BWUPCSD0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FH0G1701 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JNM6GKZ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KRRFH97O (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LC7QV0GB (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X55SSMP8 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y35J7CIW (Temporary Internet Files Folder)



Registry: 1

Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 09.07.2017 at 18:41:11,71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118715
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zasekávají se prohlížeče

#10 Příspěvek od Rudy »

Utility něco smazaly. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

párek
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 08 črc 2017 14:51

Re: Zasekávají se prohlížeče

#11 Příspěvek od párek »

Chová se to maličko jinak. Chvilku prohlížeč začne načítat stránku, pak se zastaví, vše zmizí, zůstane jen bílá stránka s lištou nahoře a dále se nic neděje.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118715
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zasekávají se prohlížeče

#12 Příspěvek od Rudy »

OK. Udělejte ještě kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

párek
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 08 črc 2017 14:51

Re: Zasekávají se prohlížeče

#13 Příspěvek od párek »

<?xml version="1.0" encoding="UTF-16" ?>
- <mbam-log>
- <header>
<date>2017/07/09 20:33:28 +0200</date>
<logfile>mbam-log-2017-07-09 (20-33-10).xml</logfile>
<isadmin>yes</isadmin>
</header>
- <engine>
<version>2.2.1.1043</version>
<malware-database>v2017.07.09.06</malware-database>
<rootkit-database>v2017.05.27.01</rootkit-database>
<license>trial</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>disabled</self-protection>
</engine>
- <system>
<hostname>M-PC</hostname>
<ip>192.168.1.102</ip>
<osversion>Windows Vista Service Pack 1</osversion>
<arch>x86</arch>
<username>M</username>
<filesys>NTFS</filesys>
</system>
- <summary>
<type>custom</type>
<result>completed</result>
<objects>400176</objects>
<time>12326</time>
<processes>0</processes>
<modules>0</modules>
<keys>0</keys>
<values>0</values>
<datas>0</datas>
<folders>0</folders>
<files>0</files>
<sectors>0</sectors>
</summary>
- <options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>enabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<heuristics>enabled</heuristics>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items />
</mbam-log>

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118715
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Zasekávají se prohlížeče

#14 Příspěvek od Rudy »

Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

párek
Návštěvník
Návštěvník
Příspěvky: 9
Registrován: 08 črc 2017 14:51

Re: Zasekávají se prohlížeče

#15 Příspěvek od párek »

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 12.7.2017
Čas skenování: 0:07:00
Protokol: 1.txt
Správce: Ano

Verze: 2.2.1.1043
Databáze malwaru: v2017.07.11.08
Databáze rootkitů: v2017.05.27.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows Vista Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: M

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 307105
Uplynulý čas: 2 hod, 25 min, 38 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 3
PUP.Optional.TweakBit, HKLM\SOFTWARE\TweakBit, , [18ece382acfd44f2a9ddc3b580807c84],
PUP.Optional.TweakBit, HKLM\SOFTWARE\TWEAKBIT\ATPopups, , [ae56df867c2dbe78d801ee8b689a9f61],
PUP.Optional.TweakBit, HKLM\SOFTWARE\TWEAKBIT\ATUpdaters, , [bd47c5a07c2d68cef81d57af8f7452ae],

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 1
Trojan.Agent.E, C:\Users\M\AppData\Roaming\svchost.exe, , [c2421a4bdccdba7cb5b20d6339c757a9],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Odpovědět