VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o preventivní kontrolu.

https://forum.viry.cz:443/viewtopic.php?t=154290

Stránka 1 z 1

Prosím o preventivní kontrolu.

Napsal: 24 kvě 2018 15:40
od pepe3dx
Dobrý den,

prosím o preventivní kontrolu logu. Některé appky se spouštějí nezvykle pomalu.

Letos v lednu jsem dělal komplet reinstall (cca po 8 letech), ale někdy čekám na odezvu nějak podezřele dlouho.


Předem děkuji za Váš čas.

Pepe3dx



Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepe3dx at 2018-05-24 16:29:05
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 16 GB (13%) free of 122 GB
Total RAM: 8146 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:29:14, on 24.5.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19003)
Boot mode: Normal

Running processes:
C:\Program Files\My Lockbox\mylbx.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Windows\V0770Mon.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\trend micro\Pepe3dx.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [V0770Mon.exe] C:\Windows\V0770Mon.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://files.creative.com/Web/softwareu ... PIDPDE.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: ISCT Always Updated Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MEmusvc - Microvirt Software Technology Co. Ltd. - D:\Games\PUBG\Microvirt\MEmu\MemuService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8969 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
winlogon.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
atieclxx
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
D:\Games\PUBG\Microvirt\MEmu\MemuService.exe
"C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
taskeng.exe {D1D232AA-B043-4FAF-AB40-C5A5C107A96C}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files\My Lockbox\mylbx.exe" /a
KHALMNPR.EXE /API
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
"C:\Windows\V0770Mon.exe"
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" /watchfiles startup
"C:\Program Files\AMD\CNext\CNext\amddvr.exe"
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 3452
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
C:\Windows\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2816.0.2119443228\2039005905" -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" "C:\Users\Pepe3dx\AppData\LocalLow\Mozilla\Temp-{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}" 2816 "\\.\pipe\gecko-crash-server-pipe.2816" 1140 gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2816.3.1151841642\2112115172" -childID 1 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 2816 "\\.\pipe\gecko-crash-server-pipe.2816" 1672 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2816.13.1551891893\1657495060" -childID 2 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 2816 "\\.\pipe\gecko-crash-server-pipe.2816" 2596 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2816.20.1790895743\2013338837" -childID 3 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 2816 "\\.\pipe\gecko-crash-server-pipe.2816" 2952 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2816.48.2098655537\156473081" -childID 7 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 2816 "\\.\pipe\gecko-crash-server-pipe.2816" 2544 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2816.55.1545651045\2145018791" -childID 8 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 2816 "\\.\pipe\gecko-crash-server-pipe.2816" 3596 tab
"C:\Program Files\Mozilla Firefox\plugin-container.exe" --channel="2816.62.1107126097\1958510230" "C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll" -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 308046B0AF4A39CB 2816 "\\.\pipe\gecko-crash-server-pipe.2816" 7416 plugin
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536

"C:\Users\Pepe3dx\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

=========Mozilla firefox=========

ProfilePath - C:\Users\Pepe3dx\AppData\Roaming\Mozilla\Firefox\Profiles\zyxtzjq4.default-1526235570840

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll

C:\Program Files\Mozilla Firefox\extensions\
cs@dictionaries.addons.mozilla.org

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26 435320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2017-01-03 863320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26 366200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03 758360]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-12-12 7560296]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2015-08-26 3113592]
"mylbx"=C:\Program Files\My Lockbox\mylbx.exe [2016-06-04 2606824]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2018-03-13 2208448]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AirDroid 3]
C:\Program Files (x86)\AirDroid\AirDroid.exe [2018-03-15 15645816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GUDelayStartup]
C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Live! Central 3]
C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe [2013-08-15 461312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2010-02-05 385856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2018-04-03 3199776]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-04 291608]
"Super-Charger"=C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [2012-01-03 502288]
"V0770Mon.exe"=C:\Windows\V0770Mon.exe [2012-06-01 32884]
"NokiaMServer"=C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2015-07-02 65992]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-05-24 16:15:23 ----A---- C:\Windows\system32\WPRO_41_2001woem.tmp
2018-05-19 17:05:30 ----D---- C:\Program Files (x86)\Comodo
2018-05-19 10:22:51 ----D---- C:\Program Files (x86)\Adobe
2018-05-19 10:22:37 ----D---- C:\ProgramData\Adobe
2018-05-09 15:25:59 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-05-09 15:25:59 ----A---- C:\Windows\system32\mshtml.dll
2018-05-09 15:25:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-05-09 15:25:58 ----A---- C:\Windows\system32\ieframe.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\winload.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\wininet.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\win32k.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\vbscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\urlmon.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\TSpkg.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\srvsvc.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\rpcss.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\oleaut32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\msfeeds.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\jscript9.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\jscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\iertutil.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srv.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\comsvcs.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\clfs.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\catsrvut.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\sscore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\hhsetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\hh.exe
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wow64win.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wow64.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\winsrv.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\webcheck.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wdigest.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\sspicli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\sscore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\srcore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\smss.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\schannel.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\rpchttp.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\rpcrt4.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ole32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\occache.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ntdll.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ncrypt.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\msv1_0.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\msrating.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\mshtmled.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\lsasrv.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\KernelBase.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\kernel32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\kerberos.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\jsproxy.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\jscript9diag.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\itss.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\itircl.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\inseng.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieUnatt.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieui.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iesetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iernonce.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iedkcs32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieapfltr.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ie4uinit.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\hhsetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\hal.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\dxtrans.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\dxtmsft.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\conhost.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\comcat.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\certcli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\bcrypt.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\advapi32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\hh.exe
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\user.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\wow64cpu.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\sspisrv.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\srclient.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\secur32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\rstrui.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\oleres.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\ntvdm64.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\msobjs.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\msaudite.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\lsass.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\drivers\appid.sys
2018-05-09 15:25:55 ----A---- C:\Windows\system32\csrsrv.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\cryptbase.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\credssp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\auditpol.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidsvc.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidapi.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\apisetschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\adtschema.dll
2018-05-07 19:03:29 ----D---- C:\Program Files\Common Files\ATI Technologies
2018-05-07 19:01:29 ----D---- C:\Program Files (x86)\AMD APP
2018-05-07 19:01:20 ----D---- C:\Program Files\ATI Technologies
2018-05-07 19:01:16 ----D---- C:\Program Files\ATI
2018-05-07 18:56:50 ----D---- C:\Program Files (x86)\AMD
2018-05-07 18:56:17 ----D---- C:\Program Files (x86)\VulkanRT
2018-05-07 18:53:40 ----D---- C:\Program Files\AMD
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wups.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuwebv.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wups2.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wups.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wudriver.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wucltux.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuaueng.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuauclt.exe
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuapp.exe
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuapi.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\WinSetupUI.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\tzres.dll
2018-05-07 17:46:30 ----D---- C:\Program Files (x86)\DriverToolkit
2018-05-07 16:47:30 ----A---- C:\Windows\system32\SET574C.tmp
2018-05-07 08:17:55 ----A---- C:\Windows\system32\SET83D0.tmp
2018-05-07 08:17:54 ----A---- C:\Windows\system32\SET7F75.tmp
2018-05-07 08:02:34 ----D---- C:\ProgramData\Dell Inc
2018-05-07 08:02:29 ----D---- C:\ProgramData\SupportAssist
2018-05-07 07:45:25 ----A---- C:\Windows\system32\SETDB90.tmp
2018-05-07 07:38:30 ----D---- C:\8336500659725115574

======List of files/folders modified in the last 1 month======

2018-05-24 16:29:13 ----D---- C:\Windows\Temp
2018-05-24 16:29:13 ----D---- C:\Program Files\trend micro
2018-05-24 16:28:35 ----D---- C:\Windows\system32\config
2018-05-24 16:21:15 ----D---- C:\Windows\System32
2018-05-24 16:21:15 ----D---- C:\Windows\inf
2018-05-24 16:21:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-05-24 16:17:25 ----A---- C:\Windows\SYSWOW64\log.txt
2018-05-24 16:15:22 ----D---- C:\Windows
2018-05-24 16:10:42 ----D---- C:\Users\Pepe3dx\AppData\Roaming\TS3Client
2018-05-24 16:10:42 ----D---- C:\Users\Pepe3dx\AppData\Roaming\MPC-HC
2018-05-24 16:10:34 ----D---- C:\Windows\debug
2018-05-23 10:33:09 ----D---- C:\Users\Pepe3dx\AppData\Roaming\AirDroid
2018-05-22 17:43:09 ----D---- C:\Users\Pepe3dx\AppData\Roaming\Skype
2018-05-22 15:52:08 ----SHD---- C:\Windows\Installer
2018-05-22 15:52:08 ----SHD---- C:\Config.Msi
2018-05-22 15:52:07 ----RD---- C:\Program Files (x86)\Skype
2018-05-22 15:52:07 ----D---- C:\Program Files (x86)\Common Files
2018-05-22 15:52:06 ----D---- C:\ProgramData\Skype
2018-05-20 20:14:43 ----D---- C:\Program Files (x86)\Battle.net
2018-05-19 17:05:30 ----RD---- C:\Program Files (x86)
2018-05-19 17:03:14 ----D---- C:\Program Files\Mozilla Firefox
2018-05-19 17:03:14 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-19 16:03:51 ----D---- C:\Windows\system32\Tasks
2018-05-19 16:03:20 ----D---- C:\Windows\SysWOW64
2018-05-19 10:25:32 ----D---- C:\Users\Pepe3dx\AppData\Roaming\Adobe
2018-05-19 10:22:37 ----HD---- C:\ProgramData
2018-05-16 18:56:33 ----SHD---- C:\System Volume Information
2018-05-12 14:19:54 ----D---- C:\Windows\Microsoft.NET
2018-05-12 14:17:29 ----RSD---- C:\Windows\assembly
2018-05-12 13:55:04 ----D---- C:\Program Files\TeamSpeak 3 Client
2018-05-09 18:06:42 ----D---- C:\Windows\winsxs
2018-05-09 18:05:27 ----D---- C:\Windows\SYSWOW64\en-US
2018-05-09 18:05:27 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-05-09 18:05:27 ----D---- C:\Program Files\Internet Explorer
2018-05-09 18:05:27 ----D---- C:\Program Files (x86)\Internet Explorer
2018-05-09 18:05:26 ----D---- C:\Windows\system32\en-US
2018-05-09 18:05:26 ----D---- C:\Windows\system32\drivers\en-US
2018-05-09 18:05:26 ----D---- C:\Windows\system32\drivers
2018-05-09 18:05:26 ----D---- C:\Windows\system32\cs-CZ
2018-05-09 18:05:25 ----D---- C:\Windows\system32\Boot
2018-05-09 18:05:25 ----D---- C:\Windows\AppPatch
2018-05-09 17:50:18 ----D---- C:\Windows\system32\MRT
2018-05-09 17:50:16 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2018-05-09 17:50:13 ----AC---- C:\Windows\system32\MRT.exe
2018-05-09 17:49:53 ----D---- C:\Windows\system32\catroot2
2018-05-09 17:48:08 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-05-09 15:21:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-05-09 15:21:16 ----D---- C:\Windows\system32\Macromed
2018-05-09 15:21:15 ----D---- C:\Windows\SYSWOW64\Macromed
2018-05-07 21:58:28 ----D---- C:\Windows\Prefetch
2018-05-07 19:03:29 ----D---- C:\Program Files\Common Files
2018-05-07 19:01:20 ----RD---- C:\Program Files
2018-05-07 19:00:14 ----D---- C:\AMD
2018-05-07 18:56:29 ----D---- C:\Windows\system32\DriverStore
2018-05-07 17:41:12 ----D---- C:\Windows\SoftwareDistribution
2018-05-07 17:37:55 ----D---- C:\Windows\system32\catroot
2018-05-07 17:34:38 ----D---- C:\ProgramData\Package Cache
2018-05-07 16:58:57 ----D---- C:\Program Files\Opera
2018-05-07 16:58:08 ----RD---- C:\Windows\Minidump
2018-05-07 08:14:41 ----D---- C:\Program Files (x86)\Steam
2018-05-07 08:14:27 ----D---- C:\Windows\Logs
2018-05-07 05:42:20 ----D---- C:\Program Files (x86)\eMule
2018-05-05 18:32:17 ----D---- C:\KMPlayer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 FSProFilter2;FSPro File Filter 2; C:\Windows\System32\Drivers\FSPFltd2.sys [2011-06-03 57648]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-01-04 16152]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2017-07-29 554408]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2018-02-01 34280]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2018-02-01 846624]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2018-02-01 59096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2018-02-01 123544]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2017-07-29 305496]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2017-07-29 1026280]
R2 memudrv;memudrv; \??\D:\Games\PUBG\Microvirt\MEmuHyperv\MEmuDrv.sys [2015-11-02 260368]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2018-02-01 41570184]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2018-02-01 536968]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2017-09-02 96256]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2011-09-05 178176]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2012-01-23 25536]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2012-01-23 25536]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-12-13 4718952]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\DRIVERS\ISCTD64.sys [2012-01-23 44992]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-01-04 355096]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-01-04 786200]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2017-07-29 188648]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2015-06-18 86672]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2015-06-18 69264]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [2010-01-18 14136]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 V0770Vid;Live! Cam Sync HD VF0770 Driver; C:\Windows\system32\DRIVERS\V0770Vid.sys [2012-06-01 379776]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001); C:\Windows\system32\drivers\WPRO_41_2001.sys [2018-05-24 34752]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 MBAMFarflt;MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys []
S3 MBAMProtection;MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys []
S3 MBAMWebProtection;MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys []
S3 MSICDSetup;MSICDSetup; \??\G:\CDriver64.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\G:\NTIOLib_X64.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2017-07-26 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-02-09 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2018-02-01 472456]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2018-03-13 11395096]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2018-05-15 2282248]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
R2 ISCTAgent;ISCT Always Updated Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2012-01-23 132608]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2011-12-16 161560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-12-16 277784]
R2 MEmusvc;MEmusvc; D:\Games\PUBG\Microvirt\MEmu\MemuService.exe [2017-05-26 269480]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [2012-01-03 138768]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-06 153752]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-09 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2018-03-13 2876096]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-06 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-04-22 116224]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2015-07-02 356808]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-05-19 194512]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2018-04-03 1671968]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-12-02 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Re: Prosím o preventivní kontrolu.

Napsal: 26 kvě 2018 17:09
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Prosím o preventivní kontrolu.

Napsal: 28 kvě 2018 09:31
od pepe3dx
Hotovo..zde je log.

# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database: 2018-05-22.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-28-2018
# Duration: 00:00:01
# OS: Windows 7 Ultimate
# Cleaned: 9
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\DriverToolkit
Deleted C:\Users\Pepe3dx\AppData\Local\DriverToolkit

***** [ Files ] *****

Deleted C:\Users\Pepe3dx\Downloads\DriverToolkitInstaller.exe
Deleted C:\Program Files\MOZILLA FIREFOX\DEFAULTS\PREF\DSENGINE.JS
Deleted C:\Program Files\MOZILLA FIREFOX\DSENGINE.CFG

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\DriverToolkit
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Deleted HKLM\Software\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************


########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Re: Prosím o preventivní kontrolu.

Napsal: 28 kvě 2018 15:07
od Rudy
Dejte nový log RSIT.

Re: Prosím o preventivní kontrolu.

Napsal: 28 kvě 2018 16:28
od pepe3dx
Nový log RSIT.


Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepe3dx at 2018-05-28 17:26:58
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 18 GB (15%) free of 122 GB
Total RAM: 8146 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:27:04, on 28.5.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19003)
Boot mode: Normal

Running processes:
C:\Program Files\My Lockbox\mylbx.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Windows\V0770Mon.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\trend micro\Pepe3dx.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [V0770Mon.exe] C:\Windows\V0770Mon.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://files.creative.com/Web/softwareu ... PIDPDE.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: ISCT Always Updated Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MEmusvc - Microvirt Software Technology Co. Ltd. - D:\Games\PUBG\Microvirt\MEmu\MemuService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8969 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
winlogon.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
D:\Games\PUBG\Microvirt\MEmu\MemuService.exe
"C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
taskeng.exe {C7AD6ED2-61B3-4CEE-9988-C3BF263F2B2E}
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files\My Lockbox\mylbx.exe" /a
KHALMNPR.EXE /API
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
"C:\Windows\V0770Mon.exe"
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" /watchfiles startup
"C:\Program Files\AMD\CNext\CNext\amddvr.exe"
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 3716
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4200.0.1272948349\888202602" -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" "C:\Users\Pepe3dx\AppData\LocalLow\Mozilla\Temp-{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}" 4200 "\\.\pipe\gecko-crash-server-pipe.4200" 1176 gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4200.3.1472250118\1224127849" -childID 1 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4200 "\\.\pipe\gecko-crash-server-pipe.4200" 1608 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4200.13.1257701752\785500521" -childID 2 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4200 "\\.\pipe\gecko-crash-server-pipe.4200" 1844 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4200.20.1063314707\476189708" -childID 3 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4200 "\\.\pipe\gecko-crash-server-pipe.4200" 2840 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4200.27.758706696\213129608" -childID 4 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4200 "\\.\pipe\gecko-crash-server-pipe.4200" 2968 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4200.34.1049155846\1204330344" -childID 5 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4200 "\\.\pipe\gecko-crash-server-pipe.4200" 3096 tab
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Mozilla Firefox\plugin-container.exe" --channel="4200.41.832503689\1421996831" "C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll" -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 308046B0AF4A39CB 4200 "\\.\pipe\gecko-crash-server-pipe.4200" 3864 plugin
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536

"C:\Users\Pepe3dx\Downloads\RSITx64(1).exe"
C:\Windows\system32\wbem\wmiprvse.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Pepe3dx\AppData\Roaming\Mozilla\Firefox\Profiles\zyxtzjq4.default-1526235570840

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll

C:\Program Files\Mozilla Firefox\extensions\
cs@dictionaries.addons.mozilla.org

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26 435320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2017-01-03 863320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26 366200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03 758360]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-12-12 7560296]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2015-08-26 3113592]
"mylbx"=C:\Program Files\My Lockbox\mylbx.exe [2016-06-04 2606824]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2018-03-13 2208448]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AirDroid 3]
C:\Program Files (x86)\AirDroid\AirDroid.exe [2018-03-15 15645816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GUDelayStartup]
C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Live! Central 3]
C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe [2013-08-15 461312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2010-02-05 385856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2018-05-19 3200800]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-04 291608]
"Super-Charger"=C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [2012-01-03 502288]
"V0770Mon.exe"=C:\Windows\V0770Mon.exe [2012-06-01 32884]
"NokiaMServer"=C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2015-07-02 65992]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-05-28 10:27:21 ----A---- C:\Windows\system32\WPRO_41_2001woem.tmp
2018-05-19 17:05:30 ----D---- C:\Program Files (x86)\Comodo
2018-05-19 10:22:51 ----D---- C:\Program Files (x86)\Adobe
2018-05-19 10:22:37 ----D---- C:\ProgramData\Adobe
2018-05-09 15:25:59 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-05-09 15:25:59 ----A---- C:\Windows\system32\mshtml.dll
2018-05-09 15:25:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-05-09 15:25:58 ----A---- C:\Windows\system32\ieframe.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\winload.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\wininet.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\win32k.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\vbscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\urlmon.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\TSpkg.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\srvsvc.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\rpcss.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\oleaut32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\msfeeds.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\jscript9.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\jscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\iertutil.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srv.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\comsvcs.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\clfs.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\catsrvut.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\sscore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\hhsetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\hh.exe
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wow64win.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wow64.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\winsrv.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\webcheck.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wdigest.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\sspicli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\sscore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\srcore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\smss.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\schannel.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\rpchttp.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\rpcrt4.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ole32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\occache.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ntdll.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ncrypt.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\msv1_0.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\msrating.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\mshtmled.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\lsasrv.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\KernelBase.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\kernel32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\kerberos.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\jsproxy.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\jscript9diag.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\itss.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\itircl.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\inseng.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieUnatt.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieui.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iesetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iernonce.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iedkcs32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieapfltr.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ie4uinit.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\hhsetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\hal.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\dxtrans.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\dxtmsft.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\conhost.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\comcat.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\certcli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\bcrypt.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\advapi32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\hh.exe
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\user.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\wow64cpu.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\sspisrv.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\srclient.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\secur32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\rstrui.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\oleres.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\ntvdm64.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\msobjs.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\msaudite.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\lsass.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\drivers\appid.sys
2018-05-09 15:25:55 ----A---- C:\Windows\system32\csrsrv.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\cryptbase.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\credssp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\auditpol.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidsvc.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidapi.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\apisetschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\adtschema.dll
2018-05-07 19:03:29 ----D---- C:\Program Files\Common Files\ATI Technologies
2018-05-07 19:01:29 ----D---- C:\Program Files (x86)\AMD APP
2018-05-07 19:01:20 ----D---- C:\Program Files\ATI Technologies
2018-05-07 19:01:16 ----D---- C:\Program Files\ATI
2018-05-07 18:56:50 ----D---- C:\Program Files (x86)\AMD
2018-05-07 18:56:17 ----D---- C:\Program Files (x86)\VulkanRT
2018-05-07 18:53:40 ----D---- C:\Program Files\AMD
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wups.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuwebv.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wups2.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wups.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wudriver.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wucltux.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuaueng.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuauclt.exe
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuapp.exe
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuapi.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\WinSetupUI.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\tzres.dll
2018-05-07 16:47:30 ----A---- C:\Windows\system32\SET574C.tmp
2018-05-07 08:17:55 ----A---- C:\Windows\system32\SET83D0.tmp
2018-05-07 08:17:54 ----A---- C:\Windows\system32\SET7F75.tmp
2018-05-07 08:02:34 ----D---- C:\ProgramData\Dell Inc
2018-05-07 08:02:29 ----D---- C:\ProgramData\SupportAssist
2018-05-07 07:45:25 ----A---- C:\Windows\system32\SETDB90.tmp
2018-05-07 07:38:30 ----D---- C:\8336500659725115574

======List of files/folders modified in the last 1 month======

2018-05-28 17:27:04 ----D---- C:\Windows\Temp
2018-05-28 17:27:04 ----D---- C:\Program Files\trend micro
2018-05-28 13:41:45 ----D---- C:\Windows\system32\config
2018-05-28 10:33:18 ----D---- C:\Windows\System32
2018-05-28 10:33:18 ----D---- C:\Windows\inf
2018-05-28 10:33:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-05-28 10:29:23 ----A---- C:\Windows\SYSWOW64\log.txt
2018-05-28 10:27:30 ----D---- C:\Windows\system32\Tasks
2018-05-28 10:26:27 ----RD---- C:\Program Files (x86)
2018-05-28 10:26:27 ----D---- C:\Program Files\Mozilla Firefox
2018-05-28 10:23:39 ----D---- C:\AdwCleaner
2018-05-27 22:22:30 ----D---- C:\Users\Pepe3dx\AppData\Roaming\TS3Client
2018-05-27 20:00:50 ----D---- C:\Program Files (x86)\Battle.net
2018-05-26 16:00:15 ----D---- C:\Program Files (x86)\Steam
2018-05-25 07:16:44 ----SHD---- C:\System Volume Information
2018-05-25 07:15:51 ----D---- C:\Program Files\Opera
2018-05-24 16:15:22 ----D---- C:\Windows
2018-05-24 16:10:42 ----D---- C:\Users\Pepe3dx\AppData\Roaming\MPC-HC
2018-05-24 16:10:34 ----D---- C:\Windows\debug
2018-05-23 10:33:09 ----D---- C:\Users\Pepe3dx\AppData\Roaming\AirDroid
2018-05-22 17:43:09 ----D---- C:\Users\Pepe3dx\AppData\Roaming\Skype
2018-05-22 15:52:08 ----SHD---- C:\Windows\Installer
2018-05-22 15:52:08 ----SHD---- C:\Config.Msi
2018-05-22 15:52:07 ----RD---- C:\Program Files (x86)\Skype
2018-05-22 15:52:07 ----D---- C:\Program Files (x86)\Common Files
2018-05-22 15:52:06 ----D---- C:\ProgramData\Skype
2018-05-19 17:03:14 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-19 16:03:20 ----D---- C:\Windows\SysWOW64
2018-05-19 10:25:32 ----D---- C:\Users\Pepe3dx\AppData\Roaming\Adobe
2018-05-19 10:22:37 ----HD---- C:\ProgramData
2018-05-12 14:19:54 ----D---- C:\Windows\Microsoft.NET
2018-05-12 14:17:29 ----RSD---- C:\Windows\assembly
2018-05-12 13:55:04 ----D---- C:\Program Files\TeamSpeak 3 Client
2018-05-09 18:06:42 ----D---- C:\Windows\winsxs
2018-05-09 18:05:27 ----D---- C:\Windows\SYSWOW64\en-US
2018-05-09 18:05:27 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-05-09 18:05:27 ----D---- C:\Program Files\Internet Explorer
2018-05-09 18:05:27 ----D---- C:\Program Files (x86)\Internet Explorer
2018-05-09 18:05:26 ----D---- C:\Windows\system32\en-US
2018-05-09 18:05:26 ----D---- C:\Windows\system32\drivers\en-US
2018-05-09 18:05:26 ----D---- C:\Windows\system32\drivers
2018-05-09 18:05:26 ----D---- C:\Windows\system32\cs-CZ
2018-05-09 18:05:25 ----D---- C:\Windows\system32\Boot
2018-05-09 18:05:25 ----D---- C:\Windows\AppPatch
2018-05-09 17:54:27 ----D---- C:\Windows\system32\MRT
2018-05-09 17:50:16 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2018-05-09 17:50:13 ----AC---- C:\Windows\system32\MRT.exe
2018-05-09 17:49:53 ----D---- C:\Windows\system32\catroot2
2018-05-09 17:48:08 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-05-09 15:21:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-05-09 15:21:16 ----D---- C:\Windows\system32\Macromed
2018-05-09 15:21:15 ----D---- C:\Windows\SYSWOW64\Macromed
2018-05-07 21:58:28 ----D---- C:\Windows\Prefetch
2018-05-07 19:03:29 ----D---- C:\Program Files\Common Files
2018-05-07 19:01:20 ----RD---- C:\Program Files
2018-05-07 19:00:14 ----D---- C:\AMD
2018-05-07 18:56:29 ----D---- C:\Windows\system32\DriverStore
2018-05-07 17:41:12 ----D---- C:\Windows\SoftwareDistribution
2018-05-07 17:37:55 ----D---- C:\Windows\system32\catroot
2018-05-07 17:34:38 ----D---- C:\ProgramData\Package Cache
2018-05-07 16:58:08 ----RD---- C:\Windows\Minidump
2018-05-07 08:14:27 ----D---- C:\Windows\Logs
2018-05-07 05:42:20 ----D---- C:\Program Files (x86)\eMule
2018-05-05 18:32:17 ----D---- C:\KMPlayer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 FSProFilter2;FSPro File Filter 2; C:\Windows\System32\Drivers\FSPFltd2.sys [2011-06-03 57648]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-01-04 16152]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2017-07-29 554408]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2018-02-01 34280]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2018-02-01 846624]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2018-02-01 59096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2018-02-01 123544]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2017-07-29 305496]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2017-07-29 1026280]
R2 memudrv;memudrv; \??\D:\Games\PUBG\Microvirt\MEmuHyperv\MEmuDrv.sys [2015-11-02 260368]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2018-02-01 41570184]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2018-02-01 536968]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2017-09-02 96256]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2011-09-05 178176]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2012-01-23 25536]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2012-01-23 25536]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-12-13 4718952]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\DRIVERS\ISCTD64.sys [2012-01-23 44992]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-01-04 355096]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-01-04 786200]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2017-07-29 188648]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2015-06-18 86672]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2015-06-18 69264]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [2010-01-18 14136]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 V0770Vid;Live! Cam Sync HD VF0770 Driver; C:\Windows\system32\DRIVERS\V0770Vid.sys [2012-06-01 379776]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001); C:\Windows\system32\drivers\WPRO_41_2001.sys [2018-05-28 34752]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 MBAMFarflt;MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys []
S3 MBAMProtection;MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys []
S3 MBAMWebProtection;MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys []
S3 MSICDSetup;MSICDSetup; \??\G:\CDriver64.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\G:\NTIOLib_X64.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2017-07-26 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-02-09 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2018-02-01 472456]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2018-03-13 11395096]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2018-05-15 2282248]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
R2 ISCTAgent;ISCT Always Updated Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2012-01-23 132608]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2011-12-16 161560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-12-16 277784]
R2 MEmusvc;MEmusvc; D:\Games\PUBG\Microvirt\MEmu\MemuService.exe [2017-05-26 269480]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [2012-01-03 138768]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-06 153752]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-09 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2018-03-13 2876096]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-06 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-04-22 116224]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2015-07-02 356808]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-05-19 194512]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2018-05-19 1672992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-12-02 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Re: Prosím o preventivní kontrolu.

Napsal: 28 kvě 2018 17:09
od Rudy
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Windows\system32\WPRO_41_2001woem.tmp

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Re: Prosím o preventivní kontrolu.

Napsal: 30 kvě 2018 16:56
od pepe3dx
Zde je nový log RSIT.


Logfile of random's system information tool 1.10 (written by random/random)
Run by Pepe3dx at 2018-05-30 17:55:32
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 18 GB (15%) free of 122 GB
Total RAM: 8146 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:55:33, on 30.5.2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19003)
Boot mode: Normal

Running processes:
C:\Program Files\My Lockbox\mylbx.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Windows\V0770Mon.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files\trend micro\Pepe3dx.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
O4 - HKLM\..\Run: [V0770Mon.exe] C:\Windows\V0770Mon.exe
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://files.creative.com/Web/softwareu ... PIDPDE.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Comodo - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HuaweiHiSuiteService64.exe - Unknown owner - C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: ISCT Always Updated Agent (ISCTAgent) - Unknown owner - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MEmusvc - Microvirt Software Technology Co. Ltd. - D:\Games\PUBG\Microvirt\MEmu\MemuService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8969 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
winlogon.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
atieclxx
"C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
D:\Games\PUBG\Microvirt\MEmu\MemuService.exe
"C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
taskeng.exe {E406A20A-B6E8-46D5-8C25-DEE8C31FE3F2}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
taskeng.exe {EB047C60-0C36-4641-8F50-BE3929C19292}
"C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe"
"C:\Program Files\AMD\CNext\CNext\amddvr.exe"
"C:\Program Files\AMD\CNext\CNext\amdow.exe" 3876
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files\My Lockbox\mylbx.exe" /a
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
"C:\Windows\V0770Mon.exe"
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" /watchfiles startup
KHALMNPR.EXE /API
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-4073634370-3322458033-3710082076-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-4073634370-3322458033-3710082076-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4480.0.1511669238\1465477047" -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" "C:\Users\Pepe3dx\AppData\LocalLow\Mozilla\Temp-{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}" 4480 "\\.\pipe\gecko-crash-server-pipe.4480" 1176 gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4480.3.851281589\1312317106" -childID 1 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4480 "\\.\pipe\gecko-crash-server-pipe.4480" 1640 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4480.13.489351412\368353453" -childID 2 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4480 "\\.\pipe\gecko-crash-server-pipe.4480" 2572 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4480.20.233725923\1754087823" -childID 3 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4480 "\\.\pipe\gecko-crash-server-pipe.4480" 3388 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4480.27.112916866\1774735676" -childID 4 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4480 "\\.\pipe\gecko-crash-server-pipe.4480" 7544 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="4480.34.898734408\1995579525" -childID 5 -isForBrowser -boolPrefs 299:0| -stringPrefs 285:38;{0c6b729a-c9ed-46dc-bbf9-f4975d5dbe42}| -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 4480 "\\.\pipe\gecko-crash-server-pipe.4480" 7448 tab
C:\Windows\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
"C:\Users\Pepe3dx\Downloads\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

=========Mozilla firefox=========

ProfilePath - C:\Users\Pepe3dx\AppData\Roaming\Mozilla\Firefox\Profiles\zyxtzjq4.default-1526235570840

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 29.0.0.171 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll

C:\Program Files\Mozilla Firefox\extensions\
cs@dictionaries.addons.mozilla.org

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26 435320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2017-01-03 863320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26 366200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFCB3198-32F3-4E8B-9539-4324694ED664}]
Adblock Plus for IE Browser Helper Object - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03 758360]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-12-12 7560296]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2015-08-26 3113592]
"mylbx"=C:\Program Files\My Lockbox\mylbx.exe [2016-06-04 2606824]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2018-03-13 2208448]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AirDroid 3]
C:\Program Files (x86)\AirDroid\AirDroid.exe [2018-03-15 15645816]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GUDelayStartup]
C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe -delayrun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Live! Central 3]
C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe [2013-08-15 461312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2010-02-05 385856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2018-05-19 3200800]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-04 291608]
"Super-Charger"=C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [2012-01-03 502288]
"V0770Mon.exe"=C:\Windows\V0770Mon.exe [2012-06-01 32884]
"NokiaMServer"=C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2015-07-02 65992]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-05-30 17:53:34 ----A---- C:\Windows\system32\WPRO_41_2001woem.tmp
2018-05-30 17:49:53 ----D---- C:\_OTM
2018-05-19 17:05:30 ----D---- C:\Program Files (x86)\Comodo
2018-05-19 10:22:51 ----D---- C:\Program Files (x86)\Adobe
2018-05-19 10:22:37 ----D---- C:\ProgramData\Adobe
2018-05-09 15:25:59 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2018-05-09 15:25:59 ----A---- C:\Windows\system32\mshtml.dll
2018-05-09 15:25:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2018-05-09 15:25:58 ----A---- C:\Windows\system32\ieframe.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\wininet.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\winload.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\wininet.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\win32k.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\vbscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\urlmon.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\TSpkg.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\srvsvc.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\rpcss.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\oleaut32.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\ntoskrnl.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2018-05-09 15:25:57 ----A---- C:\Windows\system32\msfeeds.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\jscript9.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\jscript.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\iertutil.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srvnet.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srv2.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\drivers\srv.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\comsvcs.dll
2018-05-09 15:25:57 ----A---- C:\Windows\system32\clfs.sys
2018-05-09 15:25:57 ----A---- C:\Windows\system32\catsrvut.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\sscore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\schannel.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ole32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\occache.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\msrating.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\itss.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\itircl.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\inseng.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieui.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\hhsetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\hh.exe
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\comcat.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\certcli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2018-05-09 15:25:56 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wow64win.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wow64.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\winsrv.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\webcheck.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\wdigest.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\sspicli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\sscore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\srcore.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\smss.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\schannel.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\rpchttp.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\rpcrt4.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ole32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\occache.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ntdll.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ncrypt.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\msv1_0.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\msrating.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\mshtmlmedia.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\mshtmled.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\MshtmlDac.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\lsasrv.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\KernelBase.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\kernel32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\kerberos.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\jsproxy.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\jscript9diag.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\itss.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\itircl.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\inseng.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieUnatt.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieui.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iesetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iernonce.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwproxystub.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieetwcollector.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\iedkcs32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ieapfltr.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\ie4uinit.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\hhsetup.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\hal.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\dxtrans.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\dxtmsft.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\videoprt.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2018-05-09 15:25:56 ----A---- C:\Windows\system32\conhost.exe
2018-05-09 15:25:56 ----A---- C:\Windows\system32\comcat.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\certcli.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\bcrypt.dll
2018-05-09 15:25:56 ----A---- C:\Windows\system32\advapi32.dll
2018-05-09 15:25:56 ----A---- C:\Windows\hh.exe
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-05-09 15:25:55 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\wow32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\user.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\srclient.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\setup16.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\secur32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\oleres.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\instnm.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\credssp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\wow64cpu.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\sspisrv.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\srclient.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\setbcdlocale.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\secur32.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\rstrui.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\oleres.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\ntvdm64.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\msobjs.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\msaudite.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\lsass.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\drivers\appid.sys
2018-05-09 15:25:55 ----A---- C:\Windows\system32\csrsrv.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\cryptbase.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\credssp.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\auditpol.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidsvc.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2018-05-09 15:25:55 ----A---- C:\Windows\system32\appidapi.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\apisetschema.dll
2018-05-09 15:25:55 ----A---- C:\Windows\system32\adtschema.dll
2018-05-07 19:03:29 ----D---- C:\Program Files\Common Files\ATI Technologies
2018-05-07 19:01:29 ----D---- C:\Program Files (x86)\AMD APP
2018-05-07 19:01:20 ----D---- C:\Program Files\ATI Technologies
2018-05-07 19:01:16 ----D---- C:\Program Files\ATI
2018-05-07 18:56:50 ----D---- C:\Program Files (x86)\AMD
2018-05-07 18:56:17 ----D---- C:\Program Files (x86)\VulkanRT
2018-05-07 18:53:40 ----D---- C:\Program Files\AMD
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wups.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2018-05-07 18:02:21 ----A---- C:\Windows\SYSWOW64\tzres.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuwebv.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wups2.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wups.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wudriver.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wucltux.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuaueng.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuauclt.exe
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuapp.exe
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wuapi.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\WinSetupUI.dll
2018-05-07 18:02:21 ----A---- C:\Windows\system32\tzres.dll
2018-05-07 08:02:34 ----D---- C:\ProgramData\Dell Inc
2018-05-07 08:02:29 ----D---- C:\ProgramData\SupportAssist
2018-05-07 07:38:30 ----D---- C:\8336500659725115574

======List of files/folders modified in the last 1 month======

2018-05-30 17:55:33 ----D---- C:\Program Files\trend micro
2018-05-30 17:53:42 ----D---- C:\Windows\Temp
2018-05-30 17:53:34 ----D---- C:\Windows\System32
2018-05-30 17:52:47 ----A---- C:\Windows\SYSWOW64\log.txt
2018-05-30 17:52:46 ----D---- C:\Windows\system32\config
2018-05-30 17:50:56 ----D---- C:\Windows\inf
2018-05-30 17:50:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2018-05-30 17:50:11 ----D---- C:\Program Files\Opera
2018-05-30 17:49:33 ----SHD---- C:\System Volume Information
2018-05-28 10:27:30 ----D---- C:\Windows\system32\Tasks
2018-05-28 10:26:27 ----RD---- C:\Program Files (x86)
2018-05-28 10:26:27 ----D---- C:\Program Files\Mozilla Firefox
2018-05-28 10:23:39 ----D---- C:\AdwCleaner
2018-05-27 22:22:30 ----D---- C:\Users\Pepe3dx\AppData\Roaming\TS3Client
2018-05-27 20:00:50 ----D---- C:\Program Files (x86)\Battle.net
2018-05-26 16:00:15 ----D---- C:\Program Files (x86)\Steam
2018-05-24 16:15:22 ----D---- C:\Windows
2018-05-24 16:10:42 ----D---- C:\Users\Pepe3dx\AppData\Roaming\MPC-HC
2018-05-24 16:10:34 ----D---- C:\Windows\debug
2018-05-23 10:33:09 ----D---- C:\Users\Pepe3dx\AppData\Roaming\AirDroid
2018-05-22 17:43:09 ----D---- C:\Users\Pepe3dx\AppData\Roaming\Skype
2018-05-22 15:52:08 ----SHD---- C:\Windows\Installer
2018-05-22 15:52:08 ----SHD---- C:\Config.Msi
2018-05-22 15:52:07 ----RD---- C:\Program Files (x86)\Skype
2018-05-22 15:52:07 ----D---- C:\Program Files (x86)\Common Files
2018-05-22 15:52:06 ----D---- C:\ProgramData\Skype
2018-05-19 17:03:14 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-05-19 16:03:20 ----D---- C:\Windows\SysWOW64
2018-05-19 10:25:32 ----D---- C:\Users\Pepe3dx\AppData\Roaming\Adobe
2018-05-19 10:22:37 ----HD---- C:\ProgramData
2018-05-12 14:19:54 ----D---- C:\Windows\Microsoft.NET
2018-05-12 14:17:29 ----RSD---- C:\Windows\assembly
2018-05-12 13:55:04 ----D---- C:\Program Files\TeamSpeak 3 Client
2018-05-09 18:06:42 ----D---- C:\Windows\winsxs
2018-05-09 18:05:27 ----D---- C:\Windows\SYSWOW64\en-US
2018-05-09 18:05:27 ----D---- C:\Windows\SYSWOW64\cs-CZ
2018-05-09 18:05:27 ----D---- C:\Program Files\Internet Explorer
2018-05-09 18:05:27 ----D---- C:\Program Files (x86)\Internet Explorer
2018-05-09 18:05:26 ----D---- C:\Windows\system32\en-US
2018-05-09 18:05:26 ----D---- C:\Windows\system32\drivers\en-US
2018-05-09 18:05:26 ----D---- C:\Windows\system32\drivers
2018-05-09 18:05:26 ----D---- C:\Windows\system32\cs-CZ
2018-05-09 18:05:25 ----D---- C:\Windows\system32\Boot
2018-05-09 18:05:25 ----D---- C:\Windows\AppPatch
2018-05-09 17:54:27 ----D---- C:\Windows\system32\MRT
2018-05-09 17:50:16 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2018-05-09 17:50:13 ----AC---- C:\Windows\system32\MRT.exe
2018-05-09 17:49:53 ----D---- C:\Windows\system32\catroot2
2018-05-09 17:48:08 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2018-05-09 15:21:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2018-05-09 15:21:16 ----D---- C:\Windows\system32\Macromed
2018-05-09 15:21:15 ----D---- C:\Windows\SYSWOW64\Macromed
2018-05-07 21:58:28 ----D---- C:\Windows\Prefetch
2018-05-07 19:03:29 ----D---- C:\Program Files\Common Files
2018-05-07 19:01:20 ----RD---- C:\Program Files
2018-05-07 19:00:14 ----D---- C:\AMD
2018-05-07 18:56:29 ----D---- C:\Windows\system32\DriverStore
2018-05-07 17:41:12 ----D---- C:\Windows\SoftwareDistribution
2018-05-07 17:37:55 ----D---- C:\Windows\system32\catroot
2018-05-07 17:34:38 ----D---- C:\ProgramData\Package Cache
2018-05-07 16:58:08 ----RD---- C:\Windows\Minidump
2018-05-07 08:14:27 ----D---- C:\Windows\Logs
2018-05-07 05:42:20 ----D---- C:\Program Files (x86)\eMule
2018-05-05 18:32:17 ----D---- C:\KMPlayer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 FSProFilter2;FSPro File Filter 2; C:\Windows\System32\Drivers\FSPFltd2.sys [2011-06-03 57648]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-01-04 16152]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2017-07-29 554408]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2018-02-01 34280]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2018-02-01 846624]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2018-02-01 59096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2018-02-01 123544]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2017-07-29 305496]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2017-07-29 1026280]
R2 memudrv;memudrv; \??\D:\Games\PUBG\Microvirt\MEmuHyperv\MEmuDrv.sys [2015-11-02 260368]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2018-02-01 41570184]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2018-02-01 536968]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2017-09-02 96256]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2011-09-05 178176]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\Windows\system32\DRIVERS\ikbevent.sys [2012-01-23 25536]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\Windows\system32\DRIVERS\imsevent.sys [2012-01-23 25536]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-12-13 4718952]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\DRIVERS\ISCTD64.sys [2012-01-23 44992]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-01-04 355096]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-01-04 786200]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2017-07-29 188648]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2015-06-18 86672]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2015-06-18 69264]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NTIOLib_1_0_3;NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [2010-01-18 14136]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 V0770Vid;Live! Cam Sync HD VF0770 Driver; C:\Windows\system32\DRIVERS\V0770Vid.sys [2012-06-01 379776]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001); C:\Windows\system32\drivers\WPRO_41_2001.sys [2018-05-30 34752]
S3 ew_usbccgpfilter;HwHandSet_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbccgpfilter.sys [2017-07-26 18944]
S3 MBAMFarflt;MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys []
S3 MBAMProtection;MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys []
S3 MBAMWebProtection;MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys []
S3 MSICDSetup;MSICDSetup; \??\G:\CDriver64.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\G:\NTIOLib_X64.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2017-07-26 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-02-09 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2018-02-01 472456]
R2 CmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2018-03-13 11395096]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2018-05-15 2282248]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [2017-07-26 192200]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
R2 ISCTAgent;ISCT Always Updated Agent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [2012-01-23 132608]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2011-12-16 161560]
R2 MEmusvc;MEmusvc; D:\Games\PUBG\Microvirt\MEmu\MemuService.exe [2017-05-26 269480]
R2 MSI_SuperCharger;MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [2012-01-03 138768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-10-04 107624]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-10-03 128608]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-06 153752]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-12-16 277784]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-05-09 272384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2018-03-13 2876096]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-06 153752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2018-04-22 116224]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2015-07-02 356808]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-05-19 194512]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2018-05-19 1672992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2017-12-02 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-10-03 52832]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-10-04 136288]

-----------------EOF-----------------

Re: Prosím o preventivní kontrolu.

Napsal: 30 kvě 2018 17:11
od Rudy
Log je již OK.

Re: Prosím o preventivní kontrolu.

Napsal: 30 kvě 2018 17:21
od pepe3dx
Ok děkuji moc za pomoc a za Váš čas.. :fez: :thumbsup:

Doufám, že bude zase nejmíň na půl roku klid.. :)

Re: Prosím o preventivní kontrolu.

Napsal: 30 kvě 2018 17:56
od Rudy
Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz