Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

nefunkční nabídka Start

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
adisek-petr
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 26 zář 2007 19:20

nefunkční nabídka Start

#1 Příspěvek od adisek-petr »

Dobrý den, prosím o kontrolu. Nejde mi spustit nabídka Start a ještě některé programy.

Mnohokrát děkuji

Petr


Logfile of random's system information tool 1.10 (written by random/random)
Run by petrc at 2018-04-19 23:12:21
Microsoft Windows 10 Home
System drive C: has 773 GB (81%) free of 953 GB
Total RAM: 3541 MB (31% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:12:25, on 19.04.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0371)
Boot mode: Normal

Running processes:
C:\Users\petrc\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\AVG\Antivirus\AVGUI.exe
C:\Users\petrc\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files\trend micro\petrc.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer17win10.msn.com/?pc=ACTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: McAfee WebAdvisor - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [OneDrive] "C:\Users\petrc\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\petrc\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\petrc\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: AtherosSvc - Unknown owner - C:\WINDOWS\system32\AdminService.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: ClientAnalyticsService - Intel Security - C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe
O23 - Service: Dashlane Upgrade Service - Dashlane, Inc. - C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GoPro Device Detection Service (GoProDeviceDetectionService) - Unknown owner - C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe
O23 - Service: McAfee Boot Delay Start Service (McBootDelayStartSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Module Core Service (ModuleCoreService) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel Security PEF Service (PEFService) - Intel Security, Inc. - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service: Quick Access Local Service (QALSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporated - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 13105 bytes

======Listing Processes======








winlogon.exe

C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p
dashost.exe {b62dbc50-2836-4a2a-9652eb221ddf50d4}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p
atieclxx

C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p

"C:\Program Files\AVG\Antivirus\AVGSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe"
"C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe"
"C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc

"C:\Windows\system32\mfevtps.exe"
C:\WINDOWS\system32\AdminService.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
"C:\Windows\system32\mfevtps.exe" -mms
C:\WINDOWS\System32\svchost.exe -k AppReadiness -p

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" -mms
"C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe"
ModuleCoreService.exe /startUserModeHosting=1_TIME_TO_DIE
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe"
"C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\\McCSPServiceHost.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe" -userServiceMode
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Program Files\McAfee\MfeAV\MFEAvSvc.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
explorer.exe
"ctfmon.exe"
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe"
"C:\Users\petrc\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
AvastUI.exe /nogui
AVGUI.exe /nogui
szndesktop.exe default start
"C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
"C:\Users\petrc\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /shRequest
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\petrc\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\petrc\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\petrc\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=65.0.3325.181 --initial-client-data=0x1dc,0x1e0,0x1e4,0x1d8,0x1e8,0x7ff823f9f1e8,0x7ff823f9f1f8,0x7ff823f9f208
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=7436 --on-initialized-event-handle=704 --parent-handle=716 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1656,12548303541913661385,7676524996400065190,131072 --gpu-preferences=KAAAAAAAAAAABwAAAQAAAAAAAAAAAGAAAQAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --gpu-vendor-id=0x1002 --gpu-device-id=0x9850 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=22.19.163.2560 --gpu-driver-date=10-4-2017 --service-request-channel-token=712F3F6679AD5B02A2CEA24677A1CBB6 --mojo-platform-channel-handle=1696 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,12548303541913661385,7676524996400065190,131072 --service-pipe-token=5185168D4F7E0F11A0EB4FEDA8374884 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=5185168D4F7E0F11A0EB4FEDA8374884 --renderer-client-id=3 --mojo-platform-channel-handle=3008 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,12548303541913661385,7676524996400065190,131072 --service-pipe-token=9B85BB4999620EC13CF9306E093B0F8A --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=9B85BB4999620EC13CF9306E093B0F8A --renderer-client-id=4 --mojo-platform-channel-handle=3224 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,12548303541913661385,7676524996400065190,131072 --service-pipe-token=A36097F060DC9FE47BC7E90F78E0F0C9 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=A36097F060DC9FE47BC7E90F78E0F0C9 --renderer-client-id=5 --mojo-platform-channel-handle=3272 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,12548303541913661385,7676524996400065190,131072 --service-pipe-token=FCAC5BFAE07DD125965E4DB0C897D3B2 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=FCAC5BFAE07DD125965E4DB0C897D3B2 --renderer-client-id=6 --mojo-platform-channel-handle=3392 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,12548303541913661385,7676524996400065190,131072 --service-pipe-token=811963D2FF4E7374092A83D90FD2EAF9 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=811963D2FF4E7374092A83D90FD2EAF9 --renderer-client-id=7 --mojo-platform-channel-handle=3236 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.f5e177252dea81d1 > \\.\pipe\chrome.nativeMessaging.out.f5e177252dea81d1
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,12548303541913661385,7676524996400065190,131072 --service-pipe-token=5CF585942CA3555C6FF9EDBF95FC3039 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=5CF585942CA3555C6FF9EDBF95FC3039 --renderer-client-id=15 --mojo-platform-channel-handle=6648 /prefetch:1
C:\WINDOWS\system32\AUDIODG.EXE 0x548
"C:\Users\petrc\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\petrc\AppData\Roaming\Mozilla\Firefox\Profiles\r23mtgqc.default

"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=C:\Program Files (x86)\McAfee\msc\NPMCSN~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.79.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.79.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@mcafee.com/MSC,version=10]
"Description"=McAfee Total Protection MIME Plugin
"Path"=C:\Program Files\mcafee\msc\NPMCSN~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll


C:\Users\petrc\AppData\Roaming\Mozilla\Firefox\Profiles\r23mtgqc.default\extensions\
abb-acer@amazon.com
partnerdefaults@mozilla.com
sko-extension@firma.seznam.cz

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-04-17 207024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2017-03-09 553896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2018-03-19 199648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2017-03-09 211880]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2018-03-19 167480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-02-26 16419072]
"GoPro Tray App"=C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [2017-03-17 866224]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-04-12 242392]
"AVGUI.exe"=C:\Program Files\AVG\Antivirus\AvLaunch.exe [2018-04-04 291056]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\petrc\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2018-04-04 1570976]
"cz.seznam.software.autoupdate"=C:\Users\petrc\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\petrc\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2018-03-07 17074688]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-01-09 5263040]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-07 767176]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.CFHD"=CFHD.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2018-04-18 00:19:49 ----HD---- C:\OneDriveTemp
2018-04-18 00:16:00 ----D---- C:\WINDOWS\system32\drivers\wd
2018-04-13 00:13:57 ----D---- C:\Program Files\trend micro
2018-04-13 00:12:07 ----D---- C:\Program Files (x86)\trend micro
2018-04-13 00:12:06 ----D---- C:\rsit
2018-04-12 23:52:19 ----A---- C:\WINDOWS\system32\drivers\lpsport.sys
2018-04-12 23:51:09 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-04-12 11:47:07 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2018-04-12 11:47:07 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-04-12 11:47:07 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-04-12 11:47:07 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-04-12 11:47:06 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-04-12 11:47:06 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-04-12 11:47:06 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-04-12 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-04-12 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2018-04-12 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2018-04-12 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-04-12 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-04-12 11:47:05 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-04-12 11:47:05 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2018-04-12 11:47:03 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-04-12 11:47:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2018-04-12 11:47:02 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-04-12 11:47:02 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-04-12 11:47:02 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2018-04-12 11:47:02 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2018-04-12 11:47:02 ----A---- C:\WINDOWS\system32\rdpbase.dll
2018-04-12 11:47:01 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2018-04-12 11:47:00 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2018-04-12 11:47:00 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-04-12 11:47:00 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-04-12 11:47:00 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-04-12 11:46:59 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-04-12 11:46:59 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2018-04-12 11:46:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-04-12 11:46:59 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-04-12 11:46:59 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-04-12 11:46:59 ----A---- C:\WINDOWS\system32\drivers\vmbkmclr.sys
2018-04-12 11:46:58 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-04-12 11:46:58 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2018-04-12 11:46:57 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-04-12 11:46:57 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2018-04-12 11:46:57 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2018-04-12 11:46:57 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2018-04-12 11:46:57 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2018-04-12 11:46:57 ----A---- C:\WINDOWS\system32\WcnApi.dll
2018-04-12 11:46:57 ----A---- C:\WINDOWS\system32\t2embed.dll
2018-04-12 11:46:57 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-04-12 11:46:56 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2018-04-12 11:46:56 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-04-12 11:46:56 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-04-12 11:46:56 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2018-04-12 11:46:56 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-04-12 11:46:55 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-04-12 11:46:55 ----A---- C:\WINDOWS\system32\virtdisk.dll
2018-04-12 11:46:55 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-04-12 11:46:55 ----A---- C:\WINDOWS\system32\actxprxy.dll
2018-04-12 11:46:54 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-04-12 11:46:54 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-04-12 11:46:54 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-04-12 11:46:53 ----A---- C:\WINDOWS\system32\hal.dll
2018-04-12 11:46:53 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-04-12 11:46:53 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2018-04-12 11:46:53 ----A---- C:\WINDOWS\system32\drivers\netbios.sys
2018-04-12 11:46:52 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-04-12 11:46:52 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2018-04-12 11:46:52 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2018-04-12 11:46:51 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2018-04-12 11:46:51 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2018-04-12 11:46:51 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-04-12 11:46:51 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-04-12 11:46:50 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-04-12 11:46:50 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2018-04-12 11:46:50 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2018-04-12 11:46:49 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-04-12 11:46:49 ----A---- C:\WINDOWS\system32\wow64.dll
2018-04-12 11:46:49 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-04-12 11:46:48 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-04-12 11:46:48 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-04-12 11:46:46 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2018-04-12 11:46:46 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2018-04-12 11:46:46 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-04-12 11:46:46 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-04-12 11:46:45 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2018-04-12 11:46:45 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-04-12 11:46:45 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-04-12 11:46:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-04-12 11:46:44 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-04-12 11:46:44 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-04-12 11:46:44 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-04-12 11:46:44 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-04-12 11:46:44 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-04-12 11:46:43 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2018-04-12 11:46:43 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2018-04-12 11:46:43 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-04-12 11:46:43 ----A---- C:\WINDOWS\system32\taskcomp.dll
2018-04-12 11:46:43 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2018-04-12 11:46:43 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2018-04-12 11:46:42 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2018-04-12 11:46:42 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-04-12 11:46:42 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2018-04-12 11:46:42 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-04-12 11:46:42 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2018-04-12 11:46:42 ----A---- C:\WINDOWS\system32\drivers\bam.sys
2018-04-12 11:46:41 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2018-04-12 11:46:41 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-04-12 11:46:41 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-04-12 11:46:40 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-04-12 11:46:40 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2018-04-12 11:46:40 ----A---- C:\WINDOWS\system32\wifitask.exe
2018-04-12 11:46:40 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2018-04-12 11:46:40 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-04-12 11:46:40 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-04-12 11:46:40 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-04-12 11:46:40 ----A---- C:\WINDOWS\system32\davclnt.dll
2018-04-12 11:46:39 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2018-04-12 11:46:39 ----A---- C:\WINDOWS\system32\rasapi32.dll
2018-04-12 11:46:39 ----A---- C:\WINDOWS\system32\InputService.dll
2018-04-12 11:46:38 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-04-12 11:46:37 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-04-12 11:46:37 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-04-12 11:46:36 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-04-12 11:46:36 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-04-12 11:46:36 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-04-12 11:46:35 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-04-12 11:46:34 ----A---- C:\WINDOWS\system32\webcheck.dll
2018-04-12 11:46:34 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-04-12 11:46:33 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-04-12 11:46:33 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-04-12 11:46:33 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-04-12 11:46:33 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2018-04-12 11:46:32 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-04-12 11:46:32 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2018-04-12 11:46:32 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2018-04-12 11:46:32 ----A---- C:\WINDOWS\system32\jscript.dll
2018-04-12 11:46:32 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-04-12 11:46:32 ----A---- C:\WINDOWS\system32\iepeers.dll
2018-04-12 11:46:32 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2018-04-12 11:46:31 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-04-12 11:46:31 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2018-04-12 11:46:31 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2018-04-12 11:46:31 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-04-12 11:46:30 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-04-12 11:46:30 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-04-12 11:46:30 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2018-04-12 11:46:30 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2018-04-12 11:46:29 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-04-12 11:46:29 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-04-12 11:46:29 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-04-12 11:46:29 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-04-12 11:46:29 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-04-12 11:46:28 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-04-12 11:46:28 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-04-12 11:46:28 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-04-12 11:46:27 ----A---- C:\WINDOWS\system32\Unistore.dll
2018-04-12 11:46:27 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-04-12 11:46:27 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-04-12 11:46:26 ----A---- C:\WINDOWS\system32\UserDataService.dll
2018-04-12 11:46:26 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2018-04-12 11:46:26 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-04-12 11:46:26 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-04-12 11:46:25 ----A---- C:\WINDOWS\system32\schedsvc.dll
2018-04-12 11:46:25 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-04-12 11:46:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-04-12 11:46:25 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-04-12 11:46:24 ----A---- C:\WINDOWS\system32\ole32.dll
2018-04-12 11:46:24 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-04-12 11:46:24 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-04-12 11:46:23 ----A---- C:\WINDOWS\system32\wininet.dll
2018-04-12 11:46:23 ----A---- C:\WINDOWS\system32\usermgr.dll
2018-04-12 11:46:23 ----A---- C:\WINDOWS\system32\msIso.dll
2018-04-12 11:46:23 ----A---- C:\WINDOWS\system32\inetcomm.dll
2018-04-12 11:46:22 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2018-04-12 11:46:22 ----A---- C:\WINDOWS\system32\WebClnt.dll
2018-04-12 11:46:22 ----A---- C:\WINDOWS\system32\sysmain.dll
2018-04-12 11:46:22 ----A---- C:\WINDOWS\system32\NaturalAuth.dll
2018-04-12 11:46:21 ----A---- C:\WINDOWS\system32\wwansvc.dll
2018-04-12 11:46:21 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-04-12 11:46:21 ----A---- C:\WINDOWS\system32\wlansec.dll
2018-04-12 11:46:20 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-04-12 11:46:19 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-04-12 11:46:19 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-04-12 11:46:18 ----A---- C:\WINDOWS\system32\p2psvc.dll
2018-04-12 11:46:17 ----A---- C:\WINDOWS\system32\SyncController.dll
2018-04-12 11:46:17 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-04-12 11:46:16 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-04-12 11:46:16 ----A---- C:\WINDOWS\system32\APHostService.dll
2018-04-12 11:46:15 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-04-12 11:46:15 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-04-12 11:46:14 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-04-12 11:46:10 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2018-04-12 11:46:09 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2018-04-12 11:46:09 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2018-04-12 11:46:09 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2018-04-12 11:46:08 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2018-04-12 11:46:08 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2018-04-12 11:46:08 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-04-12 11:46:07 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-04-12 11:46:07 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-04-12 11:46:06 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-04-12 11:46:06 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2018-04-12 11:46:06 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-04-12 11:46:06 ----A---- C:\WINDOWS\system32\iumdll.dll
2018-04-12 11:46:06 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-04-12 11:46:05 ----A---- C:\WINDOWS\system32\wuapi.dll
2018-04-12 11:46:05 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-04-12 11:46:04 ----A---- C:\WINDOWS\system32\twinui.dll
2018-04-12 11:46:04 ----A---- C:\WINDOWS\system32\nlasvc.dll
2018-04-12 11:46:04 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-04-12 11:46:04 ----A---- C:\WINDOWS\system32\icfupgd.dll
2018-04-12 11:46:04 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-04-12 11:46:03 ----A---- C:\WINDOWS\system32\winlogon.exe
2018-04-12 11:46:03 ----A---- C:\WINDOWS\system32\SettingSync.dll
2018-04-12 11:46:03 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-04-12 11:46:03 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-04-12 11:46:03 ----A---- C:\WINDOWS\system32\appinfo.dll
2018-04-12 11:46:02 ----A---- C:\WINDOWS\system32\localspl.dll
2018-04-12 11:46:02 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2018-04-12 11:46:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-04-12 11:46:00 ----A---- C:\WINDOWS\system32\shell32.dll
2018-04-12 11:45:59 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-04-12 11:45:58 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-04-12 11:45:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-04-12 11:45:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-04-12 11:45:54 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-04-12 11:45:54 ----A---- C:\WINDOWS\system32\VSSVC.exe
2018-04-12 11:45:54 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-04-12 11:45:44 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-04-12 11:45:44 ----A---- C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-04-12 11:45:44 ----A---- C:\WINDOWS\system32\SensorService.dll
2018-04-12 11:45:43 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-04-12 11:45:43 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-04-12 11:45:43 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-04-12 11:45:42 ----A---- C:\WINDOWS\system32\cdp.dll
2018-04-12 11:45:42 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-04-12 11:45:41 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-04-12 11:45:41 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-04-12 11:45:41 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-04-12 11:45:41 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-04-12 11:45:39 ----A---- C:\WINDOWS\system32\runexehelper.exe
2018-04-12 11:45:39 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-04-12 11:45:39 ----A---- C:\WINDOWS\system32\convertvhd.exe
2018-04-12 11:45:39 ----A---- C:\WINDOWS\system32\container.dll
2018-04-12 11:45:38 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2018-04-12 11:45:36 ----A---- C:\WINDOWS\system32\wscapi.dll
2018-04-12 11:45:36 ----A---- C:\WINDOWS\system32\systemreset.exe
2018-04-12 11:45:35 ----A---- C:\WINDOWS\system32\winresume.exe
2018-04-12 11:45:35 ----A---- C:\WINDOWS\system32\winload.exe
2018-04-12 11:45:35 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2018-04-12 11:45:34 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-04-12 11:45:34 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-04-12 11:45:33 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\invagent.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\devinv.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\aepic.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-04-12 11:45:33 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-04-12 11:45:32 ----A---- C:\WINDOWS\system32\reseteng.dll
2018-04-12 11:45:32 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-04-12 11:45:30 ----A---- C:\WINDOWS\system32\usocore.dll
2018-04-12 11:45:30 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-04-12 11:45:30 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-04-12 11:45:30 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-04-12 11:45:30 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-04-12 11:45:29 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-04-12 11:45:29 ----A---- C:\WINDOWS\system32\FntCache.dll
2018-04-12 11:45:29 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-04-12 11:45:28 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-04-12 11:45:28 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2018-04-12 11:45:28 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-04-12 11:45:27 ----A---- C:\WINDOWS\system32\skci.dll
2018-04-12 11:45:27 ----A---- C:\WINDOWS\system32\mos.dll
2018-04-12 11:45:27 ----A---- C:\WINDOWS\system32\ci.dll
2018-04-12 11:45:25 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-04-12 11:45:25 ----A---- C:\WINDOWS\system32\spoolsv.exe
2018-04-12 11:45:24 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2018-04-12 11:45:24 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-04-12 11:45:24 ----A---- C:\WINDOWS\system32\msra.exe
2018-04-12 11:45:24 ----A---- C:\WINDOWS\system32\ieui.dll
2018-04-12 11:45:23 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2018-04-12 11:45:23 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2018-04-12 11:45:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2018-04-12 11:45:22 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2018-04-12 11:45:22 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-04-12 11:45:21 ----A---- C:\WINDOWS\system32\DWrite.dll
2018-04-12 11:45:20 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2018-04-12 11:45:19 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2018-04-12 11:45:19 ----A---- C:\WINDOWS\system32\sspicli.dll
2018-04-12 11:45:18 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2018-04-12 11:45:18 ----A---- C:\WINDOWS\system32\qmgr.dll
2018-04-12 11:45:17 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2018-04-12 11:45:17 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-04-12 11:45:16 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2018-04-12 11:45:16 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2018-04-12 11:45:16 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2018-04-12 11:45:16 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2018-04-12 11:45:15 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2018-04-12 11:45:14 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2018-04-12 11:45:14 ----A---- C:\WINDOWS\system32\racpldlg.dll
2018-04-12 11:45:14 ----A---- C:\WINDOWS\system32\propsys.dll
2018-04-12 11:45:14 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-04-12 11:45:12 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2018-04-12 11:45:12 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2018-04-12 11:45:12 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2018-04-12 11:45:11 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2018-04-12 11:45:10 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-04-12 11:45:09 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2018-04-12 11:45:09 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2018-04-12 11:45:09 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-04-12 11:45:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2018-04-12 11:45:08 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2018-04-12 11:45:08 ----A---- C:\WINDOWS\system32\puiobj.dll
2018-04-12 11:45:08 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2018-04-12 11:45:07 ----A---- C:\WINDOWS\SYSWOW64\msvcp110_win.dll
2018-04-12 11:45:07 ----A---- C:\WINDOWS\system32\WinSCard.dll
2018-04-12 11:45:07 ----A---- C:\WINDOWS\system32\vpnike.dll
2018-04-12 11:45:07 ----A---- C:\WINDOWS\system32\RTWorkQ.dll
2018-04-12 11:45:07 ----A---- C:\WINDOWS\system32\ninput.dll
2018-04-12 11:45:06 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2018-04-12 11:45:06 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-04-12 11:45:06 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2018-04-12 11:45:06 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2018-04-12 11:45:05 ----A---- C:\WINDOWS\SYSWOW64\RTWorkQ.dll
2018-04-12 11:45:05 ----A---- C:\WINDOWS\system32\win32spl.dll
2018-04-12 11:45:05 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-04-12 11:45:05 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2018-04-12 11:45:04 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2018-04-12 11:45:04 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2018-04-12 11:45:04 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2018-04-12 11:45:04 ----A---- C:\WINDOWS\system32\newdev.dll
2018-04-12 11:45:04 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2018-04-12 11:45:03 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2018-04-12 11:45:03 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2018-04-12 11:45:03 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2018-04-12 11:45:03 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2018-04-12 11:45:03 ----A---- C:\WINDOWS\system32\NMAA.dll
2018-04-12 11:45:03 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2018-04-12 11:45:03 ----A---- C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-04-12 11:45:03 ----A---- C:\WINDOWS\system32\basecsp.dll
2018-04-12 11:45:02 ----A---- C:\WINDOWS\system32\wwapi.dll
2018-04-12 11:45:02 ----A---- C:\WINDOWS\system32\moshostcore.dll
2018-04-12 11:45:02 ----A---- C:\WINDOWS\system32\LsaIso.exe
2018-04-12 11:45:02 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2018-04-12 11:45:02 ----A---- C:\WINDOWS\system32\drivers\pcw.sys
2018-04-12 11:45:02 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2018-04-12 11:45:02 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2018-04-12 11:45:01 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-04-12 11:45:01 ----A---- C:\WINDOWS\system32\TtlsExt.dll
2018-04-12 11:45:01 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2018-04-12 11:45:01 ----A---- C:\WINDOWS\system32\IumSdk.dll
2018-04-12 11:45:01 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2018-04-12 11:45:01 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2018-04-12 11:45:01 ----A---- C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
2018-04-12 11:45:01 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2018-04-12 11:45:01 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-04-12 11:45:00 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2018-04-12 11:45:00 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys
2018-04-12 11:45:00 ----A---- C:\WINDOWS\system32\drivers\vdrvroot.sys
2018-04-12 11:45:00 ----A---- C:\WINDOWS\system32\drivers\storvsc.sys
2018-04-12 11:45:00 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2018-04-12 11:44:59 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\SYSWOW64\wshhyperv.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\system32\vertdll.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\system32\SDFHost.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\system32\msvcp110_win.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\system32\logoncli.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2018-04-12 11:44:59 ----A---- C:\WINDOWS\system32\iumbase.dll
2018-04-12 11:44:58 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2018-04-12 11:44:58 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2018-04-12 11:44:58 ----A---- C:\WINDOWS\system32\wlanapi.dll
2018-04-12 11:44:58 ----A---- C:\WINDOWS\system32\vmbuspipe.dll
2018-04-12 11:44:58 ----A---- C:\WINDOWS\system32\icm32.dll
2018-04-12 11:44:58 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2018-04-12 11:44:58 ----A---- C:\WINDOWS\system32\gpapi.dll
2018-04-12 11:44:58 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2018-04-12 11:44:58 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2018-04-12 11:44:57 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2018-04-12 11:44:57 ----A---- C:\WINDOWS\system32\wshhyperv.dll
2018-04-12 11:44:57 ----A---- C:\WINDOWS\system32\scksp.dll
2018-04-12 11:44:57 ----A---- C:\WINDOWS\system32\puiapi.dll
2018-04-12 11:44:57 ----A---- C:\WINDOWS\system32\mscms.dll
2018-04-12 11:44:57 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2018-04-12 11:44:57 ----A---- C:\WINDOWS\system32\drivers\fs_rec.sys
2018-04-12 11:44:57 ----A---- C:\WINDOWS\system32\certprop.dll
2018-04-12 11:44:56 ----A---- C:\WINDOWS\system32\printfilterpipelineprxy.dll
2018-04-12 11:44:56 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2018-04-12 11:44:56 ----A---- C:\WINDOWS\system32\drivers\amdppm.sys
2018-04-12 11:44:56 ----A---- C:\WINDOWS\system32\drivers\amdk8.sys
2018-04-12 11:44:55 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2018-04-12 11:44:55 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2018-04-12 11:44:55 ----A---- C:\WINDOWS\system32\wudriver.dll
2018-04-12 11:44:55 ----A---- C:\WINDOWS\system32\gpsvc.dll
2018-04-12 11:44:55 ----A---- C:\WINDOWS\system32\adhsvc.dll
2018-04-12 11:44:54 ----A---- C:\WINDOWS\SYSWOW64\wsnmp32.dll
2018-04-12 11:44:54 ----A---- C:\WINDOWS\SYSWOW64\wlgpclnt.dll
2018-04-12 11:44:54 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2018-04-12 11:44:54 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2018-04-12 11:44:53 ----A---- C:\WINDOWS\system32\wlgpclnt.dll
2018-04-12 11:44:53 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2018-04-12 11:44:53 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2018-04-12 11:44:52 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2018-04-12 11:44:52 ----A---- C:\WINDOWS\system32\wups.dll
2018-04-12 11:44:52 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2018-04-12 11:44:52 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2018-04-12 11:44:51 ----A---- C:\WINDOWS\system32\tcpmon.dll
2018-04-12 11:44:51 ----A---- C:\WINDOWS\system32\imgutil.dll
2018-04-12 11:44:51 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2018-04-12 11:44:51 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2018-04-12 11:44:51 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2018-04-12 11:44:51 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2018-04-12 11:44:51 ----A---- C:\WINDOWS\system32\drivers\lltdio.sys
2018-04-12 11:44:50 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-04-12 11:44:50 ----A---- C:\WINDOWS\system32\TtlsCfg.dll
2018-04-12 11:44:50 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2018-04-12 11:44:50 ----A---- C:\WINDOWS\system32\drivers\rdpbus.sys
2018-04-12 11:44:50 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2018-04-12 11:44:50 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys
2018-04-12 11:44:50 ----A---- C:\WINDOWS\system32\drivers\dmvsc.sys
2018-04-12 11:44:49 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-04-12 11:44:49 ----A---- C:\WINDOWS\system32\drivers\Synth3dVsc.sys
2018-04-12 11:44:49 ----A---- C:\WINDOWS\system32\drivers\irda.sys
2018-04-12 11:44:49 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2018-04-12 11:44:48 ----A---- C:\WINDOWS\SYSWOW64\TtlsCfg.dll
2018-04-12 11:44:48 ----A---- C:\WINDOWS\system32\ncbservice.dll
2018-04-12 11:44:48 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-04-12 11:44:48 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2018-04-12 11:44:47 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2018-04-12 11:44:47 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2018-04-12 11:44:47 ----A---- C:\WINDOWS\system32\wscsvc.dll
2018-04-12 11:44:47 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-04-12 11:44:47 ----A---- C:\WINDOWS\system32\TtlsAuth.dll
2018-04-12 11:44:47 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2018-04-12 11:44:47 ----A---- C:\WINDOWS\system32\occache.dll
2018-04-12 11:44:47 ----A---- C:\WINDOWS\system32\compstui.dll
2018-04-12 11:44:46 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2018-04-12 11:44:46 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2018-04-12 11:44:46 ----A---- C:\WINDOWS\system32\wfdprov.dll
2018-04-12 11:44:46 ----A---- C:\WINDOWS\system32\NetDriverInstall.dll
2018-04-12 11:44:46 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2018-04-12 11:44:45 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2018-04-12 11:44:45 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2018-04-12 11:44:45 ----A---- C:\WINDOWS\system32\WcnEapPeerProxy.dll
2018-04-12 11:44:45 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2018-04-12 11:44:45 ----A---- C:\WINDOWS\system32\IcsEntitlementHost.exe
2018-04-12 11:44:45 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2018-04-12 11:44:45 ----A---- C:\WINDOWS\system32\drivers\HyperVideo.sys
2018-04-12 11:44:45 ----A---- C:\WINDOWS\system32\drivers\hyperkbd.sys
2018-04-12 11:44:44 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2018-04-12 11:44:44 ----A---- C:\WINDOWS\system32\WcnEapAuthProxy.dll
2018-04-12 11:44:44 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2018-04-12 11:44:44 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2018-04-12 11:44:44 ----A---- C:\WINDOWS\system32\drivers\rasacd.sys
2018-04-12 11:44:44 ----A---- C:\WINDOWS\system32\drivers\beep.sys
2018-04-12 11:44:44 ----A---- C:\WINDOWS\system32\appidtel.exe
2018-04-12 11:44:43 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2018-04-12 11:44:43 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2018-04-12 11:44:43 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2018-04-12 11:44:43 ----A---- C:\WINDOWS\system32\url.dll
2018-04-12 11:44:43 ----A---- C:\WINDOWS\system32\jsproxy.dll
2018-04-12 11:44:43 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2018-04-12 11:44:43 ----A---- C:\WINDOWS\system32\drivers\vmgencounter.sys
2018-04-12 11:44:43 ----A---- C:\WINDOWS\system32\drivers\VMBusHID.sys
2018-04-12 11:44:42 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2018-04-12 11:44:42 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2018-04-12 11:44:42 ----A---- C:\WINDOWS\system32\drivers\vmgid.sys
2018-04-12 11:44:41 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2018-04-12 11:44:41 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2018-04-12 11:44:41 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2018-04-12 11:44:41 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2018-04-12 11:44:41 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2018-04-12 11:44:41 ----A---- C:\WINDOWS\system32\iesysprep.dll
2018-04-12 11:44:41 ----A---- C:\WINDOWS\system32\drivers\vms3cap.sys
2018-04-12 11:44:41 ----A---- C:\WINDOWS\system32\drivers\null.sys
2018-04-12 11:44:40 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2018-04-12 11:44:40 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2018-04-12 11:44:40 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2018-04-12 11:44:40 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2018-04-12 11:44:40 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2018-04-12 11:44:40 ----A---- C:\WINDOWS\system32\wextract.exe
2018-04-12 11:44:40 ----A---- C:\WINDOWS\system32\pngfilt.dll
2018-04-12 11:44:40 ----A---- C:\WINDOWS\system32\inseng.dll
2018-04-12 11:44:40 ----A---- C:\WINDOWS\system32\iesetup.dll
2018-04-12 11:44:40 ----A---- C:\WINDOWS\system32\drivers\gpuenergydrv.sys
2018-04-12 11:44:39 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2018-04-12 11:44:39 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-04-12 11:44:39 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2018-04-12 11:44:39 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2018-04-12 11:44:39 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2018-04-12 11:44:39 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-04-12 11:44:39 ----A---- C:\WINDOWS\system32\tzres.dll
2018-04-12 11:44:39 ----A---- C:\WINDOWS\system32\licmgr10.dll
2018-04-12 11:44:39 ----A---- C:\WINDOWS\system32\iexpress.exe
2018-04-12 11:44:39 ----A---- C:\WINDOWS\system32\iernonce.dll
2018-04-12 11:44:38 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2018-04-12 11:44:38 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2018-04-12 11:44:38 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2018-04-12 11:44:38 ----A---- C:\WINDOWS\system32\mshta.exe
2018-04-12 11:44:38 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2018-04-12 11:44:38 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-04-12 11:44:38 ----A---- C:\WINDOWS\system32\kerberos.dll
2018-04-12 11:44:38 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\system32\WSDMon.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\system32\srvsvc.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\system32\SessEnv.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\system32\icsvcext.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2018-04-12 11:44:37 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-04-12 11:44:36 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\wkssvc.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\wc_storage.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\usbmon.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\icsvc.dll
2018-04-12 11:44:36 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\SYSWOW64\PimIndexMaintenanceClient.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\SYSWOW64\fdPnp.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\system32\offreg.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\system32\efslsaext.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\system32\dot3svc.dll
2018-04-12 11:44:35 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2018-04-12 11:44:34 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2018-04-12 11:44:34 ----A---- C:\WINDOWS\system32\sysntfy.dll
2018-04-12 11:44:34 ----A---- C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2018-04-12 11:44:34 ----A---- C:\WINDOWS\system32\LicenseManagerSvc.dll
2018-04-12 11:44:34 ----A---- C:\WINDOWS\system32\keyiso.dll
2018-04-12 11:44:34 ----A---- C:\WINDOWS\system32\httpprxm.dll
2018-04-12 11:44:34 ----A---- C:\WINDOWS\system32\hlink.dll
2018-04-12 11:44:34 ----A---- C:\WINDOWS\system32\fdPnp.dll
2018-04-12 11:44:33 ----A---- C:\WINDOWS\SYSWOW64\keyiso.dll
2018-04-12 11:44:33 ----A---- C:\WINDOWS\system32\vmictimeprovider.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\SYSWOW64\wmiprop.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\SYSWOW64\perfhost.exe
2018-04-12 11:44:32 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\SYSWOW64\fdWNet.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\system32\wmiprop.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\system32\nsisvc.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\system32\nrpsrv.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\system32\msrating.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\system32\fdWNet.dll
2018-04-12 11:44:32 ----A---- C:\WINDOWS\system32\efssvc.dll
2018-04-04 12:46:49 ----D---- C:\Users\petrc\AppData\Roaming\AVG
2018-04-04 12:46:26 ----HD---- C:\ProgramData\Common Files
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgVmm.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgStm.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgSP.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgSnx.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgRvrt.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgRdr2.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgMonFlt.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgHwid.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgbuniva.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgbloga.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgbidsha.sys
2018-04-04 12:45:03 ----A---- C:\WINDOWS\system32\drivers\avgArPot.sys
2018-04-04 12:45:02 ----A---- C:\WINDOWS\system32\drivers\avgbidsdrivera.sys
2018-04-04 12:45:02 ----A---- C:\WINDOWS\system32\drivers\avgbdiska.sys
2018-04-04 12:44:37 ----A---- C:\WINDOWS\system32\avgBoot.exe
2018-04-04 12:44:35 ----D---- C:\Program Files\Common Files\AVG
2018-04-04 12:42:01 ----D---- C:\Program Files\AVG
2018-04-04 12:41:20 ----D---- C:\ProgramData\AVG
2018-04-04 10:06:58 ----D---- C:\ProgramData\McAfee Security Scan
2018-03-14 09:54:30 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2018-03-14 09:54:30 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-03-14 09:54:28 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-03-14 09:54:22 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2018-03-14 09:54:22 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2018-03-14 09:54:18 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-03-14 09:54:17 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2018-03-14 09:54:16 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-03-14 09:54:16 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2018-03-14 09:54:14 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2018-03-14 09:54:12 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2018-03-14 09:54:12 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2018-03-14 09:54:11 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-03-14 09:54:06 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-03-14 09:54:06 ----A---- C:\WINDOWS\system32\samsrv.dll
2018-03-14 09:54:06 ----A---- C:\WINDOWS\system32\DbgModel.dll
2018-03-14 09:54:03 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2018-03-14 09:54:02 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2018-03-14 09:53:51 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2018-03-14 09:53:51 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-03-14 09:53:49 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-03-14 09:53:49 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-03-14 09:53:47 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-03-14 09:53:45 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2018-03-14 09:53:43 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-03-14 09:53:43 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2018-03-14 09:53:38 ----A---- C:\WINDOWS\system32\winmde.dll
2018-03-14 09:53:38 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-03-14 09:53:36 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-03-14 09:53:35 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2018-03-14 09:53:35 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-03-14 09:53:34 ----A---- C:\WINDOWS\system32\winsrv.dll
2018-03-14 09:53:33 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-03-14 09:53:32 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-03-14 09:53:26 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2018-03-14 09:53:23 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-03-14 09:53:22 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-03-14 09:52:53 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2018-03-14 09:52:53 ----A---- C:\WINDOWS\system32\cldapi.dll
2018-03-14 09:52:52 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-03-14 09:52:52 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-03-14 09:52:52 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-03-14 09:52:51 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2018-03-14 09:52:49 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2018-03-14 09:52:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2018-03-14 09:52:46 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-03-14 09:52:42 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2018-03-14 09:52:40 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-03-14 09:52:39 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2018-03-14 09:52:36 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2018-03-14 09:52:36 ----A---- C:\WINDOWS\system32\msi.dll
2018-03-14 09:52:34 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2018-03-14 09:52:30 ----A---- C:\WINDOWS\SYSWOW64\AuthFWSnapin.dll
2018-03-14 09:52:30 ----A---- C:\WINDOWS\system32\AuthFWSnapin.dll
2018-03-14 09:52:29 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2018-03-14 09:52:29 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-03-14 09:52:29 ----A---- C:\WINDOWS\system32\TSpkg.dll
2018-03-14 09:52:29 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-03-14 09:52:29 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-03-14 09:52:29 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-03-14 09:52:29 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2018-03-14 09:52:28 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2018-03-14 09:52:28 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2018-03-14 09:52:28 ----A---- C:\WINDOWS\system32\updatecsp.dll
2018-03-14 09:52:28 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2018-03-14 09:52:27 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2018-03-14 09:52:27 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-03-14 09:52:27 ----A---- C:\WINDOWS\system32\offlinesam.dll
2018-03-14 09:52:26 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2018-03-14 09:52:25 ----A---- C:\WINDOWS\system32\drivers\ataport.sys
2018-03-14 09:52:24 ----A---- C:\WINDOWS\system32\svf.dll
2018-03-14 09:52:24 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2018-03-14 09:52:24 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2018-03-14 09:52:23 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2018-03-14 09:52:23 ----A---- C:\WINDOWS\system32\SpectrumSyncClient.dll
2018-03-14 09:52:23 ----A---- C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-03-14 09:52:22 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-03-14 09:52:22 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2018-03-14 09:52:22 ----A---- C:\WINDOWS\system32\UsoClient.exe
2018-03-14 09:52:22 ----A---- C:\WINDOWS\system32\msisip.dll
2018-03-14 09:52:22 ----A---- C:\WINDOWS\system32\credssp.dll
2018-03-06 20:47:21 ----D---- C:\WINDOWS\Minidump
2018-03-01 17:56:31 ----HD---- C:\$AV_ASW
2018-03-01 10:23:22 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2018-02-16 06:43:10 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-02-16 06:43:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2018-02-16 06:43:08 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2018-02-16 06:43:06 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2018-02-16 06:43:02 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2018-02-16 06:43:00 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2018-02-16 06:42:59 ----A---- C:\WINDOWS\system32\audiosrv.dll
2018-02-16 06:42:59 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2018-02-16 06:42:58 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2018-02-16 06:42:57 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2018-02-16 06:42:56 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2018-02-16 06:42:51 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2018-02-16 06:42:50 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2018-02-16 06:42:50 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2018-02-16 06:42:50 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-02-16 06:42:50 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2018-02-16 06:42:50 ----A---- C:\WINDOWS\system32\evr.dll
2018-02-16 06:42:49 ----A---- C:\WINDOWS\system32\nshhttp.dll
2018-02-16 06:42:49 ----A---- C:\WINDOWS\system32\audiodg.exe
2018-02-16 06:42:48 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2018-02-16 06:42:48 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2018-02-16 06:42:48 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-02-16 06:42:47 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2018-02-16 06:42:46 ----A---- C:\WINDOWS\system32\d3d11.dll
2018-02-16 06:42:43 ----A---- C:\WINDOWS\system32\AcGenral.dll
2018-02-16 06:42:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2018-02-16 06:42:37 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-02-16 06:42:37 ----A---- C:\WINDOWS\system32\mfsvr.dll
2018-02-16 06:42:36 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-02-16 06:42:35 ----A---- C:\WINDOWS\system32\AudioSes.dll
2018-02-16 06:42:33 ----A---- C:\WINDOWS\system32\ncsi.dll
2018-02-16 06:42:24 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2018-02-16 06:42:24 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2018-02-16 06:42:23 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-02-16 06:42:21 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2018-02-16 06:42:20 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2018-02-16 06:42:20 ----A---- C:\WINDOWS\system32\wuauclt.exe
2018-02-16 06:42:20 ----A---- C:\WINDOWS\system32\ISM.dll
2018-02-16 06:42:19 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2018-02-16 06:42:19 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2018-02-16 06:42:19 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2018-02-16 06:42:19 ----A---- C:\WINDOWS\system32\nlaapi.dll
2018-02-16 06:42:18 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2018-02-16 06:42:18 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2018-02-16 06:42:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2018-02-16 06:42:17 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2018-02-16 06:42:16 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2018-02-16 06:42:16 ----A---- C:\WINDOWS\system32\comdlg32.dll
2018-02-16 06:42:15 ----A---- C:\WINDOWS\system32\sppsvc.exe
2018-02-16 06:42:14 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-02-16 06:42:14 ----A---- C:\WINDOWS\explorer.exe
2018-02-16 06:42:10 ----A---- C:\WINDOWS\system32\mfps.dll
2018-02-16 06:41:56 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2018-02-16 06:41:50 ----A---- C:\WINDOWS\system32\vac.exe
2018-02-16 06:41:45 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2018-02-16 06:41:45 ----A---- C:\WINDOWS\system32\SRH.dll
2018-02-16 06:41:44 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2018-02-16 06:41:42 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2018-02-16 06:41:42 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-02-16 06:41:37 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2018-02-16 06:41:36 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2018-02-16 06:41:36 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2018-02-16 06:41:36 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2018-02-16 06:41:36 ----A---- C:\WINDOWS\system32\AudioEng.dll
2018-02-16 06:41:35 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2018-02-16 06:41:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2018-02-16 06:41:30 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2018-02-16 06:41:30 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2018-02-16 06:41:30 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-02-16 06:41:29 ----A---- C:\WINDOWS\system32\sppobjs.dll
2018-02-16 06:41:29 ----A---- C:\WINDOWS\system32\InstallService.dll
2018-02-16 06:41:28 ----A---- C:\WINDOWS\system32\efscore.dll
2018-02-16 06:41:26 ----A---- C:\WINDOWS\system32\wimserv.exe
2018-02-16 06:41:25 ----A---- C:\WINDOWS\system32\wimgapi.dll
2018-02-16 06:41:23 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2018-02-16 06:41:23 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2018-02-16 06:41:22 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2018-02-16 06:41:21 ----A---- C:\WINDOWS\system32\usercpl.dll
2018-02-16 06:41:21 ----A---- C:\WINDOWS\system32\rtmpltfm.dll
2018-02-16 06:41:20 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2018-02-16 06:41:20 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2018-02-16 06:41:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2018-02-16 06:41:20 ----A---- C:\WINDOWS\system32\mssrch.dll
2018-02-16 06:41:20 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2018-02-16 06:41:18 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2018-02-16 06:41:18 ----A---- C:\WINDOWS\system32\tquery.dll
2018-02-16 06:41:17 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2018-02-16 06:41:16 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2018-02-16 06:41:16 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2018-02-16 06:41:16 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-02-16 06:41:15 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-02-16 06:41:15 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2018-02-16 06:41:14 ----A---- C:\WINDOWS\SYSWOW64\rtmpltfm.dll
2018-02-16 06:41:13 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2018-02-16 06:41:13 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2018-02-16 06:41:13 ----A---- C:\WINDOWS\system32\Wpc.dll
2018-02-16 06:41:13 ----A---- C:\WINDOWS\system32\sppwinob.dll
2018-02-16 06:41:12 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2018-02-16 06:41:12 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2018-02-16 06:41:11 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2018-02-16 06:41:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2018-02-16 06:41:10 ----A---- C:\WINDOWS\system32\FSClient.dll
2018-02-16 06:41:09 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2018-02-16 06:41:09 ----A---- C:\WINDOWS\system32\mf.dll
2018-02-16 06:41:08 ----A---- C:\WINDOWS\system32\D3D12.dll
2018-02-16 06:41:08 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2018-02-16 06:41:07 ----A---- C:\WINDOWS\system32\wpncore.dll
2018-02-16 06:41:07 ----A---- C:\WINDOWS\system32\mmc.exe
2018-02-16 06:41:06 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2018-02-16 06:41:06 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2018-02-16 06:41:05 ----A---- C:\WINDOWS\SYSWOW64\nshhttp.dll
2018-02-16 06:41:05 ----A---- C:\WINDOWS\system32\rtmpal.dll
2018-02-16 06:41:04 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-02-16 06:41:04 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2018-02-16 06:41:04 ----A---- C:\WINDOWS\system32\WpcMon.exe
2018-02-16 06:41:03 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2018-02-16 06:41:03 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2018-02-16 06:41:02 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2018-02-16 06:41:02 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2018-02-16 06:41:02 ----A---- C:\WINDOWS\system32\SEMgrSvc.dll
2018-02-16 06:41:01 ----A---- C:\WINDOWS\SYSWOW64\mmcndmgr.dll
2018-02-16 06:41:01 ----A---- C:\WINDOWS\system32\authui.dll
2018-02-16 06:41:00 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2018-02-16 06:41:00 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-02-16 06:41:00 ----A---- C:\WINDOWS\system32\shutdownux.dll
2018-02-16 06:41:00 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2018-02-16 06:41:00 ----A---- C:\WINDOWS\system32\rtmcodecs.dll
2018-02-16 06:41:00 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2018-02-16 06:40:59 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2018-02-16 06:40:59 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2018-02-16 06:40:58 ----A---- C:\WINDOWS\SYSWOW64\rtmpal.dll
2018-02-16 06:40:58 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2018-02-16 06:40:58 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2018-02-16 06:40:57 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2018-02-16 06:40:57 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2018-02-16 06:40:57 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-02-16 06:40:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2018-02-16 06:40:56 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2018-02-16 06:40:56 ----A---- C:\WINDOWS\system32\setupapi.dll
2018-02-16 06:40:56 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2018-02-16 06:40:56 ----A---- C:\WINDOWS\system32\efswrt.dll
2018-02-16 06:40:55 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2018-02-16 06:40:55 ----A---- C:\WINDOWS\system32\uDWM.dll
2018-02-16 06:40:55 ----A---- C:\WINDOWS\system32\policymanager.dll
2018-02-16 06:40:54 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2018-02-16 06:40:54 ----A---- C:\WINDOWS\system32\rasdlg.dll
2018-02-16 06:40:54 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2018-02-16 06:40:54 ----A---- C:\WINDOWS\system32\mssvp.dll
2018-02-16 06:40:54 ----A---- C:\WINDOWS\system32\lsm.dll
2018-02-16 06:40:54 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-02-16 06:40:54 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2018-02-16 06:40:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2018-02-16 06:40:53 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2018-02-16 06:40:53 ----A---- C:\WINDOWS\SYSWOW64\rtmcodecs.dll
2018-02-16 06:40:53 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2018-02-16 06:40:53 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2018-02-16 06:40:53 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2018-02-16 06:40:53 ----A---- C:\WINDOWS\system32\mspaint.exe
2018-02-16 06:40:52 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2018-02-16 06:40:52 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2018-02-16 06:40:52 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-02-16 06:40:52 ----A---- C:\WINDOWS\system32\Magnify.exe
2018-02-16 06:40:52 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2018-02-16 06:40:51 ----A---- C:\WINDOWS\system32\winbrand.dll
2018-02-16 06:40:50 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2018-02-16 06:40:50 ----A---- C:\WINDOWS\system32\webio.dll
2018-02-16 06:40:50 ----A---- C:\WINDOWS\system32\FrameServer.dll
2018-02-16 06:40:49 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-02-16 06:40:49 ----A---- C:\WINDOWS\system32\vssapi.dll
2018-02-16 06:40:48 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2018-02-16 06:40:48 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2018-02-16 06:40:48 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-02-16 06:40:47 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2018-02-16 06:40:47 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2018-02-16 06:40:47 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2018-02-16 06:40:47 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2018-02-16 06:40:46 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2018-02-16 06:40:46 ----A---- C:\WINDOWS\system32\rastls.dll
2018-02-16 06:40:46 ----A---- C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-02-16 06:40:46 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2018-02-16 06:40:45 ----A---- C:\WINDOWS\system32\srcore.dll
2018-02-16 06:40:44 ----A---- C:\WINDOWS\system32\rasmans.dll
2018-02-16 06:40:44 ----A---- C:\WINDOWS\system32\FsIso.exe
2018-02-16 06:40:43 ----A---- C:\WINDOWS\system32\gameux.dll
2018-02-16 06:40:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2018-02-16 06:40:41 ----A---- C:\WINDOWS\SYSWOW64\WMVXENCD.DLL
2018-02-16 06:40:41 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2018-02-16 06:40:41 ----A---- C:\WINDOWS\system32\rasgcw.dll
2018-02-16 06:40:41 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2018-02-16 06:40:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2018-02-16 06:40:40 ----A---- C:\WINDOWS\SYSWOW64\sppcomapi.dll
2018-02-16 06:40:40 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2018-02-16 06:40:40 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2018-02-16 06:40:40 ----A---- C:\WINDOWS\system32\wldp.dll
2018-02-16 06:40:40 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2018-02-16 06:40:39 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2018-02-16 06:40:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2018-02-16 06:40:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-02-16 06:40:39 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2018-02-16 06:40:39 ----A---- C:\WINDOWS\system32\ortcengine.dll
2018-02-16 06:40:39 ----A---- C:\WINDOWS\system32\edputil.dll
2018-02-16 06:40:39 ----A---- C:\WINDOWS\system32\aclui.dll
2018-02-16 06:40:38 ----A---- C:\WINDOWS\SYSWOW64\ortcengine.dll
2018-02-16 06:40:38 ----A---- C:\WINDOWS\SYSWOW64\Magnify.exe
2018-02-16 06:40:37 ----A---- C:\WINDOWS\SYSWOW64\rtmmvrortc.dll
2018-02-16 06:40:37 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2018-02-16 06:40:37 ----A---- C:\WINDOWS\system32\rtmmvrortc.dll
2018-02-16 06:40:36 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2018-02-16 06:40:36 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2018-02-16 06:40:36 ----A---- C:\WINDOWS\system32\WMVSENCD.DLL
2018-02-16 06:40:35 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2018-02-16 06:40:35 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2018-02-16 06:40:34 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2018-02-16 06:40:34 ----A---- C:\WINDOWS\SYSWOW64\edputil.dll
2018-02-16 06:40:34 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2018-02-16 06:40:34 ----A---- C:\WINDOWS\system32\twinapi.dll
2018-02-16 06:40:34 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2018-02-16 06:40:33 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2018-02-16 06:40:33 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2018-02-16 06:40:33 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-16 06:40:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-02-16 06:40:32 ----A---- C:\WINDOWS\system32\sud.dll
2018-02-16 06:40:32 ----A---- C:\WINDOWS\system32\netlogon.dll
2018-02-16 06:40:31 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2018-02-16 06:40:31 ----A---- C:\WINDOWS\system32\mmcbase.dll
2018-02-16 06:40:30 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2018-02-16 06:40:29 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2018-02-16 06:40:29 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2018-02-16 06:40:27 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2018-02-16 06:40:27 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2018-02-16 06:40:26 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2018-02-16 06:40:26 ----A---- C:\WINDOWS\system32\SharedPCCSP.dll
2018-02-16 06:40:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-02-16 06:40:25 ----A---- C:\WINDOWS\system32\hgcpl.dll
2018-02-16 06:40:24 ----A---- C:\WINDOWS\SYSWOW64\OneCoreCommonProxyStub.dll
2018-02-16 06:40:24 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2018-02-16 06:40:24 ----A---- C:\WINDOWS\system32\srchadmin.dll
2018-02-16 06:40:23 ----A---- C:\WINDOWS\system32\themecpl.dll
2018-02-16 06:40:23 ----A---- C:\WINDOWS\system32\shsetup.dll
2018-02-16 06:40:23 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2018-02-16 06:40:22 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2018-02-16 06:40:22 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2018-02-16 06:40:20 ----A---- C:\WINDOWS\system32\ListSvc.dll
2018-02-16 06:40:19 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2018-02-16 06:40:19 ----A---- C:\WINDOWS\system32\authz.dll
2018-02-16 06:40:18 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2018-02-16 06:40:17 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2018-02-16 06:40:17 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2018-02-16 06:40:17 ----A---- C:\WINDOWS\SYSWOW64\setup16.exe
2018-02-16 06:40:17 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2018-02-16 06:40:17 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-02-16 06:40:17 ----A---- C:\WINDOWS\system32\stobject.dll
2018-02-16 06:40:17 ----A---- C:\WINDOWS\system32\netplwiz.dll
2018-02-16 06:40:17 ----A---- C:\WINDOWS\system32\mssprxy.dll
2018-02-16 06:40:17 ----A---- C:\WINDOWS\system32\FontProvider.dll
2018-02-16 06:40:16 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2018-02-16 06:40:16 ----A---- C:\WINDOWS\system32\themeui.dll
2018-02-16 06:40:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2018-02-16 06:40:15 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2018-02-16 06:40:15 ----A---- C:\WINDOWS\system32\bootux.dll
2018-02-16 06:40:14 ----A---- C:\WINDOWS\system32\ntshrui.dll
2018-02-16 06:40:14 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtClient.dll
2018-02-16 06:40:14 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2018-02-16 06:40:13 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2018-02-16 06:40:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2018-02-16 06:40:13 ----A---- C:\WINDOWS\SYSWOW64\twext.dll
2018-02-16 06:40:13 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2018-02-16 06:40:13 ----A---- C:\WINDOWS\system32\regsvr32.exe
2018-02-16 06:40:12 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2018-02-16 06:40:12 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2018-02-16 06:40:11 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2018-02-16 06:40:11 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2018-02-16 06:40:11 ----A---- C:\WINDOWS\SYSWOW64\regsvr32.exe
2018-02-16 06:40:11 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2018-02-16 06:40:11 ----A---- C:\WINDOWS\system32\rshx32.dll
2018-02-16 06:40:11 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2018-02-16 06:40:11 ----A---- C:\WINDOWS\system32\fontext.dll
2018-02-16 06:40:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.ProxyStub.dll
2018-02-16 06:40:10 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2018-02-16 06:40:10 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2018-02-16 06:40:10 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2018-02-16 06:40:10 ----A---- C:\WINDOWS\SYSWOW64\EnterpriseAppMgmtClient.dll
2018-02-16 06:40:10 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2018-02-16 06:40:09 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2018-02-16 06:40:09 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2018-02-16 06:40:09 ----A---- C:\WINDOWS\SYSWOW64\mmcbase.dll
2018-02-16 06:40:09 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2018-02-16 06:40:09 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.ProxyStub.dll
2018-02-16 06:40:09 ----A---- C:\WINDOWS\system32\twext.dll
2018-02-16 06:40:09 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-02-16 06:40:09 ----A---- C:\WINDOWS\system32\dsreg.dll
2018-02-16 06:40:08 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2018-02-16 06:40:07 ----A---- C:\WINDOWS\system32\rstrui.exe
2018-02-16 06:40:05 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2018-02-16 06:40:05 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2018-02-16 06:40:05 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2018-02-16 06:40:05 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2018-02-16 06:40:04 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeHelper.dll
2018-02-16 06:40:04 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2018-02-16 06:40:04 ----A---- C:\WINDOWS\system32\wups2.dll
2018-02-16 06:40:04 ----A---- C:\WINDOWS\system32\winsku.dll
2018-02-16 06:40:03 ----A---- C:\WINDOWS\SYSWOW64\user.exe

======List of files/folders modified in the last 3 months======

2018-04-19 23:09:48 ----D---- C:\WINDOWS\Temp
2018-04-19 23:04:26 ----D---- C:\WINDOWS\SoftwareDistribution
2018-04-19 23:04:26 ----D---- C:\Windows
2018-04-19 23:02:54 ----D---- C:\WINDOWS\Prefetch
2018-04-19 22:50:15 ----D---- C:\WINDOWS\system32\sru
2018-04-19 22:49:45 ----D---- C:\WINDOWS\system32\SleepStudy
2018-04-19 14:34:28 ----SHD---- C:\System Volume Information
2018-04-18 15:23:22 ----RD---- C:\WINDOWS\Microsoft.NET
2018-04-18 12:50:50 ----D---- C:\WINDOWS\INF
2018-04-18 00:20:19 ----D---- C:\WINDOWS\System32
2018-04-18 00:20:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-04-18 00:16:00 ----D---- C:\WINDOWS\system32\drivers
2018-04-18 00:14:23 ----D---- C:\WINDOWS\AppReadiness
2018-04-18 00:11:41 ----D---- C:\WINDOWS\system32\catroot2
2018-04-18 00:11:34 ----D---- C:\WINDOWS\DeliveryOptimization
2018-04-17 11:32:59 ----SHD---- C:\WINDOWS\Installer
2018-04-17 11:32:57 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-04-17 11:31:41 ----D---- C:\Program Files (x86)\Common Files
2018-04-17 11:29:52 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-04-16 12:50:47 ----SD---- C:\Users\petrc\AppData\Roaming\Microsoft
2018-04-14 19:31:20 ----D---- C:\WINDOWS\rescache
2018-04-13 23:36:01 ----D---- C:\WINDOWS\system32\config
2018-04-13 00:16:12 ----D---- C:\WINDOWS\LiveKernelReports
2018-04-13 00:16:12 ----D---- C:\WINDOWS\debug
2018-04-13 00:13:57 ----RD---- C:\Program Files
2018-04-13 00:12:07 ----RD---- C:\Program Files (x86)
2018-04-13 00:03:50 ----D---- C:\WINDOWS\CbsTemp
2018-04-13 00:03:45 ----D---- C:\WINDOWS\WinSxS
2018-04-13 00:03:45 ----D---- C:\WINDOWS\SysWOW64
2018-04-13 00:03:39 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2018-04-12 23:52:03 ----D---- C:\WINDOWS\system32\Tasks
2018-04-12 22:51:28 ----D---- C:\WINDOWS\system32\DriverStore
2018-04-12 22:49:53 ----D---- C:\Program Files (x86)\McAfee
2018-04-12 22:44:43 ----SD---- C:\WINDOWS\SYSWOW64\F12
2018-04-12 22:44:43 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-04-12 22:44:43 ----D---- C:\WINDOWS\SYSWOW64\en-US
2018-04-12 22:44:43 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-04-12 22:44:40 ----SD---- C:\WINDOWS\system32\F12
2018-04-12 22:44:40 ----D---- C:\WINDOWS\system32\migration
2018-04-12 22:44:40 ----D---- C:\WINDOWS\system32\en-US
2018-04-12 22:44:40 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-04-12 22:44:40 ----D---- C:\WINDOWS\system32\cs-CZ
2018-04-12 22:44:40 ----D---- C:\WINDOWS\system32\Boot
2018-04-12 22:44:40 ----D---- C:\WINDOWS\system32\appraiser
2018-04-12 22:44:33 ----D---- C:\WINDOWS\ShellExperiences
2018-04-12 22:44:33 ----D---- C:\WINDOWS\apppatch
2018-04-12 22:44:33 ----D---- C:\Program Files\internet explorer
2018-04-12 22:44:33 ----D---- C:\Program Files (x86)\Internet Explorer
2018-04-12 22:44:27 ----D---- C:\WINDOWS\system32\CodeIntegrity
2018-04-12 22:44:27 ----D---- C:\WINDOWS\Logs
2018-04-12 15:18:16 ----D---- C:\WINDOWS\system32\MRT
2018-04-12 12:13:03 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-04-12 12:12:53 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-04-12 11:53:50 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-04-04 12:46:26 ----HD---- C:\ProgramData
2018-04-04 12:44:35 ----D---- C:\Program Files\Common Files
2018-04-04 10:07:08 ----D---- C:\Program Files\McAfee Security Scan
2018-04-04 05:37:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-03-31 21:27:04 ----D---- C:\Users\petrc\AppData\Roaming\vlc
2018-03-24 19:41:49 ----D---- C:\Users\petrc\AppData\Roaming\Seznam.cz
2018-03-24 04:36:13 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-23 20:14:43 ----D---- C:\Users\petrc\AppData\Roaming\Mozilla
2018-03-23 18:07:18 ----HD---- C:\Program Files\WindowsApps
2018-03-23 09:31:29 ----D---- C:\WINDOWS\system32\LogFiles
2018-03-16 22:10:10 ----D---- C:\Users\petrc\AppData\Roaming\DAEMON Tools Lite
2018-03-14 11:05:16 ----D---- C:\WINDOWS\TextInput
2018-03-13 15:02:31 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2018-03-03 08:27:32 ----D---- C:\WINDOWS\system32\WDI
2018-03-01 10:06:46 ----D---- C:\WINDOWS\SYSWOW64\wbem
2018-03-01 10:06:30 ----D---- C:\WINDOWS\system32\wbem
2018-03-01 10:06:30 ----D---- C:\WINDOWS\system32\oobe
2018-03-01 10:06:09 ----D---- C:\WINDOWS\bcastdvr
2018-02-22 05:28:36 ----D---- C:\WINDOWS\system32\drivers\etc
2018-02-13 07:47:16 ----D---- C:\WINDOWS\system32\NDF
2018-02-12 19:00:15 ----RD---- C:\WINDOWS\assembly
2018-02-04 17:55:20 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-02-04 17:55:12 ----D---- C:\WINDOWS\system32\migwiz
2018-02-04 17:55:11 ----D---- C:\WINDOWS\system32\Dism
2018-02-04 17:55:00 ----D---- C:\WINDOWS\Provisioning
2018-02-04 17:54:57 ----RSD---- C:\WINDOWS\Fonts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem8.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2016-06-17 82704]
R0 amdpsp;@oem18.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [2017-06-12 243056]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-03-04 199440]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-03-04 343752]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-03-04 57680]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-04-12 84368]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-04-12 380528]
R0 avgRvrt;avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [2018-04-04 76760]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2017-05-02 918544]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2017-05-02 252432]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-04-12 196640]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-03-04 227504]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-04-12 227784]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-04-12 111352]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-04-12 1026696]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-04-12 460520]
R1 avgSP;avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [2018-04-04 452904]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-03-30 59808]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-03-30 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-04-13 147224]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-04-12 205976]
R2 avgMonFlt;avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [2018-04-13 139608]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0319312.inf_amd64_1bd7dae294b3987b\atikmdag.sys [2017-10-24 36566432]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0319312.inf_amd64_1bd7dae294b3987b\atikmpag.sys [2017-10-24 537504]
R3 AtiHDAudioService;@oem2.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-07-22 102912]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-06-26 610656]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2017-09-29 105472]
R3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-09-29 78848]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2017-05-02 76824]
R3 dtlitescsibus;@oem21.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2018-01-12 30264]
R3 dtliteusbbus;@oem22.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2018-01-12 47672]
R3 ETDI2C;@oem7.inf,%ELANI2CDeviceDesc%;ELAN I2C Filter Driver; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [2015-09-07 185416]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-02-26 4812544]
R3 Kb9xI2c;@oem16.inf,%Kb9xI2c.SVCDESC%;KB9X I2C Controller Service; C:\WINDOWS\System32\drivers\Kb9xI2c.sys [2015-05-19 37888]
R3 LMDriver;@oem12.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2016-09-14 21344]
R3 mfeaack;McAfee Inc. mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [2017-05-02 476176]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2017-05-02 353808]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2017-05-02 504336]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2017-04-07 495632]
R3 mfeplk;McAfee Inc. mfeplk; C:\WINDOWS\system32\drivers\mfeplk.sys [2017-05-02 109072]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2017-02-14 111608]
R3 Qcamain10x64;@oem17.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN 11AC device driver; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2017-04-24 2412976]
R3 RadioShim;@oem12.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2016-09-14 14688]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
R3 rt640x64;@oem0.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-02-19 936192]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2017-05-02 84536]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 amdkmcsp;@oem18.inf,%amdkmcsp.SVCDESC%;AMD Kernel Mode CSP Service; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [2017-06-12 101232]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-04-12 46968]
S3 avgArPot;avgArPot; C:\WINDOWS\system32\drivers\avgArPot.sys [2018-04-04 189032]
S3 avgbdisk;avgbdisk; C:\WINDOWS\system32\drivers\avgbdiska.sys [2018-04-04 166064]
S3 avgbidsdriver;avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdrivera.sys [2018-04-04 220600]
S3 avgbidsh;avgbidsh; C:\WINDOWS\system32\drivers\avgbidsha.sys [2018-04-04 192536]
S3 avgblog;avgblog; C:\WINDOWS\system32\drivers\avgbloga.sys [2018-04-04 336848]
S3 avgbuniv;avgbuniv; C:\WINDOWS\system32\drivers\avgbuniva.sys [2018-04-04 50776]
S3 avgHwid;avgHwid; C:\WINDOWS\system32\drivers\avgHwid.sys [2018-04-04 39352]
S3 avgRdr;avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [2018-04-04 103744]
S3 avgSnx;avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [2018-04-04 1019088]
S3 avgStm;avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [2018-04-04 198368]
S3 avgVmm;avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [2018-04-04 372920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-03-13 1015296]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2017-05-31 209608]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-03-30 73120]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-03-30 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mfeavfk01;McAfee Inc.; C:\WINDOWS\system32\drivers\mfeavfk01.sys []
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2017-04-07 107544]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 RTSUER;@oem4.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2016-05-17 416472]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-02-09 83984]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-10-24 560536]
R2 AtherosSvc;AtherosSvc; C:\WINDOWS\system32\AdminService.exe [2016-06-26 355760]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-04-12 313640]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [2018-04-04 314688]
R2 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-05-19 345376]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2017-09-26 2278688]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-04-06 8522416]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 GoProDeviceDetectionService;GoPro Device Detection Service; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [2017-03-17 37808]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2018-03-19 604312]
R2 McAPExe;McAfee AP Service; C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe [2017-06-04 984480]
R2 McBootDelayStartSvc;McAfee Boot Delay Start Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\2.5.312.0\\McCSPServiceHost.exe [2017-05-31 2139832]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
R2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2017-04-30 390656]
R2 ModuleCoreService;McAfee Module Core Service; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [2017-06-01 1543248]
R2 PEFService;Intel Security PEF Service; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2017-05-22 1042288]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-03-01 519152]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-04-12 7603408]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-01-09 3480768]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2017-04-30 241656]
R3 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2017-04-30 343544]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 Dashlane Upgrade Service;Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [2017-08-24 83992]
S2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-09 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 avgbIDSAgent;avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [2018-04-04 7653992]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ClientAnalyticsService;ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [2017-03-29 1752992]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 85504]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-12-02 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-09 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 McAWFwk;McAfee Activation Service; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [2016-04-02 419096]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [2018-03-27 405392]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2017-02-22 641520]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-04-06 211632]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 QALSvc;Quick Access Local Service; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [2016-09-14 441136]
S3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2016-09-14 482608]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2018-03-23 194512]

-----------------EOF-----------------

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: nefunkční nabídka Start

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Ak nepouzivas, odorucam odinstalovat Seznam Software (Seznam Listicka).

:arrow: Mas tam nainstalovany Avast a AVG, jeden z nich odinstaluj (odporucam nechat Avast a odinstalovat AVG). Dalej odinstaluj vsetky McAfee programy.

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

adisek-petr
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 26 zář 2007 19:20

Re: nefunkční nabídka Start

#3 Příspěvek od adisek-petr »

Vše provedeno podle instrukcí. Nabídka Star stále nefunkční. Zde je log:

Mockrát děkuji

# -------------------------------
# Malwarebytes AdwCleaner 7.1.0.0
# -------------------------------
# Build: 04-12-2018
# Database: 2018-04-19.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-20-2018
# Duration: 00:00:13
# OS: Windows 10 Home
# Cleaned: 22
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\defaultuser0\AppData\Local\Host App Service
Deleted C:\Users\petrc\AppData\Local\Host App Service
Deleted C:\Users\Public\Desktop\..\App Explorer

***** [ Files ] *****

Deleted C:\Users\Public\Desktop\eBay.lnk
Deleted C:\Windows\System32\Tasks_Migrated\App Explorer

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\App Explorer

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKCU\Software\Host App Service
Deleted HKCU\Software\csastats
Deleted HKLM\Software\Wow6432Node\Classes\AppID\OverlayIcon.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
Deleted HKLM\Software\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
Deleted HKLM\Software\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer
Deleted HKCU\Software\PRODUCTSETUP

***** [ Chromium (and derivatives) ] *****

Deleted Amazon Assistant for Chrome

***** [ Chromium URLs ] *****

Deleted default-search.net
Deleted default-search.net
Deleted slunecnice.cz

***** [ Firefox (and derivatives) ] *****

Deleted Amazon Assistant for Firefox

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************


########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: nefunkční nabídka Start

#4 Příspěvek od Conder »

:arrow: Spusti kontrolu integrity systemovych suborov:
  • Otvor Start, napis "cmd" (bez uvodzoviek), klikni pravym tlacitkom mysi na Prikazovy riadok a klikni na Spustit ako spravca
  • Skopiruj a spusti prikaz:

    Kód: Vybrat vše

    DISM.exe /Online /Cleanup-image /Restorehealth
  • Po dokonceni skopiruj a spusti druhy prikaz:

    Kód: Vybrat vše

    sfc /scannow
  • Po dokonceni obidvoch prikazov skopiruj a spusti tento prikaz:

    Kód: Vybrat vše

    findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt" && copy %windir%\logs\dism\dism.log %userprofile%\desktop\dism.txt
  • Na ploche sa vytvoria subory sfcdetails.txt a dism.txt, tieto subory posli ako prilohu k dalsiemu prispevku
  • Restartuj PC a napis ako sa chova PC
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

adisek-petr
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 26 zář 2007 19:20

Re: nefunkční nabídka Start

#5 Příspěvek od adisek-petr »

Vše jsem provedl podle instrukcí. Akorát mám problém s připojením přílohy k tomuto tématu. V jakém formátu to mohu připojit? Txt a doc to odmítá.


Děkuji

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: nefunkční nabídka Start

#6 Příspěvek od Conder »

:arrow: Zabal to najprv do RAR alebo ZIP archivu. Napis ci nadtala nejaka zmena.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

adisek-petr
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 26 zář 2007 19:20

Re: nefunkční nabídka Start

#7 Příspěvek od adisek-petr »

Díky za radu, nějak mi to nedošlo. V příloze jsou soubory. Počítač je bezezměny. Stále nejde otevřít nabídka Start a když chci otevřít nějaký obrázek, tak mi to hodí error "Třída není zaregistrována". Nemůže být nějaká chyba v exploreru?


Díky moc

Petr
Přílohy
log.7z
(8.73 KiB) Staženo 52 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: nefunkční nabídka Start

#8 Příspěvek od Conder »

:arrow: Poprosim o obidva logy z FRST podla tohto navodu (FRST.txt a Addition.txt): https://forum.viry.cz/viewtopic.php?f=13&t=152707

:arrow: V pripade, ze sa FRSTLauncher nebude dat stiahnut alebo spustit, pouzi iba samotny FRST.

:arrow: Ak sa logy nezmestia do jedneho prispevku, zabal ich do archivu RAR alebo ZIP a posli ako prilohu.

:arrow: Stiahni a spusti tento subor: http://aka.ms/diag_StartMenu
  • Klikni na Dalej a pockaj na dokoncenie
  • Klikni na Podrobnosti, urob snimku obrazovky stlacenim klavesy Print Screen, uloz cez Skicar / Malovani a posli ako prilhou k dalsiemu prispevku
  • Potom restartuj PC a napis vysledok
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

adisek-petr
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 26 zář 2007 19:20

Re: nefunkční nabídka Start

#9 Příspěvek od adisek-petr »

Ahoj, v příloze jsou oba logy.

Děkuji
Přílohy
FRST log.7z
(22.32 KiB) Staženo 40 x

adisek-petr
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 26 zář 2007 19:20

Re: nefunkční nabídka Start

#10 Příspěvek od adisek-petr »

Zde je ještě screen aplikace Start Menu
Přílohy
screen.7z
(49.61 KiB) Staženo 45 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: nefunkční nabídka Start

#11 Příspěvek od Conder »

:arrow: Otvor PowerShell ako spravca nasledovne:
  • Otvor spravcu uloh (Ctrl+Shift+Esc), klikni na Subor -> Spustit novu ulohu
  • Napis "powershell" (bez uvodzoviek)
  • Zaskrtni Vytvorit tuto ulohu s opravneniami spravcu a klikni na OK
  • Skopiruj tento prikaz:

    Kód: Vybrat vše

    Get-AppxPackage -AllUsers | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register “$($_.InstallLocation)\AppXManifest.xml”}
  • Skopirovany prikaz vloz skratkou Ctrl+V do PowerShellu, stlac enter a pockaj na dokoncenie
  • Po dokonceni restartuj PC a napis vysledok
:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\petrc\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe"  -q
    HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\MountPoints2: {16e7c223-f965-11e7-9f56-5800e3965d92} - "E:\HiSuiteDownLoader.exe" 
    HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\MountPoints2: {74e684c0-f4a6-11e7-9f56-5800e3965d92} - "J:\SETUP.EXE" 
    HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\MountPoints2: {d233d906-0e50-11e7-9f38-5800e3965d92} - "E:\WD SmartWare.exe" autoplay=true
    HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
    SearchScopes: HKU\S-1-5-21-1636204763-2709682355-4150238091-1001 -> DefaultScope {1A1B9513-C21A-4420-BC4A-6A245CD4B3D9} URL = 
    SearchScopes: HKU\S-1-5-21-1636204763-2709682355-4150238091-1001 -> {1A1B9513-C21A-4420-BC4A-6A245CD4B3D9} URL = 
    CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - hxxps://clients2.google.com/service/update2/crx
    2018-04-20 00:20 - 2017-01-21 23:32 - 000000000 ____D C:\ProgramData\McAfee
    2018-04-20 00:20 - 2017-01-21 23:32 - 000000000 ____D C:\Program Files\Common Files\McAfee
    2018-04-20 00:15 - 2017-12-03 10:25 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
    Task: {0621FDBB-ADD5-44B7-A2AB-8288118B6295} - \Microsoft\Windows\Feedback\Siuf\DmClient -> No File <==== ATTENTION
    Task: {2B36057D-8BDD-4C66-BB7A-0A6D9D96C8A7} - \App Explorer -> No File <==== ATTENTION
    Task: {49C9F218-7772-48A8-89B1-D7D5A31F9947} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
    Task: {F6027CB3-9A58-415A-80F2-B1404204D4F5} - \Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload -> No File <==== ATTENTION
    Shortcut: C:\Users\petrc\Desktop\InstelNET\MW\Huawei\MW HUA\WebLCTNova verze\WebLCT\startweblct – zástupce.lnk -> D:\Instelnet\Vystavba\RSK\WebLCTNova verze\WebLCT\startweblct.bat (No File)
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
    HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
    HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

adisek-petr
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 26 zář 2007 19:20

Re: nefunkční nabídka Start

#12 Příspěvek od adisek-petr »

Ahoj, všechno jsem provedl ale počítač bezezměny.

Zde je log, děkuji

Fix result of Farbar Recovery Scan Tool (x64) Version: 19.04.2018
Ran by petrc (23-04-2018 00:34:06) Run:1
Running from C:\Users\petrc\Desktop
Loaded Profiles: petrc (Available Profiles: defaultuser0 & petrc)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\petrc\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\MountPoints2: {16e7c223-f965-11e7-9f56-5800e3965d92} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\MountPoints2: {74e684c0-f4a6-11e7-9f56-5800e3965d92} - "J:\SETUP.EXE"
HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\MountPoints2: {d233d906-0e50-11e7-9f38-5800e3965d92} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-1636204763-2709682355-4150238091-1001 -> DefaultScope {1A1B9513-C21A-4420-BC4A-6A245CD4B3D9} URL =
SearchScopes: HKU\S-1-5-21-1636204763-2709682355-4150238091-1001 -> {1A1B9513-C21A-4420-BC4A-6A245CD4B3D9} URL =
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - hxxps://clients2.google.com/service/update2/crx
2018-04-20 00:20 - 2017-01-21 23:32 - 000000000 ____D C:\ProgramData\McAfee
2018-04-20 00:20 - 2017-01-21 23:32 - 000000000 ____D C:\Program Files\Common Files\McAfee
2018-04-20 00:15 - 2017-12-03 10:25 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
Task: {0621FDBB-ADD5-44B7-A2AB-8288118B6295} - \Microsoft\Windows\Feedback\Siuf\DmClient -> No File <==== ATTENTION
Task: {2B36057D-8BDD-4C66-BB7A-0A6D9D96C8A7} - \App Explorer -> No File <==== ATTENTION
Task: {49C9F218-7772-48A8-89B1-D7D5A31F9947} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {F6027CB3-9A58-415A-80F2-B1404204D4F5} - \Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload -> No File <==== ATTENTION
Shortcut: C:\Users\petrc\Desktop\InstelNET\MW\Huawei\MW HUA\WebLCTNova verze\WebLCT\startweblct � z�stupce.lnk -> D:\Instelnet\Vystavba\RSK\WebLCTNova verze\WebLCT\startweblct.bat (No File)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.
"HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\Software\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.szndesktop" => removed successfully
"HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{16e7c223-f965-11e7-9f56-5800e3965d92}" => removed successfully
HKLM\Software\Classes\CLSID\{16e7c223-f965-11e7-9f56-5800e3965d92} => not found
"HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{74e684c0-f4a6-11e7-9f56-5800e3965d92}" => removed successfully
HKLM\Software\Classes\CLSID\{74e684c0-f4a6-11e7-9f56-5800e3965d92} => not found
"HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d233d906-0e50-11e7-9f38-5800e3965d92}" => removed successfully
HKLM\Software\Classes\CLSID\{d233d906-0e50-11e7-9f38-5800e3965d92} => not found
HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1A1B9513-C21A-4420-BC4A-6A245CD4B3D9}" => removed successfully
HKLM\Software\Classes\CLSID\{1A1B9513-C21A-4420-BC4A-6A245CD4B3D9} => not found
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam" => removed successfully
C:\ProgramData\McAfee => moved successfully
C:\Program Files\Common Files\McAfee => moved successfully
C:\WINDOWS\System32\Tasks\McAfee => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0621FDBB-ADD5-44B7-A2AB-8288118B6295}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0621FDBB-ADD5-44B7-A2AB-8288118B6295}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Feedback\Siuf\DmClient" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2B36057D-8BDD-4C66-BB7A-0A6D9D96C8A7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2B36057D-8BDD-4C66-BB7A-0A6D9D96C8A7}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer => could not remove. Access Denied.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{49C9F218-7772-48A8-89B1-D7D5A31F9947}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{49C9F218-7772-48A8-89B1-D7D5A31F9947}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => could not remove. Access Denied.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F6027CB3-9A58-415A-80F2-B1404204D4F5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6027CB3-9A58-415A-80F2-B1404204D4F5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload" => removed successfully
"C:\Users\petrc\Desktop\InstelNET\MW\Huawei\MW HUA\WebLCTNova verze\WebLCT\startweblct � z�stupce.lnk" => not found
"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\MCODS" => removed successfully
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\MCODS" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32\\seznam-listicka-distribuce" => removed successfully
"HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce" => not found
"HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\cz.seznam.software.autoupdate" => removed successfully
"HKU\S-1-5-21-1636204763-2709682355-4150238091-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\cz.seznam.software.autoupdate" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18120864 B
Java, Flash, Steam htmlcache => 524 B
Windows/system/drivers => 2677581 B
Edge => 10415 B
Chrome => 409470406 B
Firefox => 23886511 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 2982673 B
systemprofile32 => 0 B
LocalService => 10610 B
NetworkService => 0 B
defaultuser0 => 7298 B
petrc => 117162035 B

RecycleBin => 8852229 B
EmptyTemp: => 566.2 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 23-04-2018 00:40:44)


Result of scheduled keys to remove after reboot:

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer => could not remove. Access Denied.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => could not remove. Access Denied.

==== End of Fixlog 00:40:44 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: nefunkční nabídka Start

#13 Příspěvek od Conder »

:arrow: Vytvor novy lokalny ucet a otestuj, ci sa problem so startom vyskytne aj tam. Navod: https://support.microsoft.com/sk-sk/hel ... windows-10
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

adisek-petr
Návštěvník
Návštěvník
Příspěvky: 16
Registrován: 26 zář 2007 19:20

Re: nefunkční nabídka Start

#14 Příspěvek od adisek-petr »

Ahoj. Zkoušel jsem vytvořit nový účet ale vyskajuje mi tak error z expoleru viz příloha
Přílohy
obr.png
obr.png (3.23 KiB) Zobrazeno 2065 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: nefunkční nabídka Start

#15 Příspěvek od Conder »

:arrow: Pardon za zdrzanie.

:arrow: Ak som spravne pochopil, tato hlaska sa vyskytuje na starom ucte a kvoli tomu nejde vytvorit novy ucet? Ak ano, tak skus vytvorit novy ucet cez prikazovy riadok ako spravca a prikaz: "net user /add meno heslo"
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět