Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu - pomalý počítač

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
ADE
Návštěvník
Návštěvník
Příspěvky: 25
Registrován: 05 led 2006 15:46

Prosím o kontrolu - pomalý počítač

#1 Příspěvek od ADE »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Adam at 2018-03-11 17:05:55
Microsoft Windows 10 Home
System drive C: has 481 GB (52%) free of 933 GB
Total RAM: 8122 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:05:58, on 11.03.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0850)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\trend micro\Adam.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com?pc=HPNTDFJS
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Agile1pAgent] C:\Program Files (x86)\1Password 4\Agile1pAgent.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Adam\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Adobe Acrobat Synchronizer] "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_A8A74C443D959D090116AB80EF7334F8] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKCU\..\Run: [Spotify Web Helper] C:\Users\Adam\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: SOLIDWORKS 2015 Rychlé spuštění.lnk = ?
O4 - Global Startup: SOLIDWORKS Nástroj pro stahování na pozadí.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\WINDOWS\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: FlexNet Licensing Service - Flexera Software LLC - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem108.inf,%hpservice_desc%;HP 3DDG Service (hp3ddgsrv) - Unknown owner - C:\WINDOWS\system32\HP3DDGService.exe (file missing)
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem107.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HP Touchpoint Analytics (HPTouchpointAnalyticsService) - HP Inc. - C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: HP SimplePass Service (omniserv) - Softex Inc. - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
O23 - Service: Remote Solver for Flow Simulation 2015 (RemoteSolverDispatcher) - Mentor Graphics Corporation - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: Intel Security True Key Helper Service (TrueKeyServiceHelper) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Unknown owner - C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe (file missing)

--
End of file - 16161 bytes

======Listing Processes======









winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
"fontdrvhost.exe"
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localservice -s bthserv
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
"C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe"
dashost.exe {851276f4-953e-44d6-9c39ede0156385ac}
c:\windows\system32\svchost.exe -k localservice -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s lmhosts
c:\windows\system32\svchost.exe -k localservice -s netprofm
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
c:\windows\system32\svchost.exe -k netsvcs -s Themes
c:\windows\system32\svchost.exe -k localservice -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -s SENS
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\HP3DDGService.exe
C:\WINDOWS\system32\Hpservice.exe
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPSP
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection

C:\WINDOWS\system32\WLANExt.exe 1752701543840
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
C:\WINDOWS\system32\DbxSvc.exe

"C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe" "SOFTWARE\SRAC\COSMOS_FloWorks 2015"
"C:\Program Files\TrueKey\McTkSchedulerService.exe"
"C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
c:\windows\system32\svchost.exe -k netsvcs -s SharedAccess
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
C:\WINDOWS\system32\svchost.exe -k imgsvc

"C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\wbem\wmiprvse.exe
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer

c:\windows\system32\svchost.exe -k netsvcs -s Browser
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s Netman

c:\windows\system32\svchost.exe -k netsvcs -s DoSvc
"C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe" /c
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NgcSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s NgcCtnrSvc
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
C:\PROGRA~1\TrueKey\MCAFEE~2.EXE
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker

"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s WdiSystemHost
c:\windows\system32\svchost.exe -k netsvcs -s wlidsvc

C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" /byrunkey
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe"
"C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
AvastUI.exe /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
c:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:crashpad-handler --capture-python --no-upload-gzip --no-rate-limit --database=C:\Users\Adam\AppData\Local\Dropbox\Crashpad --metrics-dir=0 --url=https://d.dropbox.com/report_crashpad_minidump --https-pin=0x23,0xf2,0xed,0xff,0x3e,0xde,0x90,0x25,0x9a,0x9e,0x30,0xf4,0xa,0xf8,0xf9,0x12,0xa5,0xe5,0xb3,0x69,0x4e,0x69,0x38,0x44,0x3,0x41,0xf6,0x6,0xe,0x1,0x4f,0xfa --https-pin=0xaf,0xf9,0x88,0x90,0x6d,0xde,0x12,0x95,0x5d,0x9b,0xeb,0xbf,0x92,0x8f,0xdc,0xc3,0x1c,0xce,0x32,0x8d,0x5b,0x93,0x84,0xf2,0x1c,0x89,0x41,0xca,0x26,0xe2,0x3,0x91 --https-pin=0x5a,0x88,0x96,0x47,0x22,0xe,0x54,0xd6,0xbd,0x8a,0x16,0x81,0x72,0x24,0x52,0xb,0xb5,0xc7,0x8e,0x58,0x98,0x4b,0xd5,0x70,0x50,0x63,0x88,0xb9,0xde,0xf,0x7,0x5f --https-pin=0xfe,0xa2,0xb7,0xd6,0x45,0xfb,0xa7,0x3d,0x75,0x3c,0x1e,0xc9,0xa7,0x87,0xc,0x40,0xe1,0xf7,0xb0,0xc5,0x61,0xe9,0x27,0xb9,0x85,0xbf,0x71,0x18,0x66,0xe3,0x6f,0x22 --https-pin=0x76,0xee,0x85,0x90,0x37,0x4c,0x71,0x54,0x37,0xbb,0xca,0x6b,0xba,0x60,0x28,0xea,0xdd,0xe2,0xdc,0x6d,0xbb,0xb8,0xc3,0xf6,0x10,0xe8,0x51,0xf1,0x1d,0x1a,0xb7,0xf5 --https-pin=0x6d,0xbf,0xae,0x0,0xd3,0x7b,0x9c,0xd7,0x3f,0x8f,0xb4,0x7d,0xe6,0x59,0x17,0xaf,0x0,0xe0,0xdd,0xdf,0x42,0xdb,0xce,0xac,0x20,0xc1,0x7c,0x2,0x75,0xee,0x20,0x95 --https-pin=0x1e,0xa3,0xc5,0xe4,0x3e,0xd6,0x6c,0x2d,0xa2,0x98,0x3a,0x42,0xa4,0xa7,0x9b,0x1e,0x90,0x67,0x86,0xce,0x9f,0x1b,0x58,0x62,0x14,0x19,0xa0,0x4,0x63,0xa8,0x7d,0x38 --https-pin=0x87,0xaf,0x34,0xd6,0x6f,0xb3,0xf2,0xfd,0xf3,0x6e,0x9,0x11,0x1e,0x9a,0xba,0x2f,0x6f,0x44,0xb2,0x7,0xf3,0x86,0x3f,0x3d,0xb,0x54,0xb2,0x50,0x23,0x90,0x9a,0xa5 --https-pin=0xbc,0xfb,0x44,0xaa,0xb9,0xad,0x2,0x10,0x15,0x70,0x6b,0x41,0x21,0xea,0x76,0x1c,0x81,0xc9,0xe8,0x89,0x67,0x59,0xf,0x6f,0x94,0xae,0x74,0x4d,0xc8,0x8b,0x78,0xfb --https-pin=0xab,0x98,0x49,0x52,0x76,0xad,0xf1,0xec,0xaf,0xf2,0x8f,0x35,0xc5,0x30,0x48,0x78,0x1e,0x5c,0x17,0x18,0xda,0xb9,0xc8,0xe6,0x7a,0x50,0x4f,0x4f,0x6a,0x51,0x32,0x8f --https-pin=0x49,0x5,0x46,0x66,0x23,0xab,0x41,0x78,0xbe,0x92,0xac,0x5c,0xbd,0x65,0x84,0xf7,0xa1,0xe1,0x7f,0x27,0x65,0x2d,0x5a,0x85,0xaf,0x89,0x50,0x4e,0xa2,0x39,0xaa,0xaa --https-pin=0x56,0x32,0xd9,0x7b,0xfa,0x77,0x5b,0xf3,0xc9,0x9d,0xde,0xa5,0x2f,0xc2,0x55,0x34,0x10,0x86,0x40,0x16,0x72,0x9c,0x52,0xdd,0x65,0x24,0xc8,0xa9,0xc3,0xb4,0x48,0x9f --https-pin=0x2a,0x8f,0x2d,0x8a,0xf0,0xeb,0x12,0x38,0x98,0xf7,0x4c,0x86,0x6a,0xc3,0xfa,0x66,0x90,0x54,0xe2,0x3c,0x17,0xbc,0x7a,0x95,0xbd,0x2,0x34,0x19,0x2d,0xc6,0x35,0xd0 --https-pin=0x32,0xb6,0x4b,0x66,0x72,0x7a,0x20,0x63,0xe4,0x6,0x6f,0x3b,0x95,0x8c,0xb0,0xaa,0xee,0x57,0x6a,0x5e,0xce,0xfd,0x95,0x33,0x99,0xbb,0x88,0x74,0x73,0x1d,0x95,0x87 --https-pin=0xf5,0x3c,0x22,0x5,0x98,0x17,0xdd,0x96,0xf4,0x0,0x65,0x16,0x39,0xd2,0xf8,0x57,0xe2,0x10,0x70,0xa5,0x9a,0xbe,0xd9,0x7,0x94,0x0,0xd9,0xf6,0x95,0x50,0x69,0x0 --https-pin=0x67,0xdc,0x4f,0x32,0xfa,0x10,0xe7,0xd0,0x1a,0x79,0xa0,0x73,0xaa,0xc,0x9e,0x2,0x12,0xec,0x2f,0xfc,0x3d,0x77,0x9e,0xa,0xa7,0xf9,0xc0,0xf0,0xe1,0xc2,0xc8,0x93 --https-pin=0x19,0x6,0xc6,0x12,0x4d,0xbb,0x43,0x85,0x78,0xd0,0xe,0x6,0x6d,0x50,0x54,0xc6,0xc3,0x7f,0xf,0xa6,0x2,0x8c,0x5,0x54,0x5e,0x9,0x94,0xed,0xda,0xec,0x86,0x29 --https-pin=0x1d,0x75,0xd0,0x83,0x1b,0x9e,0x8,0x85,0x39,0x4d,0x32,0xc7,0xa1,0xbf,0xdb,0x3d,0xbc,0x1c,0x28,0xe2,0xb0,0xe8,0x39,0x1f,0xb1,0x35,0x98,0x1d,0xbc,0x5b,0xa9,0x36 --annotation=buildno=Dropbox-win-44.4.58 --annotation=client_session_id=c12e483f-fb21-431a-ac6d-a8b0dbb6fa5d --annotation=host_int_account1_boot=2553971454 --annotation=machine_id=2bbcf43c-e54d-4a10-b972-b9ce46535f64 --annotation=platform=win --annotation=platform_version=10 --initial-client-data=0x1c0,0x1d8,0x1dc,0x1d4,0x1e0,0x69d98db8,0x69d98dc8,0x69d98dd8
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:exit-monitor -session-token:c12e483f-fb21-431a-ac6d-a8b0dbb6fa5d -target-handle:468 -target-shutdown-event:480 "-target-command-line:\"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe\" /systemstartup" -method:collectupload -handler-pipe:\\.\pipe\crashpad_8104_HMPKXXWSNGWIONOE
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --gpu-preferences=KAAAAAAAAAAABwAAAQAAAAAAAAAAAGAAAQAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=20.19.15.4531 --gpu-driver-date=9-29-2016 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1341 --service-request-channel-token=E09900F3DB85A42437E5B0FDB75FAD4C --mojo-platform-channel-handle=1552 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --service-pipe-token=B7C0220E07652518E1BD23DBD05468FF --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=B7C0220E07652518E1BD23DBD05468FF --renderer-client-id=4 --mojo-platform-channel-handle=2860 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --service-pipe-token=C5204CE16275DCBEE354C5278DF75197 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=C5204CE16275DCBEE354C5278DF75197 --renderer-client-id=5 --mojo-platform-channel-handle=3004 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --service-pipe-token=88CB4EFF848903B0BAD45D32810E03D7 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=88CB4EFF848903B0BAD45D32810E03D7 --renderer-client-id=6 --mojo-platform-channel-handle=2968 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --service-pipe-token=6A58129183B77250AA3F190D7F11BE09 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=6A58129183B77250AA3F190D7F11BE09 --renderer-client-id=7 --mojo-platform-channel-handle=3144 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --service-pipe-token=A6078F89A892E97F3080F9E0906AFF03 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=A6078F89A892E97F3080F9E0906AFF03 --renderer-client-id=8 --mojo-platform-channel-handle=3476 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --service-pipe-token=E7E50E501D12F90D4AC5EAB99A104767 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=E7E50E501D12F90D4AC5EAB99A104767 --renderer-client-id=9 --mojo-platform-channel-handle=3656 /prefetch:1
C:\WINDOWS\system32\cmd.exe /d /c "C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe" chrome-extension://fkepacicchenbjecpbpbclokcabebhah/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.5d506ad9ff4aeab0 > \\.\pipe\chrome.nativeMessaging.out.5d506ad9ff4aeab0
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe" chrome-extension://fkepacicchenbjecpbpbclokcabebhah/ --parent-window=0
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" -Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" -Embedding
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 740 764 776 8192 772
c:\windows\system32\svchost.exe -k unistacksvcgroup
C:\Windows\System32\InstallAgent.exe -Embedding
C:\Windows\System32\InstallAgentUserBroker.exe -Embedding
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --service-pipe-token=2703D52D6B4E5B0A5F4AB85CA38DCBA9 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=2703D52D6B4E5B0A5F4AB85CA38DCBA9 --renderer-client-id=16 --mojo-platform-channel-handle=2584 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1536,723113015782214072,14010344643042125085,131072 --service-pipe-token=48958BAE929B4F5C9E16F77083A64832 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=48958BAE929B4F5C9E16F77083A64832 --renderer-client-id=17 --mojo-platform-channel-handle=6924 /prefetch:1
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Users\Adam\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\HPCeeScheduleForAdam.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForAdam (null)

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26 1429728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-09-05 229064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18 171704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-09-05 2351920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18 171704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26 1056992]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18 141496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18 141496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18 171704]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26 1429728]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18 141496]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26 1056992]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-09-05 8497368]
"SimplePass"=C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2014-03-28 3962936]
"OPBHOBroker"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2014-03-28 415288]
"OPBHOBrokerDesktop"=C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2014-03-28 415288]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-11-06 2464072]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-11-06 2800296]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2018-02-21 243496]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2017-03-22 303928]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05 315880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2018-01-29 41100328]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2016-07-08 67384]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2016-07-08 110392]
"OneDrive"=C:\Users\Adam\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-11-07 1685704]
"Adobe Acrobat Synchronizer"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [2016-06-30 884920]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-04-11 9532120]
"GoogleChromeAutoLaunch_A8A74C443D959D090116AB80EF7334F8"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2018-03-06 1589592]
"Spotify Web Helper"=C:\Users\Adam\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018-03-03 782736]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2016-04-07 2313408]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"Agile1pAgent"=C:\Program Files (x86)\1Password 4\Agile1pAgent.exe [2015-03-02 3771664]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2015-06-16 421888]
"AccelerometerSysTrayApplet"=C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [2015-07-08 127528]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [2016-07-28 1867448]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2018-02-26 3567936]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
SOLIDWORKS 2015 Rychlé spuštění.lnk - C:\WINDOWS\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe
SOLIDWORKS Nástroj pro stahování na pozadí.lnk - C:\Program Files (x86)\Common Files\Manažer instalací SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
"C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2018-03-10 13:43:46 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2018-03-10 13:43:46 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2018-03-10 13:43:46 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2018-03-10 13:43:46 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2018-03-10 13:43:44 ----D---- C:\Program Files (x86)\VulkanRT
2018-03-10 13:37:06 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2018-03-10 13:37:06 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\wuauclt.exe
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\usocore.dll
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-03-10 13:37:06 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-03-10 13:37:05 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2018-03-10 13:37:05 ----A---- C:\WINDOWS\system32\wuuhext.dll
2018-03-10 13:37:05 ----A---- C:\WINDOWS\system32\wups2.dll
2018-03-10 13:37:05 ----A---- C:\WINDOWS\system32\wups.dll
2018-03-10 13:37:05 ----A---- C:\WINDOWS\system32\wuaueng.dll
2018-03-10 13:37:05 ----A---- C:\WINDOWS\system32\wuapi.dll
2018-03-10 13:37:05 ----A---- C:\WINDOWS\system32\storewuauth.dll
2018-03-10 13:37:05 ----A---- C:\WINDOWS\system32\qmgr.dll
2018-03-10 02:07:19 ----A---- C:\WINDOWS\SYSWOW64\wmiprop.dll
2018-03-10 02:07:19 ----A---- C:\WINDOWS\SYSWOW64\vss_ps.dll
2018-03-10 02:07:16 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2018-03-10 02:07:16 ----A---- C:\WINDOWS\SYSWOW64\msctfp.dll
2018-03-10 02:07:15 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2018-03-10 02:07:15 ----A---- C:\WINDOWS\SYSWOW64\rtmpltfm.dll
2018-03-10 02:07:15 ----A---- C:\WINDOWS\SYSWOW64\rtmpal.dll
2018-03-10 02:07:15 ----A---- C:\WINDOWS\SYSWOW64\rtmmvrortc.dll
2018-03-10 02:07:15 ----A---- C:\WINDOWS\SYSWOW64\rtmcodecs.dll
2018-03-10 02:07:15 ----A---- C:\WINDOWS\SYSWOW64\ortcengine.dll
2018-03-10 02:07:14 ----A---- C:\WINDOWS\SYSWOW64\wmpps.dll
2018-03-10 02:07:14 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2018-03-10 02:07:14 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2018-03-10 02:07:14 ----A---- C:\WINDOWS\SYSWOW64\mapistub.dll
2018-03-10 02:07:14 ----A---- C:\WINDOWS\SYSWOW64\mapi32.dll
2018-03-10 02:07:14 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2018-03-10 02:07:14 ----A---- C:\WINDOWS\SYSWOW64\fixmapi.exe
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2018-03-10 02:07:13 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\itss.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2018-03-10 02:07:12 ----A---- C:\WINDOWS\SYSWOW64\fdPnp.dll
2018-03-10 02:07:09 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2018-03-10 02:07:09 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2018-03-10 02:07:09 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2018-03-10 02:07:09 ----A---- C:\WINDOWS\SYSWOW64\certenc.dll
2018-03-10 02:07:08 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2018-03-10 02:07:08 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\wwapi.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\fdWNet.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2018-03-10 02:07:07 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2018-03-10 02:07:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2018-03-10 02:07:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2018-03-10 02:07:06 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-03-10 02:07:06 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2018-03-10 02:07:06 ----A---- C:\WINDOWS\SYSWOW64\ssdpapi.dll
2018-03-10 02:07:06 ----A---- C:\WINDOWS\SYSWOW64\PimIndexMaintenanceClient.dll
2018-03-10 02:07:06 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-03-10 02:07:05 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2018-03-10 02:07:05 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2018-03-10 02:07:05 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-03-10 02:07:05 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2018-03-10 02:07:05 ----A---- C:\WINDOWS\SYSWOW64\rdvvmtransport.dll
2018-03-10 02:07:05 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\wscript.exe
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\wscproxystub.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2018-03-10 02:07:03 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2018-03-10 02:07:02 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2018-03-10 02:07:02 ----A---- C:\WINDOWS\SYSWOW64\keyiso.dll
2018-03-10 02:07:02 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-03-10 02:07:02 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-03-10 02:07:01 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-03-10 02:07:01 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2018-03-10 02:07:01 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2018-03-10 02:07:01 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2018-03-10 02:07:01 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2018-03-10 02:07:01 ----A---- C:\WINDOWS\SYSWOW64\perfhost.exe
2018-03-10 02:07:01 ----A---- C:\WINDOWS\SYSWOW64\P2P.dll
2018-03-10 02:07:01 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2018-03-10 02:07:00 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2018-03-10 02:06:58 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2018-03-10 02:06:57 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2018-03-10 02:06:57 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2018-03-10 02:06:56 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-03-10 02:06:56 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2018-03-10 02:06:56 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2018-03-10 02:06:56 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2018-03-10 02:06:56 ----A---- C:\WINDOWS\SYSWOW64\msvcp110_win.dll
2018-03-10 02:06:56 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2018-03-10 02:06:56 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2018-03-10 02:06:56 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2018-03-10 02:06:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2018-03-10 02:06:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-03-10 02:06:53 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2018-03-10 02:06:52 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2018-03-10 02:06:43 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2018-03-10 02:06:42 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2018-03-10 02:06:42 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2018-03-10 02:06:41 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2018-03-10 02:06:40 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2018-03-10 02:06:40 ----A---- C:\WINDOWS\SYSWOW64\LocationFrameworkPS.dll
2018-03-10 02:06:40 ----A---- C:\WINDOWS\SYSWOW64\LocationFrameworkInternalPS.dll
2018-03-10 02:06:40 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2018-03-10 02:06:40 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-03-10 02:06:40 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2018-03-10 02:06:40 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2018-03-10 02:06:39 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2018-03-10 02:06:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.Phone.dll
2018-03-10 02:06:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-03-10 02:06:38 ----A---- C:\WINDOWS\SYSWOW64\dot3dlg.dll
2018-03-10 02:06:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2018-03-10 02:06:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2018-03-10 02:06:38 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2018-03-10 02:06:38 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2018-03-10 02:06:34 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2018-03-10 02:06:33 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2018-03-10 02:06:32 ----A---- C:\WINDOWS\SYSWOW64\xolehlp.dll
2018-03-10 02:06:31 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2018-03-10 02:06:30 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2018-03-10 02:06:30 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2018-03-10 02:06:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2018-03-10 02:06:29 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2018-03-10 02:06:29 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2018-03-10 02:06:10 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2018-03-10 02:06:10 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-03-10 02:06:02 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2018-03-10 02:06:01 ----A---- C:\WINDOWS\SYSWOW64\wshhyperv.dll
2018-03-10 02:06:01 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2018-03-10 02:05:04 ----A---- C:\WINDOWS\system32\drivers\vms3cap.sys
2018-03-10 02:05:04 ----A---- C:\WINDOWS\system32\drivers\VMBusHID.sys
2018-03-10 02:05:03 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2018-03-10 02:04:58 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-03-10 02:04:57 ----A---- C:\WINDOWS\system32\dssvc.dll
2018-03-10 02:04:57 ----A---- C:\WINDOWS\system32\drivers\vmgencounter.sys
2018-03-10 02:04:57 ----A---- C:\WINDOWS\system32\drivers\hyperkbd.sys
2018-03-10 02:04:56 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2018-03-10 02:04:56 ----A---- C:\WINDOWS\system32\icfupgd.dll
2018-03-10 02:04:56 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-03-10 02:04:56 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2018-03-10 02:04:56 ----A---- C:\WINDOWS\system32\drivers\rdpbus.sys
2018-03-10 02:04:44 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-03-10 02:04:44 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\wwapi.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\wwansvc.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\wow64.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\wkssvc.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\winsrv.dll
2018-03-10 02:04:43 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2018-03-10 02:04:42 ----A---- C:\WINDOWS\system32\winlogon.exe
2018-03-10 02:04:42 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-03-10 02:04:42 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-03-10 02:04:42 ----A---- C:\WINDOWS\system32\wifitask.exe
2018-03-10 02:04:42 ----A---- C:\WINDOWS\system32\sysntfy.dll
2018-03-10 02:04:42 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2018-03-10 02:04:41 ----A---- C:\WINDOWS\system32\WPTaskScheduler.dll
2018-03-10 02:04:41 ----A---- C:\WINDOWS\system32\wmiprop.dll
2018-03-10 02:04:41 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2018-03-10 02:04:41 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2018-03-10 02:04:41 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2018-03-10 02:04:41 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2018-03-10 02:04:41 ----A---- C:\WINDOWS\system32\DbgModel.dll
2018-03-10 02:04:41 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-03-10 02:04:40 ----A---- C:\WINDOWS\system32\vss_ps.dll
2018-03-10 02:04:40 ----A---- C:\WINDOWS\system32\virtdisk.dll
2018-03-10 02:04:40 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2018-03-10 02:04:38 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2018-03-10 02:04:38 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2018-03-10 02:04:38 ----A---- C:\WINDOWS\system32\nsisvc.dll
2018-03-10 02:04:38 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2018-03-10 02:04:37 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2018-03-10 02:04:25 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-03-10 02:04:25 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2018-03-10 02:04:25 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2018-03-10 02:04:23 ----A---- C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2018-03-10 02:04:23 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-03-10 02:04:21 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2018-03-10 02:04:15 ----A---- C:\WINDOWS\system32\UserDataService.dll
2018-03-10 02:03:47 ----A---- C:\WINDOWS\system32\utcutil.dll
2018-03-10 02:03:47 ----A---- C:\WINDOWS\system32\diagtrack.dll
2018-03-10 02:03:46 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\Unistore.dll
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\twinui.dll
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\TimeBrokerServer.dll
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\schedsvc.dll
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\SessEnv.dll
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\rdvvmtransport.dll
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\PhoneService.dll
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-03-10 02:03:45 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2018-03-10 02:03:30 ----A---- C:\WINDOWS\system32\taskcomp.dll
2018-03-10 02:03:30 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2018-03-10 02:03:30 ----A---- C:\WINDOWS\system32\msctfp.dll
2018-03-10 02:03:29 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-03-10 02:03:29 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-03-10 02:03:29 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-03-10 02:03:29 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-03-10 02:03:29 ----A---- C:\WINDOWS\system32\drivers\storqosflt.sys
2018-03-10 02:03:29 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\srvsvc.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\shell32.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\SCardBi.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\rtmpltfm.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\rtmpal.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\rtmmvrortc.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\rtmcodecs.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\ortcengine.dll
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2018-03-10 02:03:28 ----A---- C:\WINDOWS\system32\certprop.dll
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\wscsvc.dll
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\wscproxystub.dll
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\wscapi.dll
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\SensorService.dll
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\LsaIso.exe
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\kerberos.dll
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2018-03-10 02:03:27 ----A---- C:\WINDOWS\system32\aadtb.dll
2018-03-10 02:03:21 ----A---- C:\WINDOWS\system32\wscript.exe
2018-03-10 02:03:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-03-10 02:03:21 ----A---- C:\WINDOWS\system32\scrobj.dll
2018-03-10 02:03:21 ----A---- C:\WINDOWS\system32\jscript.dll
2018-03-10 02:03:21 ----A---- C:\WINDOWS\system32\cscript.exe
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\sysmain.dll
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\NaturalAuth.dll
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\keyiso.dll
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-03-10 02:03:20 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2018-03-10 02:03:18 ----A---- C:\WINDOWS\system32\logoncli.dll
2018-03-10 02:03:17 ----A---- C:\WINDOWS\system32\LicenseManagerSvc.dll
2018-03-10 02:03:16 ----A---- C:\WINDOWS\system32\WinSCard.dll
2018-03-10 02:03:16 ----A---- C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2018-03-10 02:03:16 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2018-03-10 02:03:11 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-03-10 02:03:11 ----A---- C:\WINDOWS\system32\rmclient.dll
2018-03-10 02:03:11 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-03-10 02:03:11 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2018-03-10 02:03:10 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2018-03-10 02:03:05 ----A---- C:\WINDOWS\system32\vpnike.dll
2018-03-10 02:03:05 ----A---- C:\WINDOWS\system32\rascustom.dll
2018-03-10 02:03:05 ----A---- C:\WINDOWS\system32\rasauto.dll
2018-03-10 02:03:05 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2018-03-10 02:03:05 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2018-03-10 02:03:05 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2018-03-10 02:03:05 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys
2018-03-10 02:03:05 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2018-03-10 02:03:04 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-03-10 02:03:04 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2018-03-10 02:03:04 ----A---- C:\WINDOWS\system32\rdpbase.dll
2018-03-10 02:03:04 ----A---- C:\WINDOWS\system32\drivers\rasacd.sys
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\psmsrv.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\provops.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\provhandlers.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\provengine.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\provdatastore.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\propsys.dll
2018-03-10 02:03:03 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2018-03-10 02:03:02 ----A---- C:\WINDOWS\system32\spoolsv.exe
2018-03-10 02:03:02 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2018-03-10 02:03:02 ----A---- C:\WINDOWS\system32\p2psvc.dll
2018-03-10 02:03:02 ----A---- C:\WINDOWS\splwow64.exe
2018-03-10 02:03:01 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2018-03-10 02:03:01 ----A---- C:\WINDOWS\system32\P2P.dll
2018-03-10 02:03:01 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2018-03-10 02:03:01 ----A---- C:\WINDOWS\system32\drivers\pcw.sys
2018-03-10 02:03:01 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2018-03-10 02:03:00 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-03-10 02:03:00 ----A---- C:\WINDOWS\system32\Windows.Shell.StartLayoutPopulationEvents.dll
2018-03-10 02:03:00 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2018-03-10 02:03:00 ----A---- C:\WINDOWS\system32\OOBEUpdater.exe
2018-03-10 02:03:00 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2018-03-10 02:03:00 ----A---- C:\WINDOWS\system32\offreg.dll
2018-03-10 02:03:00 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-03-10 02:02:59 ----A---- C:\WINDOWS\system32\drivers\null.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\SEMgrSvc.dll
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\SEMgrPS.dll
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\nlasvc.dll
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\nlaapi.dll
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\ncsi.dll
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\ncbservice.dll
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\netbios.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\drivers\lltdio.sys
2018-03-10 02:02:53 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-03-10 02:02:52 ----RA---- C:\WINDOWS\system32\Windows.Mirage.Internal.Capture.UX.dll
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\wmpps.dll
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\msxml6.dll
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\msvcp110_win.dll
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\mfps.dll
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\mfcore.dll
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2018-03-10 02:02:52 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2018-03-10 02:02:51 ----A---- C:\WINDOWS\system32\SyncController.dll
2018-03-10 02:02:51 ----A---- C:\WINDOWS\system32\odbcconf.dll
2018-03-10 02:02:51 ----A---- C:\WINDOWS\system32\mapistub.dll
2018-03-10 02:02:51 ----A---- C:\WINDOWS\system32\mapi32.dll
2018-03-10 02:02:51 ----A---- C:\WINDOWS\system32\inetcomm.dll
2018-03-10 02:02:51 ----A---- C:\WINDOWS\system32\fixmapi.exe
2018-03-10 02:02:51 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2018-03-10 02:02:51 ----A---- C:\WINDOWS\system32\APHostService.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\url.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\sspicli.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\nrpsrv.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\LogonController.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\drivers\irda.sys
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\consent.exe
2018-03-10 02:02:50 ----A---- C:\WINDOWS\system32\appinfo.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\wextract.exe
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\webcheck.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\occache.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\msrating.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\msIso.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\inseng.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\imgutil.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\iexpress.exe
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\iesysprep.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\iesetup.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\iernonce.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\ieproxy.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2018-03-10 02:02:49 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-03-10 02:02:48 ----A---- C:\WINDOWS\system32\mshtmled.dll
2018-03-10 02:02:48 ----A---- C:\WINDOWS\system32\mshta.exe
2018-03-10 02:02:48 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2018-03-10 02:02:48 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2018-03-10 02:02:48 ----A---- C:\WINDOWS\system32\msfeeds.dll
2018-03-10 02:02:48 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-03-10 02:02:47 ----A---- C:\WINDOWS\system32\dxtrans.dll
2018-03-10 02:02:42 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2018-03-10 02:02:41 ----A---- C:\WINDOWS\system32\wininet.dll
2018-03-10 02:02:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-03-10 02:02:41 ----A---- C:\WINDOWS\system32\licmgr10.dll
2018-03-10 02:02:41 ----A---- C:\WINDOWS\system32\jsproxy.dll
2018-03-10 02:02:41 ----A---- C:\WINDOWS\system32\ieui.dll
2018-03-10 02:02:41 ----A---- C:\WINDOWS\system32\iepeers.dll
2018-03-10 02:02:41 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2018-03-10 02:02:41 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2018-03-10 02:02:40 ----A---- C:\WINDOWS\system32\tzres.dll
2018-03-10 02:02:40 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2018-03-10 02:02:40 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2018-03-10 02:02:40 ----A---- C:\WINDOWS\system32\httpprxm.dll
2018-03-10 02:02:40 ----A---- C:\WINDOWS\system32\adhsvc.dll
2018-03-10 02:02:39 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-03-10 02:02:39 ----A---- C:\WINDOWS\system32\pngfilt.dll
2018-03-10 02:02:39 ----A---- C:\WINDOWS\system32\itss.dll
2018-03-10 02:02:39 ----A---- C:\WINDOWS\system32\hlink.dll
2018-03-10 02:02:39 ----A---- C:\WINDOWS\system32\hal.dll
2018-03-10 02:02:39 ----A---- C:\WINDOWS\system32\drivers\http.sys
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\LocationFrameworkPS.dll
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\fdPnp.dll
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\drivers\gpuenergydrv.sys
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\atmlib.dll
2018-03-10 02:02:38 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\wer.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\efssvc.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\efslsaext.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\dusmsvc.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\dot3svc.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\dot3dlg.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-03-10 02:02:37 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2018-03-10 02:02:36 ----A---- C:\WINDOWS\system32\dosvc.dll
2018-03-10 02:02:36 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-03-10 02:02:34 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2018-03-10 02:02:34 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-03-10 02:02:34 ----A---- C:\WINDOWS\system32\domgmt.dll
2018-03-10 02:02:34 ----A---- C:\WINDOWS\system32\d2d1.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\xolehlp.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\wldp.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\wcimage.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\SmsRouterSvc.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\ole32.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\drivers\fs_rec.sys
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\container_xml.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\container.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\cldapi.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\ci.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\certutil.exe
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\certenc.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-03-10 02:02:33 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-03-10 02:02:22 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-03-10 02:02:22 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2018-03-10 02:02:21 ----A---- C:\WINDOWS\system32\winsku.dll
2018-03-10 02:02:21 ----A---- C:\WINDOWS\system32\winbrand.dll
2018-03-10 02:02:21 ----A---- C:\WINDOWS\system32\wcncsvc.dll
2018-03-10 02:02:21 ----A---- C:\WINDOWS\system32\WcnApi.dll
2018-03-10 02:02:21 ----A---- C:\WINDOWS\system32\wc_storage.dll
2018-03-10 02:02:21 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2018-03-10 02:02:21 ----A---- C:\WINDOWS\system32\BrokerLib.dll
2018-03-10 02:02:21 ----A---- C:\WINDOWS\system32\bisrv.dll
2018-03-10 02:02:20 ----A---- C:\WINDOWS\system32\winresume.exe
2018-03-10 02:02:20 ----A---- C:\WINDOWS\system32\winload.exe
2018-03-10 02:02:20 ----A---- C:\WINDOWS\system32\drivers\beep.sys
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\invagent.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\devinv.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\advapi32.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\actxprxy.dll
2018-03-10 02:02:19 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-03-10 02:02:07 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2018-03-10 02:02:06 ----A---- C:\WINDOWS\system32\usermgr.dll
2018-03-10 02:02:06 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-03-10 02:02:06 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-03-10 02:02:06 ----A---- C:\WINDOWS\system32\pcadm.dll
2018-03-10 02:02:06 ----A---- C:\WINDOWS\system32\aepic.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\wshhyperv.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\skci.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\securekernel.exe
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\NotificationController.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\IumSdk.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\iumdll.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\iumbase.dll
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2018-03-10 02:02:05 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2018-03-10 02:02:04 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\vmictimeprovider.dll
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\hvloader.exe
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\hvhostsvc.dll
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\drivers\vmbkmclr.sys
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2018-03-10 02:02:03 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2018-03-10 02:02:02 ----A---- C:\WINDOWS\system32\icsvcext.dll
2018-03-10 02:02:02 ----A---- C:\WINDOWS\system32\icsvc.dll
2018-03-10 02:01:39 ----A---- C:\WINDOWS\system32\fdWNet.dll
2018-03-10 02:01:28 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2018-03-10 02:01:27 ----A---- C:\WINDOWS\system32\drivers\vmgid.sys
2018-03-10 02:01:25 ----A---- C:\WINDOWS\system32\vmbuspipe.dll
2018-03-10 02:01:25 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2018-03-10 02:01:24 ----A---- C:\WINDOWS\system32\drivers\Synth3dVsc.sys
2018-03-10 02:01:24 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2018-03-10 02:01:22 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys
2018-03-10 02:01:22 ----A---- C:\WINDOWS\system32\drivers\storvsc.sys
2018-03-10 02:01:21 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2018-03-10 02:01:20 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-03-10 02:01:20 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-03-10 02:01:20 ----A---- C:\WINDOWS\system32\drivers\vdrvroot.sys
2018-03-10 02:01:20 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2018-03-10 02:01:20 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-03-10 02:01:20 ----A---- C:\WINDOWS\system32\drivers\dmvsc.sys
2018-03-10 02:01:12 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2018-03-10 02:01:11 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-03-10 02:01:11 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2018-03-10 02:01:10 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2018-03-09 12:36:06 ----A---- C:\WINDOWS\system32\osrss.dll
2018-03-09 12:13:31 ----HD---- C:\$WINDOWS.~BT
2018-03-09 12:13:30 ----D---- C:\Windows.old
2018-03-09 12:08:16 ----A---- C:\WINDOWS\progress.ini
2018-03-09 10:54:11 ----HD---- C:\$GetCurrent
2018-03-09 10:52:14 ----D---- C:\Windows10Upgrade
2018-03-09 10:36:48 ----D---- C:\WINDOWS\UpdateAssistant
2018-03-03 16:11:54 ----D---- C:\Users\Adam\AppData\Roaming\TunesKit Spotify Converter
2018-02-26 12:24:48 ----A---- C:\WINDOWS\system32\drivers\dbx-stable.sys
2018-02-26 12:24:48 ----A---- C:\WINDOWS\system32\drivers\dbx-dev.sys
2018-02-26 12:24:48 ----A---- C:\WINDOWS\system32\drivers\dbx-canary.sys
2018-02-26 12:24:48 ----A---- C:\WINDOWS\system32\DbxSvc.exe
2018-02-21 18:14:10 ----A---- C:\WINDOWS\system32\aswBoot.exe
2018-02-15 02:16:41 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2018-02-15 02:16:41 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-02-15 02:16:41 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll

======List of files/folders modified in the last 1 month======

2018-03-11 17:05:58 ----D---- C:\WINDOWS\Prefetch
2018-03-11 17:05:57 ----D---- C:\Program Files\trend micro
2018-03-11 17:05:05 ----D---- C:\WINDOWS\Temp
2018-03-11 17:04:00 ----D---- C:\WINDOWS\AppReadiness
2018-03-11 17:03:07 ----D---- C:\WINDOWS\System32
2018-03-11 17:03:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-03-11 17:02:13 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2018-03-11 17:01:26 ----D---- C:\WINDOWS\system32\config
2018-03-11 17:01:26 ----D---- C:\Windows
2018-03-11 17:01:26 ----D---- C:\ProgramData\NVIDIA
2018-03-11 16:59:28 ----RD---- C:\WINDOWS\Microsoft.NET
2018-03-11 16:59:28 ----D---- C:\WINDOWS\WinSxS
2018-03-11 16:59:17 ----D---- C:\WINDOWS\INF
2018-03-11 16:58:05 ----D---- C:\WINDOWS\system32\sru
2018-03-11 16:55:25 ----D---- C:\WINDOWS\system32\drivers
2018-03-11 16:53:46 ----D---- C:\WINDOWS\system32\catroot2
2018-03-11 16:52:20 ----D---- C:\WINDOWS\SysWOW64
2018-03-11 16:52:15 ----D---- C:\WINDOWS\system32\wbem
2018-03-11 16:52:15 ----D---- C:\WINDOWS\system32\cs-CZ
2018-03-11 16:52:08 ----SD---- C:\WINDOWS\UpdateAssistantV2
2018-03-11 16:52:08 ----SD---- C:\WINDOWS\SYSWOW64\F12
2018-03-11 16:52:08 ----D---- C:\WINDOWS\SYSWOW64\oobe
2018-03-11 16:52:08 ----D---- C:\WINDOWS\SYSWOW64\migration
2018-03-11 16:52:08 ----D---- C:\WINDOWS\SYSWOW64\Dism
2018-03-11 16:52:08 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2018-03-11 16:52:02 ----D---- C:\WINDOWS\system32\oobe
2018-03-11 16:51:58 ----SD---- C:\WINDOWS\system32\F12
2018-03-11 16:51:58 ----D---- C:\WINDOWS\system32\migration
2018-03-11 16:51:58 ----D---- C:\WINDOWS\system32\Dism
2018-03-11 16:51:58 ----D---- C:\WINDOWS\system32\Boot
2018-03-11 16:51:58 ----D---- C:\WINDOWS\system32\appraiser
2018-03-11 16:51:52 ----RD---- C:\WINDOWS\PrintDialog
2018-03-11 16:51:52 ----D---- C:\WINDOWS\ShellExperiences
2018-03-11 16:51:52 ----D---- C:\WINDOWS\Provisioning
2018-03-11 16:51:51 ----RSD---- C:\WINDOWS\Fonts
2018-03-11 16:51:51 ----D---- C:\WINDOWS\HoloShell
2018-03-11 16:51:51 ----D---- C:\WINDOWS\AppPatch
2018-03-11 16:51:51 ----D---- C:\Program Files\Windows Photo Viewer
2018-03-11 16:51:51 ----D---- C:\Program Files\Windows Media Player
2018-03-11 16:51:51 ----D---- C:\Program Files\Internet Explorer
2018-03-11 16:51:51 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2018-03-11 16:51:51 ----D---- C:\Program Files (x86)\Windows Media Player
2018-03-11 16:51:51 ----D---- C:\Program Files (x86)\Internet Explorer
2018-03-11 16:51:39 ----D---- C:\WINDOWS\system32\DriverStore
2018-03-11 16:46:12 ----D---- C:\WINDOWS\Logs
2018-03-11 15:53:26 ----D---- C:\WINDOWS\system32\SleepStudy
2018-03-11 14:41:10 ----D---- C:\Users\Adam\AppData\Roaming\Spotify
2018-03-10 13:44:40 ----D---- C:\WINDOWS\CbsTemp
2018-03-10 13:44:16 ----D---- C:\ProgramData\NVIDIA Corporation
2018-03-10 13:43:51 ----D---- C:\WINDOWS\system32\Tasks
2018-03-10 13:43:46 ----D---- C:\Program Files\NVIDIA Corporation
2018-03-10 13:43:44 ----RD---- C:\Program Files (x86)
2018-03-10 13:39:31 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2018-03-10 13:38:41 ----D---- C:\WINDOWS\system32\CatRoot
2018-03-10 02:32:14 ----D---- C:\WINDOWS\system32\MRT
2018-03-10 02:25:02 ----D---- C:\WINDOWS\debug
2018-03-10 02:24:41 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-10 02:23:47 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-03-09 12:37:13 ----SHD---- C:\WINDOWS\Installer
2018-03-09 12:37:13 ----SHD---- C:\Config.Msi
2018-03-09 12:37:10 ----AD---- C:\Program Files\rempl
2018-03-09 12:37:03 ----SHD---- C:\System Volume Information
2018-03-09 12:13:32 ----DC---- C:\WINDOWS\Panther
2018-03-09 12:00:01 ----D---- C:\WINDOWS\system32\LogFiles
2018-03-09 10:36:50 ----D---- C:\WINDOWS\SoftwareDistribution
2018-03-09 09:11:40 ----D---- C:\found.000
2018-03-08 11:46:07 ----D---- C:\Users\Adam\AppData\Roaming\Seznam.cz
2018-03-08 11:45:44 ----HD---- C:\Program Files\WindowsApps
2018-03-06 16:23:22 ----D---- C:\WINDOWS\Tasks
2018-03-01 08:51:36 ----D---- C:\Program Files (x86)\Dropbox
2018-02-25 19:22:02 ----D---- C:\Users\Adam\AppData\Roaming\vlc
Nahoru
ADE
Návštěvník
Návštěvník
Příspěvky: 25
Registrován: 05 led 2006 15:46

Re: Prosím o kontrolu - pomalý počítač

#2 Příspěvek od ADE »

pokračovaní logu:


======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2018-01-25 199448]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2018-01-25 343768]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2018-01-25 57696]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-02-21 84368]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-02-21 379448]
R0 hpdskflt;@oem108.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2017-09-22 38816]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-06-23 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R0 PxHlpa64;PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-02-21 192944]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2018-01-25 321512]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2018-02-21 190440]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-07-09 41800]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2018-02-21 110328]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2018-02-21 1026696]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2018-02-21 459952]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-03-18 54272]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-01-01 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2018-02-21 146648]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2018-02-21 205464]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-03-18 50688]
R3 Accelerometer;@oem108.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2017-09-22 52648]
R3 bcbtums;@oem44.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-10-14 208176]
R3 BCMWL63A;@oem56.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2017-07-13 11794376]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2017-10-10 105472]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-10-10 97280]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-05 130560]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2017-03-18 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-10-20 7963632]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2013-08-13 21408]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2013-08-13 21920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-09-05 4514008]
R3 ISCT;@oem28.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD64.sys [2013-08-13 46568]
R3 iwdbus;@oem68.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-03-01 27032]
R3 MEIx64;@oem40.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-12-10 100312]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_c8a41364c1b3daa8\nvlddmkm.sys [2018-01-16 17036560]
R3 nvvad_WaveExtensible;@oem47.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-10-03 38216]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-10-10 180736]
R3 rt640x64;@oem70.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-09-05 886528]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2017-08-18 55384]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-03-18 123808]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-03-18 103328]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-03-18 58784]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-03-18 61848]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-02-21 46968]
S3 aswTap;@oem45.inf,%DeviceDescription%;avast! SecureLine TAP Adapter v3; C:\WINDOWS\System32\drivers\aswTap.sys [2014-08-05 44640]
S3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2017-03-18 181248]
S3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2017-03-18 47104]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2017-10-10 982016]
S3 btwampfl;@oem44.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-10-14 223024]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-05 39424]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-03-18 122880]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-04-24 129152]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-03-18 21504]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-03-18 51104]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2018-01-01 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-03-18 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-03-18 165376]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-03-18 526240]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IntcDAud;@oem73.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-01-01 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-03-18 842656]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-03-18 108960]
S3 Netaapl;@oem42.inf,%Netaapl.Service.DispName%;Apple Mobile Device Ethernet Service; C:\WINDOWS\System32\drivers\netaapl64.sys [2014-08-15 23040]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-11-06 19784]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-03-18 936864]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2014-01-03 331992]
S3 RTSPER;@oem34.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-12-06 751632]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-01-05 2319848]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-03-17 83768]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2018-02-21 300600]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 CDPUserSvc_504103;Uživatelská služba platformy připojených zařízení_504103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2017-09-05 3058416]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DbxSvc;DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [2018-02-26 51024]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-11-06 1148744]
R2 hp3ddgsrv;@oem108.inf,%hpservice_desc%;HP 3DDG Service; C:\WINDOWS\system32\HP3DDGService.exe [2017-09-22 130072]
R2 hpsrv;@oem107.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2015-06-29 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-11-21 332144]
R2 HPTouchpointAnalyticsService;HP Touchpoint Analytics; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [2017-11-22 332216]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2015-06-29 602888]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-06-23 18856]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-11-01 373744]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-12-10 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-12-10 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-12-10 390616]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-12-19 463856]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-11-06 1795912]
R2 omniserv; HP SimplePass Service; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [2014-03-28 88064]
R2 OneSyncSvc_504103;Hostitel synchronizace_504103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 osrss;OS Remediation System Service; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 RemoteSolverDispatcher;Remote Solver for Flow Simulation 2015; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [2015-06-18 238848]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2015-09-05 294616]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-09-30 336320]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2018-02-21 7564512]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 PimIndexMaintenanceSvc_504103;Data kontaktů_504103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-04-14 143144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-07-18 317408]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-03-18 52920]
S3 BcmBtRSupport;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-10-14 2286848]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-11-01 301552]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-04-14 143144]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevicesFlowUserSvc_504103;Tok zařízení_504103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-03-18 86528]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2016-01-19 1484080]
S3 FlexNet Licensing Service;FlexNet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [2016-01-19 1074480]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2017-03-22 689464]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService_504103;Služba zasílání zpráv_504103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-11-06 19819848]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-10-03 159960]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-18 1284608]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-09-27 83984]
S4 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2016-04-07 694464]
S4 CoordinatorServiceHost;DTSInterops; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [2015-06-19 81400]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu - pomalý počítač

#3 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
ADE
Návštěvník
Návštěvník
Příspěvky: 25
Registrován: 05 led 2006 15:46

Re: Prosím o kontrolu - pomalý počítač

#4 Příspěvek od ADE »

# AdwCleaner 7.0.8.0 - Logfile created on Sun Mar 11 16:31:10 2018
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-03-08.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Legacy, C:\Users\Public\Pokki
PUP.Optional.MarketScore, C:\Program Files (x86)\RelevantKnowledge


***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
PUP.Optional.FreeMakeConverter, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 | ProductUpdater


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Legacy, Plugin found: SoundCloud Downloader Free -

/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271


*************************

C:/AdwCleaner/AdwCleaner[C1].txt - [4313 B] - [2015/10/25 10:0:31]
C:/AdwCleaner/AdwCleaner[S1].txt - [3993 B] - [2015/10/25 9:55:0]
C:/AdwCleaner/AdwCleaner[S2].txt - [2200 B] - [2015/10/25 9:58:39]


########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu - pomalý počítač

#5 Příspěvek od Rudy »

V ADW ještě klikněte na mazání, restartujte a pak dejte log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=152707 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“