Dobrý den,
prosím o kontrolu logu. Důvodem je:
- zpomalení internetu a otvírání Google chrom
- zničehonic nejdou spustit některé programy (např. uncropMKV, aj.)
- začala vyskakovat hláška o aktivaci Win 10 - přitom je mám legálně aktivované přes rok
Děkuji.
Zatím.
C.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Zbyšek at 2018-04-03 08:26:16
Microsoft Windows 10 Home
System drive C: has 30 GB (27%) free of 114 GB
Total RAM: 8134 MB (66% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:26:17, on 03.04.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0015)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\ASUS Xonar D2X Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files (x86)\foobar2000\foobar2000.exe
C:\Program Files\trend micro\Zbyšek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: SuggestMeYesBHO - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKCU\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup
O4 - HKCU\..\Run: [Core Temp] "C:\Supgam\CoreTemp\Core Temp.exe"
O4 - HKCU\..\Run: [Lync] "C:\Program Files (x86)\Microsoft Office\Root\Office16\lync.exe" /fromrunkey
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{1141354d-17e1-4e8a-8fd8-d54fc9c18163}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{785d6d22-fd0e-46cb-96b7-058f148deb4b}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\..\{febc4642-5883-4201-98db-1d3396901a13}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{1141354d-17e1-4e8a-8fd8-d54fc9c18163}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
--
End of file - 11753 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-953c52d5-9861-48fd-b53e-e8aa50131fda -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-1894a143-2514-461a-8620-6ecfe58dd125 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-bccfe7e0-2567-414c-b5dd-934a25f4b0e7 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-f957c02d-938d-4607-8f23-041e069378b7 -LifetimeId:faecdf62-80ab-4b15-854b-0cce4c84684b -DeviceGroupId:WudfDefaultDevicePool
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k rpcss -p
winlogon.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
"fontdrvhost.exe"
"dwm.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s lmhosts
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservice -p -s SEMgrSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-ca70aca6-f001-4f49-aeff-84efa0f48f05 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-6c697146-fd33-44c8-8a16-084441d6940e -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-316df968-7e54-42ff-bffe-ea0960d30c7d -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5c56c66f-9173-43d8-8118-81ecd81803ad -LifetimeId:fd7909b5-b595-4484-96df-414023783b89 -DeviceGroupId:WpdFsGroup
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
C:\WINDOWS\system32\mqsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs -p -s Browser
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Supgam\CoreTemp\Core Temp.exe"
"C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe" /s
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x4ac
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe"
"C:\WINDOWS\system32\LicensingUI.exe" /DesktopExperience
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\ASUS Xonar D2X Audio\Customapp\ASUSAUDIOCENTER.EXE"
"C:\Windows\SysWOW64\HsMgr.exe" Envoke
"C:\Windows\System\HsMgr64.exe" Envoke
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
"C:\Program Files (x86)\foobar2000\foobar2000.exe"
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=65.0.3325.181 --initial-client-data=0x1d0,0x1d4,0x1d8,0x1cc,0x1dc,0x7ffb566df1e8,0x7ffb566df1f8,0x7ffb566df208
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5760 --on-initialized-event-handle=648 --parent-handle=652 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1504,4858180063112588976,17077878429272594293,131072 --gpu-preferences=KAAAAAAAAAAABwAAAQAAAAAAAAAAAGAAAQAAAAAAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --gpu-vendor-id=0x10de --gpu-device-id=0x1380 --gpu-driver-vendor=NVIDIA --gpu-driver-version=23.21.13.9135 --gpu-driver-date=3-23-2018 --service-request-channel-token=D1E78D2CD4F320BC779C4FEEA3841B25 --mojo-platform-channel-handle=1596 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1504,4858180063112588976,17077878429272594293,131072 --service-pipe-token=7DA50C1620B2212C75E955CBA0BDFE31 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=7DA50C1620B2212C75E955CBA0BDFE31 --renderer-client-id=3 --mojo-platform-channel-handle=2176 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1504,4858180063112588976,17077878429272594293,131072 --service-pipe-token=2903C3F8FA7F2419294A932EEC259D92 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=2903C3F8FA7F2419294A932EEC259D92 --renderer-client-id=4 --mojo-platform-channel-handle=3424 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1504,4858180063112588976,17077878429272594293,131072 --service-pipe-token=EA6F98E3174DBFFFB8DB9F56F3DE62A2 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=EA6F98E3174DBFFFB8DB9F56F3DE62A2 --renderer-client-id=5 --mojo-platform-channel-handle=3416 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1504,4858180063112588976,17077878429272594293,131072 --service-pipe-token=C84A178C832E6FB2CE68F7904C818E80 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=C84A178C832E6FB2CE68F7904C818E80 --renderer-client-id=7 --mojo-platform-channel-handle=4068 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1504,4858180063112588976,17077878429272594293,131072 --service-pipe-token=FC49019070FBFF1321449FF37A70CC92 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=FC49019070FBFF1321449FF37A70CC92 --renderer-client-id=11 --mojo-platform-channel-handle=6568 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1504,4858180063112588976,17077878429272594293,131072 --service-pipe-token=58CC5323500B77BD8EF6CEE70692A82E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --enable-compositor-image-animations --service-request-channel-token=58CC5323500B77BD8EF6CEE70692A82E --renderer-client-id=51 --mojo-platform-channel-handle=7960 /prefetch:1
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Zbyšek\Desktop\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-02-22 210112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23 217784]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2018-01-22 3229864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
AC-Pro - C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll [2010-06-02 97760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-01-22 149696]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23 184488]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-01-29 474688]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2018-01-22 2179240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-29 188992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23 6149288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23 4452504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"Cmaudio8788"=C:\WINDOWS\syswow64\RunDll32.exe [2017-09-29 63488]
"Cmaudio8788GX"=C:\WINDOWS\syswow64\HsMgr.exe [2008-07-11 200704]
"Cmaudio8788GX64"=C:\WINDOWS\system\HsMgr64.exe [2008-07-11 282112]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2017-03-09 193112]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2017-03-09 420960]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2017-03-09 463960]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDriveSetup"=C:\Windows\SysWOW64\OneDriveSetup.exe [2017-09-29 20488312]
"Core Temp"=C:\Supgam\CoreTemp\Core Temp.exe [2017-11-04 999000]
"Lync"=C:\Program Files (x86)\Microsoft Office\Root\Office16\lync.exe [2018-03-26 23602864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ExpressFiles]
C:\Program Files (x86)\ExpressFiles\ExpressFiles.exe -tray []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pdhd2Pan.exe]
Pdhd2Pan.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Zbyšek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.lnk]
C:\Program Files (x86)\OPENOF~1.ORG\program\QUICKS~1.EXE []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2017-03-09 460936]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktopChanges"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"VIDC.FFDS"=ff_vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux1"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux3"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux4"=wdmaud.drv
"aux5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS3\Dreamweaver.exe","%1"
======List of files/folders created in the last 1 month======
2018-04-03 08:22:49 ----D---- C:\rsit
2018-03-28 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2018-03-28 11:19:55 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2018-03-28 11:19:55 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2018-03-28 11:19:55 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2018-03-28 11:19:54 ----D---- C:\Program Files (x86)\VulkanRT
2018-03-28 11:19:30 ----D---- C:\WINDOWS\LastGood.Tmp
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvDecMFTMjpeg.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvopencl.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvdispgenco6439135.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvdispco6439135.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvcuda.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2018-03-28 11:18:37 ----A---- C:\WINDOWS\system32\nvapi64.dll
2018-03-26 08:00:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2018-03-26 08:00:05 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2018-03-26 08:00:05 ----A---- C:\WINDOWS\system32\SensorService.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\moshostcore.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\MapsStore.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\MapRouter.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\cdp.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2018-03-26 08:00:04 ----A---- C:\WINDOWS\system32\BingMaps.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\TtlsCfg.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\TtlsExt.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\TtlsAuth.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\NMAA.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\mos.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2018-03-26 08:00:03 ----A---- C:\WINDOWS\system32\atmfd.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\wlgpclnt.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\TtlsCfg.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\StorSvc.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\ntdll.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\NetDriverInstall.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\jscript9.dll
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2018-03-26 08:00:02 ----A---- C:\WINDOWS\system32\browserbroker.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\WinSCard.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\RTWorkQ.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\StartTileData.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\SettingSync.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\fontsub.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\FntCache.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2018-03-26 08:00:01 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\wlgpclnt.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\win32kfull.sys
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\win32kbase.sys
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\vpnike.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\spoolsv.exe
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\rasapi32.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\pcalua.exe
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\lsasrv.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\InputService.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\gpapi.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\davclnt.dll
2018-03-26 08:00:00 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\winhttp.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\propsys.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\KernelBase.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\Chakra.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\drivers\netvsc.sys
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\dnsapi.dll
2018-03-26 07:59:59 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\RTWorkQ.dll
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\qmgr.dll
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\mscms.dll
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\icm32.dll
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\DWrite.dll
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2018-03-26 07:59:58 ----A---- C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\WSDMon.dll
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\WinSCard.dll
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\twinui.dll
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\ninput.dll
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\dwmcore.dll
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2018-03-26 07:59:57 ----A---- C:\WINDOWS\system32\aitstatic.exe
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\wwansvc.dll
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\wlansvc.dll
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\wlansec.dll
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\win32spl.dll
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\WebClnt.dll
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\localspl.dll
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\gpsvc.dll
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2018-03-26 07:59:56 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2018-03-26 07:59:55 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2018-03-26 07:59:55 ----A---- C:\WINDOWS\system32\msvproc.dll
2018-03-26 07:59:55 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2018-03-26 07:59:55 ----A---- C:\WINDOWS\system32\mshtml.dll
2018-03-26 07:59:55 ----A---- C:\WINDOWS\system32\edgehtml.dll
2018-03-26 07:59:54 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2018-03-26 07:59:54 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2018-03-26 07:59:54 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2018-03-26 07:59:54 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2018-03-26 07:59:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2018-03-26 07:59:53 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2018-03-26 07:59:53 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2018-03-26 07:59:53 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-03-26 07:59:52 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-03-26 07:59:52 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-03-26 07:59:52 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\winresume.exe
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\winload.exe
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\urlmon.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\pcasvc.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\invagent.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\devinv.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\dcntel.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\ci.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\aepic.dll
2018-03-26 07:59:51 ----A---- C:\WINDOWS\system32\aeinv.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\SYSWOW64\compstui.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\wlanapi.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\VSSVC.exe
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\usbmon.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\tcpmon.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\racpldlg.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\puiobj.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\puiapi.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\printfilterpipelineprxy.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\newdev.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\msra.exe
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\icfupgd.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\generaltel.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\compstui.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\appraiser.dll
2018-03-26 07:59:50 ----A---- C:\WINDOWS\system32\acmigration.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\wfdprov.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\cdd.dll
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\browserexport.exe
2018-03-26 07:59:49 ----A---- C:\WINDOWS\system32\BFE.DLL
2018-03-21 09:21:30 ----A---- C:\WINDOWS\system32\nvdispgenco6439124.dll
2018-03-21 09:21:30 ----A---- C:\WINDOWS\system32\nvdispco6439124.dll
2018-03-21 09:21:30 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2018-03-21 08:32:32 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2018-03-16 09:44:52 ----D---- C:\ProgramData\Unknown Worlds
2018-03-14 09:54:06 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2018-03-14 09:51:37 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2018-03-14 09:51:37 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2018-03-14 09:51:37 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2018-03-14 09:51:37 ----A---- C:\WINDOWS\SYSWOW64\AcSpecfc.dll
2018-03-14 09:51:37 ----A---- C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-03-14 09:51:36 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2018-03-14 09:51:35 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2018-03-14 09:51:35 ----A---- C:\WINDOWS\SYSWOW64\msisip.dll
2018-03-14 09:51:35 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2018-03-14 09:51:35 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2018-03-14 09:51:35 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2018-03-14 09:51:35 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2018-03-14 09:51:35 ----A---- C:\WINDOWS\system32\AuthFWSnapin.dll
2018-03-14 09:51:34 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2018-03-14 09:51:34 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2018-03-14 09:51:34 ----A---- C:\WINDOWS\SYSWOW64\AuthFWSnapin.dll
2018-03-14 09:51:34 ----A---- C:\WINDOWS\system32\rdpudd.dll
2018-03-14 09:51:34 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2018-03-14 09:51:34 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2018-03-14 09:51:33 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\SYSWOW64\credssp.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\system32\vbscript.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\system32\TSpkg.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\system32\samsrv.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\system32\DbgModel.dll
2018-03-14 09:51:33 ----A---- C:\WINDOWS\system32\credssp.dll
2018-03-14 09:51:32 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2018-03-14 09:51:32 ----A---- C:\WINDOWS\system32\winsrv.dll
2018-03-14 09:51:32 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2018-03-14 09:51:32 ----A---- C:\WINDOWS\system32\iertutil.dll
2018-03-14 09:51:32 ----A---- C:\WINDOWS\system32\edgeIso.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\system32\wintrust.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\system32\windows.storage.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\system32\msisip.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\system32\jscript.dll
2018-03-14 09:51:31 ----A---- C:\WINDOWS\system32\ieframe.dll
2018-03-14 09:51:30 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2018-03-14 09:51:30 ----A---- C:\WINDOWS\system32\dbgeng.dll
2018-03-14 09:51:30 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2018-03-14 09:51:30 ----A---- C:\WINDOWS\system32\AcSpecfc.dll
2018-03-14 09:51:29 ----A---- C:\WINDOWS\system32\wininet.dll
2018-03-14 09:51:29 ----A---- C:\WINDOWS\system32\msIso.dll
2018-03-14 09:51:29 ----A---- C:\WINDOWS\system32\msi.dll
2018-03-14 09:51:29 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2018-03-14 09:51:29 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2018-03-14 09:51:28 ----A---- C:\WINDOWS\system32\winmde.dll
2018-03-14 09:51:28 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2018-03-14 09:51:28 ----A---- C:\WINDOWS\system32\mfplat.dll
2018-03-14 09:51:27 ----A---- C:\WINDOWS\system32\Spectrum.exe
2018-03-14 09:51:27 ----A---- C:\WINDOWS\system32\HolographicExtensions.dll
2018-03-14 09:51:27 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2018-03-14 09:51:27 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2018-03-14 09:51:26 ----A---- C:\WINDOWS\system32\UsoClient.exe
2018-03-14 09:51:26 ----A---- C:\WINDOWS\system32\updatecsp.dll
2018-03-14 09:51:26 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2018-03-14 09:51:26 ----A---- C:\WINDOWS\system32\MusNotification.exe
2018-03-14 09:51:26 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Payments.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\SYSWOW64\HoloShellRuntime.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\zipfldr.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\Windows.Payments.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\usocore.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\usoapi.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\svf.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\SpectrumSyncClient.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\offlinesam.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\HoloShellRuntime.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\drivers\wcnfs.sys
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2018-03-14 09:51:25 ----A---- C:\WINDOWS\system32\daxexec.dll
2018-03-09 08:39:31 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2018-03-09 08:39:31 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2018-03-09 08:39:09 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2018-03-09 08:39:09 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2018-03-09 08:39:09 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2018-03-09 08:39:09 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2018-03-09 08:39:09 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2018-03-09 08:39:09 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2018-03-09 08:39:09 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2018-03-09 08:39:08 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2018-03-09 08:39:08 ----A---- C:\WINDOWS\system32\hvloader.dll
2018-03-09 08:39:08 ----A---- C:\WINDOWS\system32\hvax64.exe
2018-03-09 08:39:08 ----A---- C:\WINDOWS\system32\drivers\volmgr.sys
2018-03-09 08:39:08 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys
2018-03-09 08:39:08 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2018-03-09 08:39:08 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2018-03-09 08:39:07 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2018-03-09 08:39:06 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2018-03-09 08:39:06 ----A---- C:\WINDOWS\system32\hvix64.exe
2018-03-09 08:39:06 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2018-03-09 08:39:04 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2018-03-09 08:39:04 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2018-03-09 08:39:04 ----A---- C:\WINDOWS\system32\shell32.dll
2018-03-09 08:39:04 ----A---- C:\WINDOWS\system32\cldapi.dll
2018-03-09 08:39:00 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2018-03-09 08:39:00 ----A---- C:\WINDOWS\system32\drivers\sdstor.sys
2018-03-09 08:39:00 ----A---- C:\WINDOWS\system32\drivers\RfxVmt.sys
2018-03-09 08:39:00 ----A---- C:\WINDOWS\system32\drivers\HdAudio.sys
2018-03-09 08:39:00 ----A---- C:\WINDOWS\system32\drivers\ataport.sys
2018-03-08 09:51:15 ----A---- C:\WINDOWS\IsUninst.exe
2018-03-07 14:21:21 ----A---- C:\WINDOWS\system32\nvshext.dll
======List of files/folders modified in the last 1 month======
2018-04-03 08:26:17 ----D---- C:\Program Files\trend micro
2018-04-03 08:20:20 ----D---- C:\WINDOWS\Temp
2018-04-03 07:41:02 ----D---- C:\WINDOWS\System32
2018-04-03 07:41:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2018-04-03 07:35:31 ----D---- C:\Users\Zbyšek\AppData\Roaming\foobar2000
2018-04-03 07:35:18 ----D---- C:\ProgramData\NVIDIA
2018-04-03 07:34:22 ----D---- C:\WINDOWS\system32\sru
2018-04-03 07:34:22 ----D---- C:\WINDOWS\system32\catroot2
2018-04-03 07:34:21 ----D---- C:\WINDOWS\system32\Tasks
2018-04-03 07:32:21 ----HD---- C:\Program Files\WindowsApps
2018-04-03 07:32:21 ----D---- C:\WINDOWS\AppReadiness
2018-04-03 07:32:16 ----D---- C:\WINDOWS\DeliveryOptimization
2018-04-03 07:31:41 ----D---- C:\WINDOWS\INF
2018-04-03 07:28:31 ----D---- C:\WINDOWS\Logs
2018-04-03 07:28:29 ----D---- C:\WINDOWS\system32\SleepStudy
2018-03-29 08:54:19 ----D---- C:\WINDOWS\rescache
2018-03-29 08:54:14 ----RD---- C:\WINDOWS\Microsoft.NET
2018-03-29 08:39:53 ----D---- C:\WINDOWS\system32\drivers
2018-03-29 08:39:52 ----D---- C:\WINDOWS\system32\DriverStore
2018-03-29 08:39:31 ----SHD---- C:\System Volume Information
2018-03-29 07:12:35 ----D---- C:\WINDOWS\SysWOW64
2018-03-29 07:12:30 ----D---- C:\Windows
2018-03-28 11:19:54 ----RD---- C:\Program Files (x86)
2018-03-28 11:19:54 ----D---- C:\Temp
2018-03-27 08:21:33 ----D---- C:\WINDOWS\system32\config
2018-03-27 07:50:05 ----D---- C:\WINDOWS\system32\NDF
2018-03-27 07:36:17 ----D---- C:\Users\Zbyšek\AppData\Roaming\Audacity
2018-03-27 07:13:28 ----D---- C:\WINDOWS\WinSxS
2018-03-27 07:13:24 ----SHD---- C:\Boot
2018-03-27 07:13:13 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2018-03-26 15:24:57 ----D---- C:\WINDOWS\system32\migration
2018-03-26 15:24:57 ----D---- C:\WINDOWS\system32\drivers\UMDF
2018-03-26 15:24:57 ----D---- C:\WINDOWS\system32\Boot
2018-03-26 15:24:57 ----D---- C:\WINDOWS\ShellExperiences
2018-03-26 15:24:57 ----D---- C:\WINDOWS\apppatch
2018-03-26 15:24:56 ----D---- C:\WINDOWS\system32\CodeIntegrity
2018-03-26 08:01:17 ----D---- C:\WINDOWS\CbsTemp
2018-03-26 07:32:22 ----SHDC---- C:\WINDOWS\Installer
2018-03-26 07:32:21 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2018-03-26 07:32:17 ----D---- C:\Program Files (x86)\Common Files
2018-03-26 07:32:04 ----AD---- C:\Program Files (x86)\Microsoft Office
2018-03-24 01:50:31 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2018-03-24 01:02:21 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2018-03-24 01:02:21 ----A---- C:\WINDOWS\system32\nvcpl.dll
2018-03-24 01:02:19 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2018-03-24 01:02:19 ----A---- C:\WINDOWS\system32\nvmctray.dll
2018-03-24 01:02:19 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2018-03-24 01:02:19 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2018-03-22 08:31:19 ----D---- C:\Users\Zbyšek\AppData\Roaming\AIMP
2018-03-21 08:32:35 ----D---- C:\ProgramData\NVIDIA Corporation
2018-03-21 08:32:27 ----D---- C:\Program Files\NVIDIA Corporation
2018-03-19 16:12:20 ----D---- C:\Users\Zbyšek\AppData\Roaming\vlc
2018-03-16 14:28:01 ----HD---- C:\ProgramData
2018-03-16 10:30:05 ----D---- C:\WINDOWS\system32\LogFiles
2018-03-16 09:38:36 ----D---- C:\Supgam
2018-03-16 09:31:13 ----D---- C:\Program Files\AMD
2018-03-16 09:31:05 ----D---- C:\Program Files (x86)\AMD
2018-03-16 09:30:14 ----D---- C:\Users\Zbyšek\AppData\Roaming\Spider Player
2018-03-14 17:28:59 ----D---- C:\WINDOWS\system32\cs-CZ
2018-03-14 17:28:59 ----D---- C:\WINDOWS\system32\appraiser
2018-03-14 15:05:49 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2018-03-14 15:05:48 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2018-03-14 14:44:54 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2018-03-14 09:54:04 ----D---- C:\WINDOWS\system32\MRT
2018-03-14 09:52:43 ----AC---- C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-14 09:52:40 ----AC---- C:\WINDOWS\system32\MRT.exe
2018-03-13 08:34:48 ----D---- C:\Program Files (x86)\AIMP
2018-03-13 07:02:31 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2018-03-09 11:35:30 ----D---- C:\WINDOWS\TextInput
2018-03-09 08:25:07 ----D---- C:\Program Files (x86)\MSI Afterburner
2018-03-08 10:21:33 ----D---- C:\Program Files (x86)\MadOnion.com
2018-03-08 10:13:00 ----D---- C:\Program Files (x86)\Futuremark
2018-03-08 09:49:57 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2018-03-07 14:33:32 ----A---- C:\WINDOWS\GPU-Z.INI
2018-03-05 08:18:28 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2018-03-05 08:18:28 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 asstahci64;asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [2016-07-20 88936]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-09-29 56728]
R1 AsIO;AsIO; C:\WINDOWS\SysWow64\drivers\AsIO.sys [2013-07-03 15232]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-01-01 59800]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-09-29 8192]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-02-10 385536]
R2 inpoutx64;inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [2018-01-29 15008]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-09-29 43520]
R3 ALSysIO;ALSysIO; \??\E:\Temp\ALSysIO64.sys [2018-04-03 46384]
R3 asmthub3;@oem69.inf,%asmthub3_ServiceDescription%;ASMedia USB3.1 Hub Service; C:\WINDOWS\System32\drivers\asmthub3.sys [2017-08-22 152952]
R3 asmtxhci;@oem54.inf,%asmtxhci_ServiceDescription%;ASMedia XHCI Service; C:\WINDOWS\System32\drivers\asmtxhci.sys [2017-08-22 462200]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-09-29 60312]
R3 CLVirtualBus01;@oem0.inf,%CLVirtualBus01.SVCDESC%;CyberLink Virtual CDROM Bus Enumerator; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [2014-11-05 95496]
R3 cmudaxp;@oem83.inf,%CMUDA.SvcDesc%;ASUS Xonar D2X Audio Interface; C:\WINDOWS\system32\drivers\cmudaxp.sys [2015-06-02 2735616]
R3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\WINDOWS\System32\drivers\e1i63x64.sys [2017-09-29 524800]
R3 MEIx64;@oem52.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-04-04 195152]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2018-01-01 176128]
R3 NVHDA;@oem23.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-12-15 233872]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c1a085cc86772d3f\nvlddmkm.sys [2018-03-25 17544792]
R3 nvvad_WaveExtensible;@oem2.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-12-15 59240]
R3 nvvhci;@oem5.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2018-03-16 58816]
R3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2017-08-27 14024]
S0 amdpsp;@oem18.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [2017-11-07 137104]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 JRAID;JRAID; C:\WINDOWS\System32\drivers\jraid.sys [2010-11-25 120408]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-09-29 118168]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 amdgpio2;@oem12.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2017-10-10 34696]
S3 amdgpio3;@oem17.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio3.sys [2017-10-16 33144]
S3 amdhub30;AMD USB 3.0 Hub Driver; C:\WINDOWS\system32\DRIVERS\amdhub30.sys [2013-05-28 106816]
S3 amdiox64;AMD IO Driver; C:\WINDOWS\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 amdkmcsp;@oem119.inf,%amdkmcsp.SVCDESC%;AMD Kernel Mode CSP Service; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [2017-06-12 101232]
S3 AMDPCIDev;@oem15.inf,%AMDPCIDev.SVCDESC%;AMD PCI; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [2018-01-02 31584]
S3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\WINDOWS\system32\DRIVERS\amdxhc.sys [2013-05-28 227648]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 AthDfu;@oem9.inf,%AthDfu.SvcDesc%;Atheros Valkyrie USB BootROM; C:\WINDOWS\System32\Drivers\AthDfu.sys [2012-08-22 55336]
S3 AtiHdmiService;ATI Service for HD Audio Codec; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-06-05 114192]
S3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2016-07-13 610336]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2017-09-29 105472]
S3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\WINDOWS\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2017-09-29 129536]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2018-03-13 1015296]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2017-09-29 85504]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-09-29 122368]
S3 e1rexpress;@oem89.inf,%E1RExpress.Service.DispName%;Intel(R) PCI Express Network Connection Driver R; C:\WINDOWS\system32\DRIVERS\e1r65x64.sys [2016-07-30 540112]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-09-29 73112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-03-09 5382856]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\WINDOWS\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-09-29 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-03-14 31168]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-09-29 936856]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2017-09-29 189440]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 RTL8167;Realtek 8167 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt64win7.sys [2014-06-05 936664]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [2013-07-03 936728]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_4327c;CDPUserSvc_4327c; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2018-03-03 7761584]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2015-11-20 21184]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2017-10-19 26112]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14 522688]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-03-24 464272]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-03-14 469952]
R2 OneSyncSvc_4327c;OneSyncSvc_4327c; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2018-03-01 519152]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
R3 PimIndexMaintenanceSvc_4327c;PimIndexMaintenanceSvc_4327c; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-09-29 136312]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-09-29 52856]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-03-09 300128]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_4327c;DevicesFlowUserSvc_4327c; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-09-29 85504]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2018-01-30 654848]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-09-28 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [2018-02-06 342456]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_4327c;MessagingService_4327c; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14 522688]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2018-03-03 213680]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_4327c;PrintWorkflowUserSvc_4327c; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S4 DiagTrack;Propojená uživatelská prostředí a telemetrie; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
S4 dmwappushservice;dmwappushsvc; C:\WINDOWS\system32\svchost.exe [2017-09-29 48688]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-09-29 48688]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
# AdwCleaner 7.0.8.0 - Logfile created on Tue Apr 03 12:58:33 2018
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-04-03.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Legacy, C:\Program Files (x86)\AutocompletePro
PUP.Optional.OneSystemCare, C:\Program Files (x86)\OneSystemCare
PUP.Optional.WinThruster, C:\Windows\Installer\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}
***** [ Files ] *****
PUP.Optional.Legacy, C:\user.js
PUP.Optional.Reimage, C:\Windows\Reimage.ini
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AutocompletePro3_is1
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{5582B980-DB2C-4894-9DC1-B9678ADD286D}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{ED87E2F4-838D-46BA-BFD9-DFA28310934B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\AutocompletePro.DLL
PUP.Optional.Carambis, [Key] - HKU\S-1-5-21-2338206849-698363927-3636189722-1000\Software\Carambis
PUP.Optional.Carambis, [Key] - HKCU\Software\Carambis
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
PUP.Optional.CrossRider, Plugin found: Bleaner -
/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-04-03.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Legacy, C:\Program Files (x86)\AutocompletePro
PUP.Optional.OneSystemCare, C:\Program Files (x86)\OneSystemCare
PUP.Optional.WinThruster, C:\Windows\Installer\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}
***** [ Files ] *****
PUP.Optional.Legacy, C:\user.js
PUP.Optional.Reimage, C:\Windows\Reimage.ini
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AutocompletePro3_is1
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{5582B980-DB2C-4894-9DC1-B9678ADD286D}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{ED87E2F4-838D-46BA-BFD9-DFA28310934B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\AutocompletePro.DLL
PUP.Optional.Carambis, [Key] - HKU\S-1-5-21-2338206849-698363927-3636189722-1000\Software\Carambis
PUP.Optional.Carambis, [Key] - HKCU\Software\Carambis
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
PUP.Optional.CrossRider, Plugin found: Bleaner -
/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
V ADW ještě klikněte na mazání, restartujte a pak dejte log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=152707 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Myslíte "čištění"?
U položky čištění se však neobjeví nic, co by mohlo být smazáno.
Nevím, jestli něco dělám špatně.
Tady je nový log:
# AdwCleaner 7.0.8.0 - Logfile created on Tue Apr 03 12:58:33 2018
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-04-03.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Legacy, C:\Program Files (x86)\AutocompletePro
PUP.Optional.OneSystemCare, C:\Program Files (x86)\OneSystemCare
PUP.Optional.WinThruster, C:\Windows\Installer\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}
***** [ Files ] *****
PUP.Optional.Legacy, C:\user.js
PUP.Optional.Reimage, C:\Windows\Reimage.ini
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AutocompletePro3_is1
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{5582B980-DB2C-4894-9DC1-B9678ADD286D}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{ED87E2F4-838D-46BA-BFD9-DFA28310934B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\AutocompletePro.DLL
PUP.Optional.Carambis, [Key] - HKU\S-1-5-21-2338206849-698363927-3636189722-1000\Software\Carambis
PUP.Optional.Carambis, [Key] - HKCU\Software\Carambis
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
PUP.Optional.CrossRider, Plugin found: Bleaner -
/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
U položky čištění se však neobjeví nic, co by mohlo být smazáno.
Nevím, jestli něco dělám špatně.
Tady je nový log:
# AdwCleaner 7.0.8.0 - Logfile created on Tue Apr 03 12:58:33 2018
# Updated on 2018/08/02 by Malwarebytes
# Database: 2018-04-03.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Legacy, C:\Program Files (x86)\AutocompletePro
PUP.Optional.OneSystemCare, C:\Program Files (x86)\OneSystemCare
PUP.Optional.WinThruster, C:\Windows\Installer\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}
***** [ Files ] *****
PUP.Optional.Legacy, C:\user.js
PUP.Optional.Reimage, C:\Windows\Reimage.ini
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AutocompletePro3_is1
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{5582B980-DB2C-4894-9DC1-B9678ADD286D}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{ED87E2F4-838D-46BA-BFD9-DFA28310934B}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\AppID\AutocompletePro.DLL
PUP.Optional.Carambis, [Key] - HKU\S-1-5-21-2338206849-698363927-3636189722-1000\Software\Carambis
PUP.Optional.Carambis, [Key] - HKCU\Software\Carambis
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
PUP.Optional.CrossRider, Plugin found: Bleaner -
/!\ Please Reset the Chrome Synchronization before cleaning the Chrome Preferences: https://support.google.com/chrome/answer/3097271
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
ADW po skončení 1. skenu změní levé velké tlačítko v okně programu ze scan na mazání (delete). Na to klkněte. PC si obvykle vyžádá restart. Po něm dejte log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Díky, nějak jsem to přehlédl.
Zde je log:
# AdwCleaner 7.0.8.0 - Logfile created on Thu Apr 05 06:36:02 2018
# Updated on 2018/08/02 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\Program Files (x86)\AutocompletePro
Deleted: C:\Program Files (x86)\OneSystemCare
Deleted: C:\Windows\\Installer\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}
***** [ Files ] *****
Deleted: C:\\user.js
Deleted: C:\Windows\Reimage.ini
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AutocompletePro3_is1
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{5582B980-DB2C-4894-9DC1-B9678ADD286D}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{ED87E2F4-838D-46BA-BFD9-DFA28310934B}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\AutocompletePro.DLL
Deleted: [Key] - HKU\S-1-5-21-2338206849-698363927-3636189722-1000\Software\Carambis
Deleted: [Key] - HKCU\Software\Carambis
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
Plugin deleted: Bleaner -
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [2648 B] - [2018/4/3 12:58:33]
C:/AdwCleaner/AdwCleaner[S1].txt - [2715 B] - [2018/4/4 5:49:45]
C:/AdwCleaner/AdwCleaner[S2].txt - [2781 B] - [2018/4/4 5:56:56]
C:/AdwCleaner/AdwCleaner[S3].txt - [2847 B] - [2018/4/5 6:35:51]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
Zde je log:
# AdwCleaner 7.0.8.0 - Logfile created on Thu Apr 05 06:36:02 2018
# Updated on 2018/08/02 by Malwarebytes
# Running on Windows 10 Home (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services deleted.
***** [ Folders ] *****
Deleted: C:\Program Files (x86)\AutocompletePro
Deleted: C:\Program Files (x86)\OneSystemCare
Deleted: C:\Windows\\Installer\{773A8CA8-3876-4AA1-AB78-EECA231BFF3A}
***** [ Files ] *****
Deleted: C:\\user.js
Deleted: C:\Windows\Reimage.ini
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks deleted.
***** [ Registry ] *****
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AutocompletePro3_is1
Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Deleted: [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{5582B980-DB2C-4894-9DC1-B9678ADD286D}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{ED87E2F4-838D-46BA-BFD9-DFA28310934B}
Deleted: [Key] - HKLM\SOFTWARE\Classes\AppID\AutocompletePro.DLL
Deleted: [Key] - HKU\S-1-5-21-2338206849-698363927-3636189722-1000\Software\Carambis
Deleted: [Key] - HKCU\Software\Carambis
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries deleted.
***** [ Chromium (and derivatives) ] *****
Plugin deleted: Bleaner -
*************************
::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [2648 B] - [2018/4/3 12:58:33]
C:/AdwCleaner/AdwCleaner[S1].txt - [2715 B] - [2018/4/4 5:49:45]
C:/AdwCleaner/AdwCleaner[S2].txt - [2781 B] - [2018/4/4 5:56:56]
C:/AdwCleaner/AdwCleaner[S3].txt - [2847 B] - [2018/4/5 6:35:51]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
OK. Teď dejte log FRST: https://forum.viry.cz/viewtopic.php?f=13&t=152707 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14.03.2018
Ran by Zbyšek (administrator) on ZBYŠEK-ANATOMIE (05-04-2018 15:46:05)
Running from C:\Users\Zbyšek\Desktop
Loaded Profiles: Zbyšek (Available Profiles: Zbyšek & DefaultAppPool)
Platform: Windows 10 Home Version 1709 16299.334 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ALCPU) C:\Supgam\CoreTemp\Core Temp.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(CMedia) C:\Program Files\ASUS Xonar D2X Audio\Customapp\AsusAudioCenter.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\System\HsMgr64.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [Cmaudio8788] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\WINDOWS\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\WINDOWS\system\HsMgr64.exe [282112 2008-07-11] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\Run: [Core Temp] => C:\Supgam\CoreTemp\Core Temp.exe [999000 2017-11-04] (ALCPU)
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\Root\Office16\lync.exe [23602864 2018-03-26] (Microsoft Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{1141354d-17e1-4e8a-8fd8-d54fc9c18163}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1141354d-17e1-4e8a-8fd8-d54fc9c18163}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{2de9ef93-23ee-4425-9065-715d3ba5bfad}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{429e75c0-e7a0-4951-8e66-b4eb2183ad52}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{785d6d22-fd0e-46cb-96b7-058f148deb4b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{785d6d22-fd0e-46cb-96b7-058f148deb4b}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{81213cd9-dd22-47e4-b237-b220a21f3861}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{9df3e740-3a94-4a37-b3d0-af0360660554}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{b5e6b7d9-6711-4c85-8198-a5a45c67dd9f}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{febc4642-5883-4201-98db-1d3396901a13}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{febc4642-5883-4201-98db-1d3396901a13}: [DhcpNameServer] 195.178.72.150
Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-02-22] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2018-01-22] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-01-22] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-01-29] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2018-01-22] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-29] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKU\S-1-5-21-2338206849-698363927-3636189722-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default [2018-01-24]
FF Homepage: Mozilla\Firefox\Profiles\a7by7y2j.default -> hxxp://www.seznam.cz/
FF Extension: (Classic Theme Restorer (Customize Australis)) - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2014-08-05] [Legacy] [not signed]
FF Extension: (AutocompletePro - Your handy search suggestions tool) - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\support@predictad.com [2018-01-29] [Legacy] [not signed]
FF Extension: (YouTube High Definition) - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-08-04] [Legacy] [not signed]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-01-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-01-29] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-01-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default [2018-04-05]
CHR Extension: (Dokumenty) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (LIVESCORE SOCCER) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gibfflggfgeemmkaifokfjanokokcjfg [2016-02-04]
CHR Extension: (Bleaner) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2018-02-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Remove Bloat!) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlnnachibjmjahfpoemhledlpakoicg [2018-02-19]
CHR Extension: (Gmail) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR Extension: (Chrome Media Router) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-27]
CHR Extension: (Browse Faster) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponhjlldbpnmeieenmaacddmlfpdielh [2018-02-19]
CHR Profile: C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2 [2016-10-20]
CHR Extension: (Prezentace Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-18]
CHR Extension: (Dokumenty Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-18]
CHR Extension: (Disk Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-18]
CHR Extension: (YouTube) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-18]
CHR Extension: (Tabulky Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-18]
CHR Extension: (Gmail) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-18]
CHR Extension: (Chrome Media Router) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-18]
CHR Profile: C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile [2016-10-20]
CHR Extension: (Prezentace Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-12]
CHR Extension: (Dokumenty Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-12]
CHR Extension: (Disk Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-12]
CHR Extension: (YouTube) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-12]
CHR Extension: (Vyhledávání Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-12]
CHR Extension: (Tabulky Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-12]
CHR Extension: (Gmail) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7761584 2018-03-03] (Microsoft Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2018-01-30] (Macrovision Europe Ltd.) [File not signed]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2018-02-06] (Futuremark)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2015-11-20] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [File not signed]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ALSysIO; E:\Temp\ALSysIO64.sys [46384 2018-04-05] (Arthur Liberman)
S3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34696 2017-10-10] (Advanced Micro Devices, Inc)
S3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33144 2017-10-16] (Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-12] (Advanced Micro Devices, Inc. )
S3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31584 2018-01-02] (Advanced Micro Devices)
S0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [137104 2017-11-07] (Advanced Micro Devices, Inc. )
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] ()
R0 asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [88936 2016-07-20] (Asmedia Technology)
R3 CLVirtualBus01; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [95496 2014-11-05] (CyberLink)
R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2735616 2015-06-02] (C-Media Inc)
S3 e1rexpress; C:\WINDOWS\system32\DRIVERS\e1r65x64.sys [540112 2016-07-30] (Intel Corporation)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2018-01-29] (Highresolution Enterprises [www.highrez.co.uk])
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c1a085cc86772d3f\nvlddmkm.sys [17544792 2018-03-25] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-16] (NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] ()
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [132120 2016-10-18] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-04-05 15:46 - 2018-04-05 15:46 - 000020709 _____ C:\Users\Zbyšek\Desktop\FRST.txt
2018-04-05 15:45 - 2018-04-05 15:46 - 000000000 ____D C:\FRST
2018-04-05 15:44 - 2018-04-05 15:44 - 002403328 _____ (Farbar) C:\Users\Zbyšek\Desktop\FRST64.exe
2018-04-04 16:20 - 2018-04-04 16:20 - 000003144 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2018-04-03 14:57 - 2018-04-05 08:35 - 000000000 ____D C:\AdwCleaner
2018-04-03 14:56 - 2018-04-03 14:56 - 008222496 _____ (Malwarebytes) C:\Users\Zbyšek\Desktop\adwcleaner_7.0.8.0.exe
2018-04-03 08:22 - 2018-04-03 08:22 - 001222144 _____ C:\Users\Zbyšek\Desktop\RSITx64.exe
2018-04-03 08:22 - 2018-04-03 08:22 - 000000000 ____D C:\rsit
2018-03-28 11:19 - 2018-03-28 11:19 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-03-28 11:19 - 2017-12-09 00:25 - 000798520 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2018-03-28 11:19 - 2017-12-09 00:25 - 000490808 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2018-03-28 11:19 - 2017-12-09 00:24 - 000928568 _____ C:\WINDOWS\system32\vulkan-1.dll
2018-03-28 11:19 - 2017-12-09 00:24 - 000591672 _____ C:\WINDOWS\system32\vulkaninfo.exe
2018-03-28 11:18 - 2018-03-25 18:15 - 000998424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-03-28 11:18 - 2018-03-25 18:15 - 000950016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-03-28 11:18 - 2018-03-25 18:15 - 000625504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-03-28 11:18 - 2018-03-25 18:15 - 000516024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 004318112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 003719096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 001985112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439135.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 001683712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439135.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 001138720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 001065888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 000749312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 000608344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-03-28 11:18 - 2018-03-25 18:13 - 040278608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-03-28 11:18 - 2018-03-25 18:13 - 035188992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-03-28 11:18 - 2018-03-25 18:10 - 013571520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-03-28 11:18 - 2018-03-25 18:10 - 011132384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 019855144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 016496776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 001346128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 001153744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 001061352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 000902096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 000811808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 000650232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 000633040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-03-28 11:18 - 2018-03-25 18:08 - 012967056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-03-28 11:18 - 2018-03-25 18:08 - 011001504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-03-28 11:18 - 2018-03-25 18:08 - 004633920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-03-28 11:18 - 2018-03-25 18:08 - 003939624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-03-28 11:18 - 2018-03-24 03:19 - 000048407 _____ C:\WINDOWS\system32\nvinfo.pb
2018-03-27 07:13 - 2018-03-13 07:26 - 000398138 __RSH C:\bootmgr
2018-03-27 07:13 - 2017-09-29 15:41 - 000000001 ___SH C:\BOOTNXT
2018-03-26 08:00 - 2018-03-13 09:03 - 005907288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-03-26 08:00 - 2018-03-13 09:03 - 000779960 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-03-26 08:00 - 2018-03-13 09:03 - 000382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-03-26 08:00 - 2018-03-13 09:03 - 000279960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-03-26 08:00 - 2018-03-13 09:02 - 008602520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-03-26 08:00 - 2018-03-13 09:02 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-03-26 08:00 - 2018-03-13 08:59 - 000535968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-03-26 08:00 - 2018-03-13 08:58 - 000377760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-03-26 08:00 - 2018-03-13 08:55 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-03-26 08:00 - 2018-03-13 08:55 - 000749984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-03-26 08:00 - 2018-03-13 08:55 - 000408992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-03-26 08:00 - 2018-03-13 08:55 - 000334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2018-03-26 08:00 - 2018-03-13 08:55 - 000246176 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-03-26 08:00 - 2018-03-13 08:54 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-03-26 08:00 - 2018-03-13 08:54 - 000555936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-03-26 08:00 - 2018-03-13 08:54 - 000163744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-03-26 08:00 - 2018-03-13 08:53 - 000774560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2018-03-26 08:00 - 2018-03-13 08:52 - 000127136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2018-03-26 08:00 - 2018-03-13 08:50 - 000617312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-03-26 08:00 - 2018-03-13 07:40 - 003663872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-03-26 08:00 - 2018-03-13 07:40 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-03-26 08:00 - 2018-03-13 07:40 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-03-26 08:00 - 2018-03-13 07:37 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-03-26 08:00 - 2018-03-13 07:37 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2018-03-26 08:00 - 2018-03-13 07:35 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsAuth.dll
2018-03-26 08:00 - 2018-03-13 07:35 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsCfg.dll
2018-03-26 08:00 - 2018-03-13 07:35 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlgpclnt.dll
2018-03-26 08:00 - 2018-03-13 07:34 - 008727552 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-03-26 08:00 - 2018-03-13 07:34 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2018-03-26 08:00 - 2018-03-13 07:34 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2018-03-26 08:00 - 2018-03-13 07:34 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2018-03-26 08:00 - 2018-03-13 07:33 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-03-26 08:00 - 2018-03-13 07:33 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-03-26 08:00 - 2018-03-13 07:32 - 005195776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-03-26 08:00 - 2018-03-13 07:32 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2018-03-26 08:00 - 2018-03-13 07:32 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-03-26 08:00 - 2018-03-13 07:32 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-03-26 08:00 - 2018-03-13 07:31 - 004746240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-03-26 08:00 - 2018-03-13 07:31 - 002849792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-03-26 08:00 - 2018-03-13 07:31 - 001263104 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-03-26 08:00 - 2018-03-13 07:31 - 001173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-03-26 08:00 - 2018-03-13 07:30 - 007145472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-03-26 08:00 - 2018-03-13 07:30 - 003400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-03-26 08:00 - 2018-03-13 07:30 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2018-03-26 08:00 - 2018-03-13 07:30 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2018-03-26 08:00 - 2018-03-13 07:29 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-03-26 08:00 - 2018-03-13 07:29 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-03-26 08:00 - 2018-03-13 07:28 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-03-26 08:00 - 2018-03-13 07:28 - 001967104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-03-26 08:00 - 2018-03-13 07:28 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-03-26 08:00 - 2018-03-13 07:28 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2018-03-26 08:00 - 2018-03-13 07:28 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-03-26 08:00 - 2018-03-13 07:28 - 000508928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2018-03-26 08:00 - 2018-03-13 07:27 - 003125760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-03-26 08:00 - 2018-03-13 07:27 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2018-03-26 08:00 - 2018-03-13 07:25 - 000963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-03-26 08:00 - 2018-03-13 07:25 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-03-26 08:00 - 2018-03-13 07:23 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2018-03-26 08:00 - 2018-03-13 07:22 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-03-26 08:00 - 2018-03-13 07:19 - 001929712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-03-26 08:00 - 2018-03-13 07:19 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-03-26 08:00 - 2018-03-13 07:19 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-03-26 08:00 - 2018-03-13 07:19 - 000311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-03-26 08:00 - 2018-03-13 07:15 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-03-26 08:00 - 2018-03-13 07:08 - 001555784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2018-03-26 08:00 - 2018-03-13 07:08 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-03-26 08:00 - 2018-03-13 07:06 - 000704080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-03-26 08:00 - 2018-03-13 07:06 - 000564640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2018-03-26 08:00 - 2018-03-13 07:04 - 000140592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2018-03-26 08:00 - 2018-03-13 06:44 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2018-03-26 08:00 - 2018-03-13 06:44 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-03-26 08:00 - 2018-03-13 06:44 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2018-03-26 08:00 - 2018-03-13 06:43 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-03-26 08:00 - 2018-03-13 06:41 - 006576128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-03-26 08:00 - 2018-03-13 06:40 - 006118400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-03-26 08:00 - 2018-03-13 06:39 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2018-03-26 08:00 - 2018-03-13 06:39 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2018-03-26 08:00 - 2018-03-13 06:39 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-03-26 08:00 - 2018-03-13 06:39 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsCfg.dll
2018-03-26 08:00 - 2018-03-13 06:38 - 006466560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-03-26 08:00 - 2018-03-13 06:38 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 003181568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000537088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2018-03-26 08:00 - 2018-03-13 06:36 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-03-26 08:00 - 2018-03-13 06:35 - 006204416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-03-26 08:00 - 2018-03-13 06:34 - 002409984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-03-26 08:00 - 2018-03-13 06:34 - 000706048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-03-26 08:00 - 2018-03-13 06:33 - 002464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-03-26 08:00 - 2018-03-13 06:33 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2018-03-26 08:00 - 2018-03-13 06:32 - 006030848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-03-26 08:00 - 2018-03-13 06:32 - 003677184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-03-26 08:00 - 2018-03-13 06:32 - 002577408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2018-03-26 08:00 - 2018-03-13 06:32 - 001948672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-03-26 08:00 - 2018-03-13 06:31 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-03-26 08:00 - 2018-03-13 06:31 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2018-03-26 08:00 - 2018-03-13 06:31 - 000402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2018-03-26 08:00 - 2018-03-13 06:30 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-03-26 08:00 - 2018-03-13 06:30 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-03-26 08:00 - 2018-03-13 06:27 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2018-03-26 08:00 - 2018-03-13 06:27 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2018-03-26 07:59 - 2018-03-13 09:09 - 001092016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-03-26 07:59 - 2018-03-13 09:08 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-03-26 07:59 - 2018-03-13 09:06 - 001568664 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-03-26 07:59 - 2018-03-13 09:06 - 000270752 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-03-26 07:59 - 2018-03-13 09:06 - 000138144 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-26 07:59 - 2018-03-13 09:05 - 000389536 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-03-26 07:59 - 2018-03-13 09:05 - 000070040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-03-26 07:59 - 2018-03-13 09:04 - 000749472 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-03-26 07:59 - 2018-03-13 09:04 - 000609176 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-03-26 07:59 - 2018-03-13 09:04 - 000035224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-03-26 07:59 - 2018-03-13 09:03 - 002003352 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-03-26 07:59 - 2018-03-13 09:03 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-03-26 07:59 - 2018-03-13 09:03 - 000664472 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-03-26 07:59 - 2018-03-13 09:03 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-03-26 07:59 - 2018-03-13 09:03 - 000273312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-03-26 07:59 - 2018-03-13 09:02 - 002513920 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-03-26 07:59 - 2018-03-13 09:02 - 001415288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-03-26 07:59 - 2018-03-13 09:02 - 001209752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-03-26 07:59 - 2018-03-13 09:01 - 002395040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-03-26 07:59 - 2018-03-13 08:58 - 000441248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2018-03-26 07:59 - 2018-03-13 08:58 - 000170904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-03-26 07:59 - 2018-03-13 08:57 - 000711432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-03-26 07:59 - 2018-03-13 08:57 - 000540056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-03-26 07:59 - 2018-03-13 08:55 - 002574232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-03-26 07:59 - 2018-03-13 08:55 - 001778360 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2018-03-26 07:59 - 2018-03-13 08:55 - 000417440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2018-03-26 07:59 - 2018-03-13 08:54 - 000677280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-03-26 07:59 - 2018-03-13 08:54 - 000128928 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 001054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 000902928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 000143264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 000113568 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 000091152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2018-03-26 07:59 - 2018-03-13 08:52 - 007384576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-03-26 07:59 - 2018-03-13 08:52 - 000172112 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2018-03-26 07:59 - 2018-03-13 08:51 - 002773408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-03-26 07:59 - 2018-03-13 08:51 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-03-26 07:59 - 2018-03-13 07:56 - 025253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-03-26 07:59 - 2018-03-13 07:41 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2018-03-26 07:59 - 2018-03-13 07:40 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-03-26 07:59 - 2018-03-13 07:38 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2018-03-26 07:59 - 2018-03-13 07:38 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2018-03-26 07:59 - 2018-03-13 07:38 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2018-03-26 07:59 - 2018-03-13 07:37 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-03-26 07:59 - 2018-03-13 07:37 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-03-26 07:59 - 2018-03-13 07:37 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2018-03-26 07:59 - 2018-03-13 07:37 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll
2018-03-26 07:59 - 2018-03-13 07:36 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2018-03-26 07:59 - 2018-03-13 07:36 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 008031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2018-03-26 07:59 - 2018-03-13 07:34 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 023674368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 007544832 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 001574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-03-26 07:59 - 2018-03-13 07:33 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 000278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2018-03-26 07:59 - 2018-03-13 07:33 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2018-03-26 07:59 - 2018-03-13 07:32 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2018-03-26 07:59 - 2018-03-13 07:32 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2018-03-26 07:59 - 2018-03-13 07:31 - 008103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-03-26 07:59 - 2018-03-13 07:31 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-03-26 07:59 - 2018-03-13 07:31 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2018-03-26 07:59 - 2018-03-13 07:31 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2018-03-26 07:59 - 2018-03-13 07:30 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2018-03-26 07:59 - 2018-03-13 07:30 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2018-03-26 07:59 - 2018-03-13 07:29 - 003170816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-03-26 07:59 - 2018-03-13 07:29 - 002209280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-03-26 07:59 - 2018-03-13 07:29 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-03-26 07:59 - 2018-03-13 07:29 - 000984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-03-26 07:59 - 2018-03-13 07:28 - 003160576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2018-03-26 07:59 - 2018-03-13 07:28 - 002857984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-03-26 07:59 - 2018-03-13 07:28 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-03-26 07:59 - 2018-03-13 07:28 - 001157632 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-03-26 07:59 - 2018-03-13 07:28 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-03-26 07:59 - 2018-03-13 07:28 - 000837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-03-26 07:59 - 2018-03-13 07:27 - 002528256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-03-26 07:59 - 2018-03-13 07:27 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-03-26 07:59 - 2018-03-13 07:27 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-03-26 07:59 - 2018-03-13 07:26 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-03-26 07:59 - 2018-03-13 07:26 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2018-03-26 07:59 - 2018-03-13 07:25 - 001346560 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2018-03-26 07:59 - 2018-03-13 07:25 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2018-03-26 07:59 - 2018-03-13 07:24 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2018-03-26 07:59 - 2018-03-13 07:24 - 000389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2018-03-26 07:59 - 2018-03-13 07:24 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2018-03-26 07:59 - 2018-03-13 07:23 - 001556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2018-03-26 07:59 - 2018-03-13 07:23 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2018-03-26 07:59 - 2018-03-13 07:22 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2018-03-26 07:59 - 2018-03-13 07:22 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2018-03-26 07:59 - 2018-03-13 07:22 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2018-03-26 07:59 - 2018-03-13 07:18 - 000213408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-03-26 07:59 - 2018-03-13 07:07 - 000115104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2018-03-26 07:59 - 2018-03-13 07:04 - 006481096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-03-26 07:59 - 2018-03-13 07:04 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-03-26 07:59 - 2018-03-13 06:43 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-03-26 07:59 - 2018-03-13 06:41 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-03-26 07:59 - 2018-03-13 06:40 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2018-03-26 07:59 - 2018-03-13 06:40 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2018-03-26 07:59 - 2018-03-13 06:39 - 019355136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-03-26 07:59 - 2018-03-13 06:39 - 018923520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-03-26 07:59 - 2018-03-13 06:39 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-03-26 07:59 - 2018-03-13 06:37 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2018-03-26 07:59 - 2018-03-13 06:37 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2018-03-26 07:59 - 2018-03-13 06:36 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2018-03-26 07:59 - 2018-03-13 06:36 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2018-03-26 07:59 - 2018-03-13 06:36 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2018-03-26 07:59 - 2018-03-13 06:31 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-03-26 07:59 - 2018-03-13 06:31 - 001348608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-03-26 07:59 - 2018-03-13 06:28 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2018-03-26 07:59 - 2018-03-13 06:26 - 000483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2018-03-21 09:21 - 2018-03-16 20:11 - 001985280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439124.dll
2018-03-21 09:21 - 2018-03-16 20:11 - 001684000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439124.dll
2018-03-21 09:21 - 2018-03-16 02:57 - 000058816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-03-21 08:32 - 2018-03-21 08:32 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000004088 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-14 15:05 - 002480064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2018-03-16 15:57 - 2018-03-16 15:57 - 000001177 _____ C:\Users\Zbyšek\Desktop\Subnautica.lnk
2018-03-16 09:44 - 2018-03-16 09:44 - 000000000 ____D C:\ProgramData\Unknown Worlds
2018-03-16 09:23 - 2018-03-16 09:23 - 000000000 ____D C:\Users\Zbyšek\AppData\LocalLow\Unknown Worlds
2018-03-16 09:23 - 2018-03-16 09:23 - 000000000 ____D C:\Users\Public\Documents\Steam
2018-03-14 09:54 - 2018-03-02 23:09 - 000834552 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-03-14 09:54 - 2018-03-02 23:09 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-03-14 09:51 - 2018-03-02 05:36 - 017085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-03-14 09:51 - 2018-03-02 05:02 - 000037888 _____ C:\WINDOWS\system32\SpectrumSyncClient.dll
2018-03-14 09:51 - 2018-03-02 05:01 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-03-14 09:51 - 2018-03-02 05:00 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2018-03-14 09:51 - 2018-03-02 05:00 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\svf.dll
2018-03-14 09:51 - 2018-03-02 05:00 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-03-14 09:51 - 2018-03-02 04:59 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-03-14 09:51 - 2018-03-01 22:28 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2018-03-14 09:51 - 2018-03-01 09:37 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-03-14 09:51 - 2018-03-01 09:30 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-03-14 09:51 - 2018-03-01 09:29 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-03-14 09:51 - 2018-03-01 09:27 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-03-14 09:51 - 2018-03-01 09:19 - 000710768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-03-14 09:51 - 2018-03-01 09:17 - 002710736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-03-14 09:51 - 2018-03-01 09:17 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-03-14 09:51 - 2018-03-01 09:14 - 007675784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-03-14 09:51 - 2018-03-01 09:14 - 005105664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthFWSnapin.dll
2018-03-14 09:51 - 2018-03-01 09:14 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-03-14 09:51 - 2018-03-01 09:14 - 000356952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-03-14 09:51 - 2018-03-01 09:14 - 000147872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-03-14 09:51 - 2018-03-01 09:12 - 000250264 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2018-03-14 09:51 - 2018-03-01 09:12 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-03-14 09:51 - 2018-03-01 09:11 - 000093600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-03-14 09:51 - 2018-03-01 09:10 - 001779936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-03-14 09:51 - 2018-03-01 09:10 - 000075168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-03-14 09:51 - 2018-03-01 09:10 - 000022936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys
2018-03-14 09:51 - 2018-03-01 08:51 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-03-14 09:51 - 2018-03-01 08:30 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-03-14 09:51 - 2018-03-01 08:29 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-03-14 09:51 - 2018-03-01 08:29 - 000574960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-03-14 09:51 - 2018-03-01 08:28 - 002193168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-03-14 09:51 - 2018-03-01 08:27 - 000284112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-03-14 09:51 - 2018-03-01 08:27 - 000221592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2018-03-14 09:51 - 2018-03-01 08:26 - 001524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-03-14 09:51 - 2018-03-01 08:23 - 005105664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWSnapin.dll
2018-03-14 09:51 - 2018-03-01 08:21 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2018-03-14 09:51 - 2018-03-01 08:03 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-03-14 09:51 - 2018-03-01 08:03 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-03-14 09:51 - 2018-03-01 08:03 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-03-14 09:51 - 2018-03-01 08:01 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-03-14 09:51 - 2018-03-01 08:00 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-03-14 09:51 - 2018-03-01 07:59 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2018-03-14 09:51 - 2018-03-01 07:58 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-03-14 09:51 - 2018-03-01 07:58 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2018-03-14 09:51 - 2018-03-01 07:58 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-03-14 09:51 - 2018-03-01 07:57 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-03-14 09:51 - 2018-03-01 07:55 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-03-14 09:51 - 2018-03-01 07:54 - 001296896 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-03-14 09:51 - 2018-03-01 07:54 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-03-14 09:51 - 2018-03-01 07:54 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-03-14 09:51 - 2018-03-01 07:54 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-03-14 09:51 - 2018-03-01 07:53 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-03-14 09:51 - 2018-03-01 07:53 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2018-03-14 09:51 - 2018-03-01 07:52 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-03-14 09:51 - 2018-03-01 07:51 - 002329088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2018-03-14 09:51 - 2018-03-01 07:51 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2018-03-14 09:51 - 2018-03-01 07:51 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-03-14 09:51 - 2018-03-01 07:50 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-03-14 09:51 - 2018-03-01 07:50 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-03-14 09:51 - 2018-03-01 07:50 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-03-14 09:51 - 2018-03-01 07:50 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-03-14 09:51 - 2018-03-01 07:49 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-03-14 09:51 - 2018-03-01 07:49 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-03-14 09:51 - 2018-03-01 07:49 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2018-03-14 09:51 - 2018-03-01 07:48 - 000543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-03-14 09:51 - 2018-03-01 07:48 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-03-14 09:51 - 2018-03-01 07:47 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2018-03-14 09:51 - 2018-03-01 07:47 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-03-14 09:51 - 2018-03-01 07:46 - 004051968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-03-14 09:51 - 2018-03-01 07:46 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-03-14 09:51 - 2018-03-01 07:46 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2018-03-14 09:51 - 2018-03-01 07:45 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-03-14 09:51 - 2018-03-01 07:45 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-03-14 09:51 - 2018-03-01 07:43 - 012830208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-03-14 09:51 - 2018-03-01 07:42 - 003505664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2018-03-14 09:51 - 2018-03-01 07:41 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-03-14 09:51 - 2018-03-01 07:41 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-03-14 09:51 - 2018-03-01 07:40 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-03-14 09:51 - 2018-03-01 07:39 - 002222592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-03-14 09:51 - 2018-03-01 07:39 - 002035712 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-03-14 09:51 - 2018-03-01 07:39 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2018-03-14 09:51 - 2018-03-01 07:39 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-03-14 09:51 - 2018-03-01 07:36 - 004050432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-03-14 09:51 - 2018-03-01 07:36 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-03-09 08:39 - 2018-03-09 08:39 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-03-09 08:39 - 2018-03-09 08:39 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-03-09 08:39 - 2018-02-22 04:13 - 000077216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-03-09 08:39 - 2018-02-22 04:11 - 000109984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-03-09 08:39 - 2018-02-22 04:10 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-03-09 08:39 - 2018-02-22 04:08 - 001206688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-03-09 08:39 - 2018-02-22 04:08 - 001055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-03-09 08:39 - 2018-02-22 04:08 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-03-09 08:39 - 2018-02-22 04:07 - 000194456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2018-03-09 08:39 - 2018-02-22 04:03 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-03-09 08:39 - 2018-02-22 04:03 - 000082848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-03-09 08:39 - 2018-02-22 04:02 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-03-09 08:39 - 2018-02-22 04:00 - 000187296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-03-09 08:39 - 2018-02-22 03:59 - 021351624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-03-09 08:39 - 2018-02-22 03:54 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-03-09 08:39 - 2018-02-22 03:52 - 000103328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-03-09 08:39 - 2018-02-22 03:51 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2018-03-09 08:39 - 2018-02-22 03:51 - 000045472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-03-09 08:39 - 2018-02-22 03:50 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-03-09 08:39 - 2018-02-22 03:50 - 000229272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-03-09 08:39 - 2018-02-22 02:41 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-03-09 08:39 - 2018-02-22 02:31 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2018-03-09 08:39 - 2018-02-22 02:30 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-03-09 08:39 - 2018-02-22 02:30 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-03-09 08:39 - 2018-02-22 02:27 - 001282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-03-09 08:39 - 2018-02-22 02:26 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2018-03-09 08:39 - 2018-02-22 02:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-03-09 08:39 - 2018-02-22 02:16 - 001286144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-03-09 08:39 - 2018-02-22 02:12 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-03-08 09:51 - 2018-03-08 09:51 - 000002139 _____ C:\Users\Public\Desktop\3DMark2000.lnk
2018-03-08 09:51 - 1998-10-29 17:45 - 000306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2018-03-08 09:50 - 2018-03-08 09:50 - 000001302 _____ C:\Users\Public\Desktop\3DMark Vantage.lnk
2018-03-07 14:21 - 2018-03-24 01:02 - 000123840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-04-05 15:39 - 2011-04-28 10:15 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\foobar2000
2018-04-05 15:05 - 2017-12-14 15:39 - 000000000 ____D C:\Users\Zbyšek\Documents\Soubory aplikace Outlook
2018-04-05 13:02 - 2017-10-19 11:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-04-05 12:25 - 2017-04-06 08:59 - 000000000 ____D C:\ProgramData\NVIDIA
2018-04-05 12:22 - 2017-10-26 08:28 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\AIMP
2018-04-05 12:22 - 2011-04-28 11:48 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\vlc
2018-04-05 08:54 - 2017-10-19 11:19 - 000004200 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E71698AD-CDD8-4D87-B2BE-A6757666F908}
2018-04-05 08:42 - 2017-10-19 11:11 - 004909310 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-04-05 08:42 - 2017-09-30 16:31 - 002297104 _____ C:\WINDOWS\system32\perfh005.dat
2018-04-05 08:42 - 2017-09-30 16:31 - 000641596 _____ C:\WINDOWS\system32\perfc005.dat
2018-04-05 08:36 - 2017-10-19 11:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-04-05 08:36 - 2017-09-29 10:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-04-05 07:30 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-04-05 07:29 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-04-05 07:29 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-04-04 07:26 - 2015-09-14 15:03 - 000000000 ____D C:\Users\Zbyšek\Documents\AquaMark3
2018-04-03 15:24 - 2013-04-30 08:59 - 000000000 ____D C:\Temp
2018-04-03 08:26 - 2013-08-22 12:29 - 000000000 ____D C:\Program Files\trend micro
2018-04-03 07:31 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-03-29 08:54 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\rescache
2018-03-27 07:50 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-03-27 07:36 - 2011-09-12 11:57 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\Audacity
2018-03-27 07:13 - 2017-10-19 11:09 - 005268176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-03-27 07:13 - 2017-04-06 08:59 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-03-26 15:24 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-03-26 08:01 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-03-26 07:32 - 2017-09-29 15:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-03-26 07:32 - 2011-04-28 11:16 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-03-26 07:28 - 2014-08-05 08:51 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-24 01:50 - 2018-01-22 16:00 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-03-24 01:02 - 2018-01-22 16:00 - 000633224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-03-24 01:02 - 2018-01-22 16:00 - 000083072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-03-24 01:02 - 2017-12-14 12:10 - 005952392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-03-24 01:02 - 2017-12-14 12:10 - 002596320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-03-24 01:02 - 2017-12-14 12:10 - 001767824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-03-24 01:02 - 2017-12-14 12:10 - 000451040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-03-21 13:22 - 2017-12-14 12:10 - 008114212 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-03-21 08:32 - 2017-04-06 08:59 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-03-21 08:32 - 2017-04-06 08:59 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-03-21 08:32 - 2016-12-16 17:43 - 000001485 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2018-03-16 09:38 - 2011-04-28 09:55 - 000000000 ____D C:\Supgam
2018-03-16 09:31 - 2018-02-12 10:25 - 000000000 ____D C:\Program Files\AMD
2018-03-16 09:31 - 2012-08-06 08:23 - 000000000 ____D C:\Program Files (x86)\AMD
2018-03-16 09:30 - 2014-02-11 10:44 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\Spider Player
2018-03-14 17:28 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-03-14 15:05 - 2017-10-24 08:37 - 002137024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2018-03-14 15:05 - 2016-12-16 17:43 - 001310144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2018-03-14 14:44 - 2017-04-07 20:02 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2018-03-14 09:54 - 2013-08-16 12:00 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-03-14 09:52 - 2017-10-11 10:28 - 130364688 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-14 09:52 - 2011-05-02 14:18 - 130364688 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-03-13 08:34 - 2017-10-26 08:28 - 000000000 ____D C:\Program Files (x86)\AIMP
2018-03-13 07:02 - 2017-10-19 11:11 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-03-12 08:31 - 2017-10-19 11:21 - 000000000 ___RD C:\Users\Zbyšek\3D Objects
2018-03-12 08:31 - 2016-05-31 09:31 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-03-09 11:35 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-03-09 08:25 - 2012-12-20 12:16 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2018-03-08 12:59 - 2015-09-16 14:05 - 000000000 ____D C:\Users\Zbyšek\Documents\OCCT
2018-03-08 10:21 - 2015-09-14 15:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MadOnion.com
2018-03-08 10:21 - 2015-09-14 15:36 - 000000000 ____D C:\Program Files (x86)\MadOnion.com
2018-03-08 10:13 - 2015-09-15 09:45 - 000000000 ____D C:\Program Files (x86)\Futuremark
2018-03-08 09:49 - 2011-05-05 14:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2018-03-08 09:49 - 2011-04-28 09:59 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-03-07 14:33 - 2013-10-21 12:39 - 000000022 _____ C:\WINDOWS\GPU-Z.INI
==================== Files in the root of some directories =======
2017-01-05 14:49 - 2017-01-05 14:51 - 000021368 _____ (Schneider Electric) C:\Users\Zbyšek\en_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000021368 _____ (Schneider Electric) C:\Users\Zbyšek\es_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000021880 _____ (Schneider Electric) C:\Users\Zbyšek\fr_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000021880 _____ (Schneider Electric) C:\Users\Zbyšek\grm_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000021368 _____ (Schneider Electric) C:\Users\Zbyšek\it_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000020344 _____ (Schneider Electric) C:\Users\Zbyšek\jp_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 001079808 _____ (Microsoft Corporation) C:\Users\Zbyšek\mfc80u.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000626688 _____ (Microsoft Corporation) C:\Users\Zbyšek\msvcr80.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 013923704 _____ (Schneider Electric) C:\Users\Zbyšek\PCPE Setup.exe
2017-01-05 14:49 - 2017-01-05 14:51 - 000021368 _____ (Schneider Electric) C:\Users\Zbyšek\pt_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000018808 _____ () C:\Users\Zbyšek\ResourceReader.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000020856 _____ (Schneider Electric) C:\Users\Zbyšek\ru_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000019832 _____ (Schneider Electric) C:\Users\Zbyšek\zh_res.dll
2013-06-03 08:54 - 2013-06-03 08:54 - 000000761 _____ () C:\Users\Zbyšek\AppData\Roaming\SQLite3.dll
2011-04-28 10:01 - 2018-02-06 16:48 - 000000600 _____ () C:\Users\Zbyšek\AppData\Roaming\winscp.rnd
2012-09-27 13:45 - 2012-09-27 14:00 - 000000079 _____ () C:\Users\Zbyšek\AppData\Local\CrystalDiskMark30.ini
2011-05-04 08:47 - 2018-03-19 16:12 - 000051712 _____ () C:\Users\Zbyšek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-02-28 16:51 - 2015-02-24 18:07 - 002128896 _____ () C:\Users\Zbyšek\AppData\Local\file__0.localstorage
2011-05-09 11:58 - 2011-05-09 11:58 - 000000036 _____ () C:\Users\Zbyšek\AppData\Local\housecall.guid.cache
2013-02-15 15:21 - 2013-04-23 15:17 - 000004096 ____H () C:\Users\Zbyšek\AppData\Local\keyfile3.drm
2014-11-24 17:06 - 2014-11-24 17:06 - 000000060 _____ () C:\Users\Zbyšek\AppData\Local\MRDownloader.err
2014-11-24 17:07 - 2014-11-24 17:49 - 000001144 _____ () C:\Users\Zbyšek\AppData\Local\MRDownloader.nast
2014-11-13 13:45 - 2014-11-13 13:45 - 000029696 _____ () C:\Users\Zbyšek\AppData\Local\MSGBOX.EXE
2018-01-30 14:40 - 2018-01-30 14:40 - 000002114 _____ () C:\Users\Zbyšek\AppData\Local\recently-used.xbel
2011-04-28 13:08 - 2014-03-03 12:58 - 000007657 _____ () C:\Users\Zbyšek\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-04-05 09:13
==================== End of FRST.txt ============================
Ran by Zbyšek (administrator) on ZBYŠEK-ANATOMIE (05-04-2018 15:46:05)
Running from C:\Users\Zbyšek\Desktop
Loaded Profiles: Zbyšek (Available Profiles: Zbyšek & DefaultAppPool)
Platform: Windows 10 Home Version 1709 16299.334 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
() C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ALCPU) C:\Supgam\CoreTemp\Core Temp.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(CMedia) C:\Program Files\ASUS Xonar D2X Audio\Customapp\AsusAudioCenter.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\System\HsMgr64.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [Cmaudio8788] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\WINDOWS\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\WINDOWS\system\HsMgr64.exe [282112 2008-07-11] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\Run: [Core Temp] => C:\Supgam\CoreTemp\Core Temp.exe [999000 2017-11-04] (ALCPU)
HKU\S-1-5-21-2338206849-698363927-3636189722-1000\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\Root\Office16\lync.exe [23602864 2018-03-26] (Microsoft Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{1141354d-17e1-4e8a-8fd8-d54fc9c18163}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1141354d-17e1-4e8a-8fd8-d54fc9c18163}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{2de9ef93-23ee-4425-9065-715d3ba5bfad}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{429e75c0-e7a0-4951-8e66-b4eb2183ad52}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{785d6d22-fd0e-46cb-96b7-058f148deb4b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{785d6d22-fd0e-46cb-96b7-058f148deb4b}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{81213cd9-dd22-47e4-b237-b220a21f3861}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{9df3e740-3a94-4a37-b3d0-af0360660554}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{b5e6b7d9-6711-4c85-8198-a5a45c67dd9f}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{febc4642-5883-4201-98db-1d3396901a13}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{febc4642-5883-4201-98db-1d3396901a13}: [DhcpNameServer] 195.178.72.150
Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-02-22] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2018-01-22] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-01-22] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-01-29] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2018-01-22] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-29] (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKU\S-1-5-21-2338206849-698363927-3636189722-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-01-22] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default [2018-01-24]
FF Homepage: Mozilla\Firefox\Profiles\a7by7y2j.default -> hxxp://www.seznam.cz/
FF Extension: (Classic Theme Restorer (Customize Australis)) - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2014-08-05] [Legacy] [not signed]
FF Extension: (AutocompletePro - Your handy search suggestions tool) - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\support@predictad.com [2018-01-29] [Legacy] [not signed]
FF Extension: (YouTube High Definition) - C:\Users\Zbyšek\AppData\Roaming\Mozilla\Firefox\Profiles\a7by7y2j.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2014-08-04] [Legacy] [not signed]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-01-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-01-29] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-01-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-01-22] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default [2018-04-05]
CHR Extension: (Dokumenty) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (LIVESCORE SOCCER) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gibfflggfgeemmkaifokfjanokokcjfg [2016-02-04]
CHR Extension: (Bleaner) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2018-02-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Remove Bloat!) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlnnachibjmjahfpoemhledlpakoicg [2018-02-19]
CHR Extension: (Gmail) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR Extension: (Chrome Media Router) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-27]
CHR Extension: (Browse Faster) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponhjlldbpnmeieenmaacddmlfpdielh [2018-02-19]
CHR Profile: C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2 [2016-10-20]
CHR Extension: (Prezentace Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-10-18]
CHR Extension: (Dokumenty Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-18]
CHR Extension: (Disk Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-18]
CHR Extension: (YouTube) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-18]
CHR Extension: (Tabulky Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-10-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-18]
CHR Extension: (Gmail) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-18]
CHR Extension: (Chrome Media Router) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-18]
CHR Profile: C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile [2016-10-20]
CHR Extension: (Prezentace Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-12]
CHR Extension: (Dokumenty Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-12]
CHR Extension: (Disk Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-12]
CHR Extension: (YouTube) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-12]
CHR Extension: (Vyhledávání Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-12]
CHR Extension: (Tabulky Google) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-12]
CHR Extension: (Gmail) - C:\Users\Zbyšek\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584 2010-12-02] ()
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880 2010-10-21] ()
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7761584 2018-03-03] (Microsoft Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2018-01-30] (Macrovision Europe Ltd.) [File not signed]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2018-02-06] (Futuremark)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2015-11-20] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2011-03-04] (Hewlett-Packard Company) [File not signed]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ALSysIO; E:\Temp\ALSysIO64.sys [46384 2018-04-05] (Arthur Liberman)
S3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34696 2017-10-10] (Advanced Micro Devices, Inc)
S3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33144 2017-10-16] (Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-12] (Advanced Micro Devices, Inc. )
S3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31584 2018-01-02] (Advanced Micro Devices)
S0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [137104 2017-11-07] (Advanced Micro Devices, Inc. )
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] ()
R0 asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [88936 2016-07-20] (Asmedia Technology)
R3 CLVirtualBus01; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [95496 2014-11-05] (CyberLink)
R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2735616 2015-06-02] (C-Media Inc)
S3 e1rexpress; C:\WINDOWS\system32\DRIVERS\e1r65x64.sys [540112 2016-07-30] (Intel Corporation)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2018-01-29] (Highresolution Enterprises [www.highrez.co.uk])
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c1a085cc86772d3f\nvlddmkm.sys [17544792 2018-03-25] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-16] (NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] ()
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [132120 2016-10-18] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-04-05 15:46 - 2018-04-05 15:46 - 000020709 _____ C:\Users\Zbyšek\Desktop\FRST.txt
2018-04-05 15:45 - 2018-04-05 15:46 - 000000000 ____D C:\FRST
2018-04-05 15:44 - 2018-04-05 15:44 - 002403328 _____ (Farbar) C:\Users\Zbyšek\Desktop\FRST64.exe
2018-04-04 16:20 - 2018-04-04 16:20 - 000003144 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2018-04-03 14:57 - 2018-04-05 08:35 - 000000000 ____D C:\AdwCleaner
2018-04-03 14:56 - 2018-04-03 14:56 - 008222496 _____ (Malwarebytes) C:\Users\Zbyšek\Desktop\adwcleaner_7.0.8.0.exe
2018-04-03 08:22 - 2018-04-03 08:22 - 001222144 _____ C:\Users\Zbyšek\Desktop\RSITx64.exe
2018-04-03 08:22 - 2018-04-03 08:22 - 000000000 ____D C:\rsit
2018-03-28 11:19 - 2018-03-28 11:19 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-03-28 11:19 - 2017-12-09 00:25 - 000798520 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2018-03-28 11:19 - 2017-12-09 00:25 - 000490808 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2018-03-28 11:19 - 2017-12-09 00:24 - 000928568 _____ C:\WINDOWS\system32\vulkan-1.dll
2018-03-28 11:19 - 2017-12-09 00:24 - 000591672 _____ C:\WINDOWS\system32\vulkaninfo.exe
2018-03-28 11:18 - 2018-03-25 18:15 - 000998424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-03-28 11:18 - 2018-03-25 18:15 - 000950016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-03-28 11:18 - 2018-03-25 18:15 - 000625504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-03-28 11:18 - 2018-03-25 18:15 - 000516024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 004318112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 003719096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 001985112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439135.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 001683712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439135.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 001138720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 001065888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 000749312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-03-28 11:18 - 2018-03-25 18:14 - 000608344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-03-28 11:18 - 2018-03-25 18:13 - 040278608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-03-28 11:18 - 2018-03-25 18:13 - 035188992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-03-28 11:18 - 2018-03-25 18:10 - 013571520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-03-28 11:18 - 2018-03-25 18:10 - 011132384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 019855144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 016496776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 001346128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 001153744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 001061352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 000902096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 000811808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 000650232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-03-28 11:18 - 2018-03-25 18:09 - 000633040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-03-28 11:18 - 2018-03-25 18:08 - 012967056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-03-28 11:18 - 2018-03-25 18:08 - 011001504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-03-28 11:18 - 2018-03-25 18:08 - 004633920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-03-28 11:18 - 2018-03-25 18:08 - 003939624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-03-28 11:18 - 2018-03-24 03:19 - 000048407 _____ C:\WINDOWS\system32\nvinfo.pb
2018-03-27 07:13 - 2018-03-13 07:26 - 000398138 __RSH C:\bootmgr
2018-03-27 07:13 - 2017-09-29 15:41 - 000000001 ___SH C:\BOOTNXT
2018-03-26 08:00 - 2018-03-13 09:03 - 005907288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2018-03-26 08:00 - 2018-03-13 09:03 - 000779960 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-03-26 08:00 - 2018-03-13 09:03 - 000382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-03-26 08:00 - 2018-03-13 09:03 - 000279960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-03-26 08:00 - 2018-03-13 09:02 - 008602520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-03-26 08:00 - 2018-03-13 09:02 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-03-26 08:00 - 2018-03-13 08:59 - 000535968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2018-03-26 08:00 - 2018-03-13 08:58 - 000377760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-03-26 08:00 - 2018-03-13 08:55 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-03-26 08:00 - 2018-03-13 08:55 - 000749984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-03-26 08:00 - 2018-03-13 08:55 - 000408992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-03-26 08:00 - 2018-03-13 08:55 - 000334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2018-03-26 08:00 - 2018-03-13 08:55 - 000246176 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-03-26 08:00 - 2018-03-13 08:54 - 000727448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-03-26 08:00 - 2018-03-13 08:54 - 000555936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-03-26 08:00 - 2018-03-13 08:54 - 000163744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-03-26 08:00 - 2018-03-13 08:53 - 000774560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2018-03-26 08:00 - 2018-03-13 08:52 - 000127136 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2018-03-26 08:00 - 2018-03-13 08:50 - 000617312 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-03-26 08:00 - 2018-03-13 07:40 - 003663872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-03-26 08:00 - 2018-03-13 07:40 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-03-26 08:00 - 2018-03-13 07:40 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-03-26 08:00 - 2018-03-13 07:37 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-03-26 08:00 - 2018-03-13 07:37 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2018-03-26 08:00 - 2018-03-13 07:35 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsAuth.dll
2018-03-26 08:00 - 2018-03-13 07:35 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsCfg.dll
2018-03-26 08:00 - 2018-03-13 07:35 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlgpclnt.dll
2018-03-26 08:00 - 2018-03-13 07:34 - 008727552 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-03-26 08:00 - 2018-03-13 07:34 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2018-03-26 08:00 - 2018-03-13 07:34 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll
2018-03-26 08:00 - 2018-03-13 07:34 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2018-03-26 08:00 - 2018-03-13 07:33 - 000555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-03-26 08:00 - 2018-03-13 07:33 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-03-26 08:00 - 2018-03-13 07:32 - 005195776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-03-26 08:00 - 2018-03-13 07:32 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2018-03-26 08:00 - 2018-03-13 07:32 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-03-26 08:00 - 2018-03-13 07:32 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2018-03-26 08:00 - 2018-03-13 07:31 - 004746240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-03-26 08:00 - 2018-03-13 07:31 - 002849792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-03-26 08:00 - 2018-03-13 07:31 - 001263104 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2018-03-26 08:00 - 2018-03-13 07:31 - 001173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-03-26 08:00 - 2018-03-13 07:30 - 007145472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-03-26 08:00 - 2018-03-13 07:30 - 003400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-03-26 08:00 - 2018-03-13 07:30 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2018-03-26 08:00 - 2018-03-13 07:30 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2018-03-26 08:00 - 2018-03-13 07:29 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-03-26 08:00 - 2018-03-13 07:29 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-03-26 08:00 - 2018-03-13 07:28 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-03-26 08:00 - 2018-03-13 07:28 - 001967104 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-03-26 08:00 - 2018-03-13 07:28 - 000939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-03-26 08:00 - 2018-03-13 07:28 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2018-03-26 08:00 - 2018-03-13 07:28 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-03-26 08:00 - 2018-03-13 07:28 - 000508928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2018-03-26 08:00 - 2018-03-13 07:27 - 003125760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-03-26 08:00 - 2018-03-13 07:27 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2018-03-26 08:00 - 2018-03-13 07:25 - 000963584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-03-26 08:00 - 2018-03-13 07:25 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-03-26 08:00 - 2018-03-13 07:23 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2018-03-26 08:00 - 2018-03-13 07:22 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-03-26 08:00 - 2018-03-13 07:19 - 001929712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-03-26 08:00 - 2018-03-13 07:19 - 001615712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-03-26 08:00 - 2018-03-13 07:19 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-03-26 08:00 - 2018-03-13 07:19 - 000311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-03-26 08:00 - 2018-03-13 07:15 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2018-03-26 08:00 - 2018-03-13 07:08 - 001555784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2018-03-26 08:00 - 2018-03-13 07:08 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-03-26 08:00 - 2018-03-13 07:06 - 000704080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-03-26 08:00 - 2018-03-13 07:06 - 000564640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2018-03-26 08:00 - 2018-03-13 07:04 - 000140592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2018-03-26 08:00 - 2018-03-13 06:44 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2018-03-26 08:00 - 2018-03-13 06:44 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-03-26 08:00 - 2018-03-13 06:44 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2018-03-26 08:00 - 2018-03-13 06:43 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-03-26 08:00 - 2018-03-13 06:41 - 006576128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-03-26 08:00 - 2018-03-13 06:40 - 006118400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-03-26 08:00 - 2018-03-13 06:39 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2018-03-26 08:00 - 2018-03-13 06:39 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2018-03-26 08:00 - 2018-03-13 06:39 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-03-26 08:00 - 2018-03-13 06:39 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsCfg.dll
2018-03-26 08:00 - 2018-03-13 06:38 - 006466560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-03-26 08:00 - 2018-03-13 06:38 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 003181568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000537088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscms.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-03-26 08:00 - 2018-03-13 06:37 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2018-03-26 08:00 - 2018-03-13 06:36 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-03-26 08:00 - 2018-03-13 06:35 - 006204416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-03-26 08:00 - 2018-03-13 06:34 - 002409984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-03-26 08:00 - 2018-03-13 06:34 - 000706048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-03-26 08:00 - 2018-03-13 06:33 - 002464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-03-26 08:00 - 2018-03-13 06:33 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2018-03-26 08:00 - 2018-03-13 06:32 - 006030848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-03-26 08:00 - 2018-03-13 06:32 - 003677184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-03-26 08:00 - 2018-03-13 06:32 - 002577408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2018-03-26 08:00 - 2018-03-13 06:32 - 001948672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-03-26 08:00 - 2018-03-13 06:31 - 000862208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-03-26 08:00 - 2018-03-13 06:31 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2018-03-26 08:00 - 2018-03-13 06:31 - 000402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2018-03-26 08:00 - 2018-03-13 06:30 - 002349568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-03-26 08:00 - 2018-03-13 06:30 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-03-26 08:00 - 2018-03-13 06:27 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2018-03-26 08:00 - 2018-03-13 06:27 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2018-03-26 07:59 - 2018-03-13 09:09 - 001092016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-03-26 07:59 - 2018-03-13 09:08 - 000924648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-03-26 07:59 - 2018-03-13 09:06 - 001568664 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-03-26 07:59 - 2018-03-13 09:06 - 000270752 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-03-26 07:59 - 2018-03-13 09:06 - 000138144 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-03-26 07:59 - 2018-03-13 09:05 - 000389536 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-03-26 07:59 - 2018-03-13 09:05 - 000070040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-03-26 07:59 - 2018-03-13 09:04 - 000749472 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-03-26 07:59 - 2018-03-13 09:04 - 000609176 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-03-26 07:59 - 2018-03-13 09:04 - 000035224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-03-26 07:59 - 2018-03-13 09:03 - 002003352 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-03-26 07:59 - 2018-03-13 09:03 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-03-26 07:59 - 2018-03-13 09:03 - 000664472 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-03-26 07:59 - 2018-03-13 09:03 - 000461720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-03-26 07:59 - 2018-03-13 09:03 - 000273312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-03-26 07:59 - 2018-03-13 09:02 - 002513920 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-03-26 07:59 - 2018-03-13 09:02 - 001415288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-03-26 07:59 - 2018-03-13 09:02 - 001209752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-03-26 07:59 - 2018-03-13 09:01 - 002395040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-03-26 07:59 - 2018-03-13 08:58 - 000441248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2018-03-26 07:59 - 2018-03-13 08:58 - 000170904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-03-26 07:59 - 2018-03-13 08:57 - 000711432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-03-26 07:59 - 2018-03-13 08:57 - 000540056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-03-26 07:59 - 2018-03-13 08:55 - 002574232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-03-26 07:59 - 2018-03-13 08:55 - 001778360 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2018-03-26 07:59 - 2018-03-13 08:55 - 000417440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2018-03-26 07:59 - 2018-03-13 08:54 - 000677280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-03-26 07:59 - 2018-03-13 08:54 - 000128928 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 001054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 000902928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 000143264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 000113568 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-03-26 07:59 - 2018-03-13 08:53 - 000091152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2018-03-26 07:59 - 2018-03-13 08:52 - 007384576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-03-26 07:59 - 2018-03-13 08:52 - 000172112 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2018-03-26 07:59 - 2018-03-13 08:51 - 002773408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-03-26 07:59 - 2018-03-13 08:51 - 000614296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-03-26 07:59 - 2018-03-13 07:56 - 025253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-03-26 07:59 - 2018-03-13 07:41 - 003995136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2018-03-26 07:59 - 2018-03-13 07:40 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-03-26 07:59 - 2018-03-13 07:38 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2018-03-26 07:59 - 2018-03-13 07:38 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2018-03-26 07:59 - 2018-03-13 07:38 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2018-03-26 07:59 - 2018-03-13 07:37 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-03-26 07:59 - 2018-03-13 07:37 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-03-26 07:59 - 2018-03-13 07:37 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2018-03-26 07:59 - 2018-03-13 07:37 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelineprxy.dll
2018-03-26 07:59 - 2018-03-13 07:36 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2018-03-26 07:59 - 2018-03-13 07:36 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 008031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2018-03-26 07:59 - 2018-03-13 07:35 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2018-03-26 07:59 - 2018-03-13 07:34 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 023674368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 007544832 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 001574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-03-26 07:59 - 2018-03-13 07:33 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 000278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2018-03-26 07:59 - 2018-03-13 07:33 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2018-03-26 07:59 - 2018-03-13 07:33 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpmon.dll
2018-03-26 07:59 - 2018-03-13 07:32 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2018-03-26 07:59 - 2018-03-13 07:32 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2018-03-26 07:59 - 2018-03-13 07:31 - 008103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-03-26 07:59 - 2018-03-13 07:31 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-03-26 07:59 - 2018-03-13 07:31 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2018-03-26 07:59 - 2018-03-13 07:31 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2018-03-26 07:59 - 2018-03-13 07:30 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2018-03-26 07:59 - 2018-03-13 07:30 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2018-03-26 07:59 - 2018-03-13 07:29 - 003170816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-03-26 07:59 - 2018-03-13 07:29 - 002209280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-03-26 07:59 - 2018-03-13 07:29 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-03-26 07:59 - 2018-03-13 07:29 - 000984064 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-03-26 07:59 - 2018-03-13 07:28 - 003160576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2018-03-26 07:59 - 2018-03-13 07:28 - 002857984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-03-26 07:59 - 2018-03-13 07:28 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-03-26 07:59 - 2018-03-13 07:28 - 001157632 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-03-26 07:59 - 2018-03-13 07:28 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-03-26 07:59 - 2018-03-13 07:28 - 000837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-03-26 07:59 - 2018-03-13 07:27 - 002528256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-03-26 07:59 - 2018-03-13 07:27 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-03-26 07:59 - 2018-03-13 07:27 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-03-26 07:59 - 2018-03-13 07:26 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-03-26 07:59 - 2018-03-13 07:26 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2018-03-26 07:59 - 2018-03-13 07:25 - 001346560 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2018-03-26 07:59 - 2018-03-13 07:25 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2018-03-26 07:59 - 2018-03-13 07:24 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2018-03-26 07:59 - 2018-03-13 07:24 - 000389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2018-03-26 07:59 - 2018-03-13 07:24 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2018-03-26 07:59 - 2018-03-13 07:23 - 001556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2018-03-26 07:59 - 2018-03-13 07:23 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2018-03-26 07:59 - 2018-03-13 07:22 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2018-03-26 07:59 - 2018-03-13 07:22 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2018-03-26 07:59 - 2018-03-13 07:22 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2018-03-26 07:59 - 2018-03-13 07:18 - 000213408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-03-26 07:59 - 2018-03-13 07:07 - 000115104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2018-03-26 07:59 - 2018-03-13 07:04 - 006481096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-03-26 07:59 - 2018-03-13 07:04 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-03-26 07:59 - 2018-03-13 06:43 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-03-26 07:59 - 2018-03-13 06:41 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-03-26 07:59 - 2018-03-13 06:40 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2018-03-26 07:59 - 2018-03-13 06:40 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2018-03-26 07:59 - 2018-03-13 06:39 - 019355136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-03-26 07:59 - 2018-03-13 06:39 - 018923520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-03-26 07:59 - 2018-03-13 06:39 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-03-26 07:59 - 2018-03-13 06:37 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2018-03-26 07:59 - 2018-03-13 06:37 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2018-03-26 07:59 - 2018-03-13 06:36 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2018-03-26 07:59 - 2018-03-13 06:36 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2018-03-26 07:59 - 2018-03-13 06:36 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll
2018-03-26 07:59 - 2018-03-13 06:31 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-03-26 07:59 - 2018-03-13 06:31 - 001348608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-03-26 07:59 - 2018-03-13 06:28 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2018-03-26 07:59 - 2018-03-13 06:26 - 000483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2018-03-21 09:21 - 2018-03-16 20:11 - 001985280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439124.dll
2018-03-21 09:21 - 2018-03-16 20:11 - 001684000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439124.dll
2018-03-21 09:21 - 2018-03-16 02:57 - 000058816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-03-21 08:32 - 2018-03-21 08:32 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000004088 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-21 08:32 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-03-21 08:32 - 2018-03-14 15:05 - 002480064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2018-03-16 15:57 - 2018-03-16 15:57 - 000001177 _____ C:\Users\Zbyšek\Desktop\Subnautica.lnk
2018-03-16 09:44 - 2018-03-16 09:44 - 000000000 ____D C:\ProgramData\Unknown Worlds
2018-03-16 09:23 - 2018-03-16 09:23 - 000000000 ____D C:\Users\Zbyšek\AppData\LocalLow\Unknown Worlds
2018-03-16 09:23 - 2018-03-16 09:23 - 000000000 ____D C:\Users\Public\Documents\Steam
2018-03-14 09:54 - 2018-03-02 23:09 - 000834552 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-03-14 09:54 - 2018-03-02 23:09 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-03-14 09:51 - 2018-03-02 05:36 - 017085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-03-14 09:51 - 2018-03-02 05:02 - 000037888 _____ C:\WINDOWS\system32\SpectrumSyncClient.dll
2018-03-14 09:51 - 2018-03-02 05:01 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-03-14 09:51 - 2018-03-02 05:00 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2018-03-14 09:51 - 2018-03-02 05:00 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\svf.dll
2018-03-14 09:51 - 2018-03-02 05:00 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-03-14 09:51 - 2018-03-02 04:59 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-03-14 09:51 - 2018-03-01 22:28 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2018-03-14 09:51 - 2018-03-01 09:37 - 007831760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-03-14 09:51 - 2018-03-01 09:30 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-03-14 09:51 - 2018-03-01 09:29 - 000733592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2018-03-14 09:51 - 2018-03-01 09:27 - 001173576 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-03-14 09:51 - 2018-03-01 09:19 - 000710768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-03-14 09:51 - 2018-03-01 09:17 - 002710736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-03-14 09:51 - 2018-03-01 09:17 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-03-14 09:51 - 2018-03-01 09:14 - 007675784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-03-14 09:51 - 2018-03-01 09:14 - 005105664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthFWSnapin.dll
2018-03-14 09:51 - 2018-03-01 09:14 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-03-14 09:51 - 2018-03-01 09:14 - 000356952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-03-14 09:51 - 2018-03-01 09:14 - 000147872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-03-14 09:51 - 2018-03-01 09:12 - 000250264 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2018-03-14 09:51 - 2018-03-01 09:12 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-03-14 09:51 - 2018-03-01 09:11 - 000093600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-03-14 09:51 - 2018-03-01 09:10 - 001779936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-03-14 09:51 - 2018-03-01 09:10 - 000075168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-03-14 09:51 - 2018-03-01 09:10 - 000022936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys
2018-03-14 09:51 - 2018-03-01 08:51 - 000777904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-03-14 09:51 - 2018-03-01 08:30 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-03-14 09:51 - 2018-03-01 08:29 - 006092152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-03-14 09:51 - 2018-03-01 08:29 - 000574960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-03-14 09:51 - 2018-03-01 08:28 - 002193168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-03-14 09:51 - 2018-03-01 08:27 - 000284112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-03-14 09:51 - 2018-03-01 08:27 - 000221592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2018-03-14 09:51 - 2018-03-01 08:26 - 001524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-03-14 09:51 - 2018-03-01 08:23 - 005105664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthFWSnapin.dll
2018-03-14 09:51 - 2018-03-01 08:21 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2018-03-14 09:51 - 2018-03-01 08:03 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2018-03-14 09:51 - 2018-03-01 08:03 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-03-14 09:51 - 2018-03-01 08:03 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-03-14 09:51 - 2018-03-01 08:01 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2018-03-14 09:51 - 2018-03-01 08:00 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-03-14 09:51 - 2018-03-01 07:59 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2018-03-14 09:51 - 2018-03-01 07:58 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-03-14 09:51 - 2018-03-01 07:58 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2018-03-14 09:51 - 2018-03-01 07:58 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-03-14 09:51 - 2018-03-01 07:57 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-03-14 09:51 - 2018-03-01 07:55 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-03-14 09:51 - 2018-03-01 07:54 - 001296896 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-03-14 09:51 - 2018-03-01 07:54 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-03-14 09:51 - 2018-03-01 07:54 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-03-14 09:51 - 2018-03-01 07:54 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-03-14 09:51 - 2018-03-01 07:53 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-03-14 09:51 - 2018-03-01 07:53 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
2018-03-14 09:51 - 2018-03-01 07:53 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2018-03-14 09:51 - 2018-03-01 07:52 - 011923968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-03-14 09:51 - 2018-03-01 07:51 - 002329088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2018-03-14 09:51 - 2018-03-01 07:51 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2018-03-14 09:51 - 2018-03-01 07:51 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2018-03-14 09:51 - 2018-03-01 07:50 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-03-14 09:51 - 2018-03-01 07:50 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-03-14 09:51 - 2018-03-01 07:50 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-03-14 09:51 - 2018-03-01 07:50 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-03-14 09:51 - 2018-03-01 07:49 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-03-14 09:51 - 2018-03-01 07:49 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2018-03-14 09:51 - 2018-03-01 07:49 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2018-03-14 09:51 - 2018-03-01 07:48 - 000543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-03-14 09:51 - 2018-03-01 07:48 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-03-14 09:51 - 2018-03-01 07:47 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2018-03-14 09:51 - 2018-03-01 07:47 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-03-14 09:51 - 2018-03-01 07:46 - 004051968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-03-14 09:51 - 2018-03-01 07:46 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-03-14 09:51 - 2018-03-01 07:46 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2018-03-14 09:51 - 2018-03-01 07:45 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-03-14 09:51 - 2018-03-01 07:45 - 000386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-03-14 09:51 - 2018-03-01 07:43 - 012830208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-03-14 09:51 - 2018-03-01 07:42 - 003505664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2018-03-14 09:51 - 2018-03-01 07:41 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-03-14 09:51 - 2018-03-01 07:41 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-03-14 09:51 - 2018-03-01 07:40 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-03-14 09:51 - 2018-03-01 07:39 - 002222592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-03-14 09:51 - 2018-03-01 07:39 - 002035712 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-03-14 09:51 - 2018-03-01 07:39 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2018-03-14 09:51 - 2018-03-01 07:39 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2018-03-14 09:51 - 2018-03-01 07:36 - 004050432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-03-14 09:51 - 2018-03-01 07:36 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-03-09 08:39 - 2018-03-09 08:39 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-03-09 08:39 - 2018-03-09 08:39 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-03-09 08:39 - 2018-02-22 04:13 - 000077216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-03-09 08:39 - 2018-02-22 04:11 - 000109984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-03-09 08:39 - 2018-02-22 04:10 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-03-09 08:39 - 2018-02-22 04:08 - 001206688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-03-09 08:39 - 2018-02-22 04:08 - 001055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-03-09 08:39 - 2018-02-22 04:08 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-03-09 08:39 - 2018-02-22 04:07 - 000194456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2018-03-09 08:39 - 2018-02-22 04:03 - 000712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-03-09 08:39 - 2018-02-22 04:03 - 000082848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-03-09 08:39 - 2018-02-22 04:02 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-03-09 08:39 - 2018-02-22 04:00 - 000187296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-03-09 08:39 - 2018-02-22 03:59 - 021351624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-03-09 08:39 - 2018-02-22 03:54 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-03-09 08:39 - 2018-02-22 03:52 - 000103328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-03-09 08:39 - 2018-02-22 03:51 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2018-03-09 08:39 - 2018-02-22 03:51 - 000045472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-03-09 08:39 - 2018-02-22 03:50 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-03-09 08:39 - 2018-02-22 03:50 - 000229272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-03-09 08:39 - 2018-02-22 02:41 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-03-09 08:39 - 2018-02-22 02:31 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2018-03-09 08:39 - 2018-02-22 02:30 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-03-09 08:39 - 2018-02-22 02:30 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-03-09 08:39 - 2018-02-22 02:27 - 001282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-03-09 08:39 - 2018-02-22 02:26 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2018-03-09 08:39 - 2018-02-22 02:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2018-03-09 08:39 - 2018-02-22 02:16 - 001286144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-03-09 08:39 - 2018-02-22 02:12 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2018-03-08 09:51 - 2018-03-08 09:51 - 000002139 _____ C:\Users\Public\Desktop\3DMark2000.lnk
2018-03-08 09:51 - 1998-10-29 17:45 - 000306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2018-03-08 09:50 - 2018-03-08 09:50 - 000001302 _____ C:\Users\Public\Desktop\3DMark Vantage.lnk
2018-03-07 14:21 - 2018-03-24 01:02 - 000123840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-04-05 15:39 - 2011-04-28 10:15 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\foobar2000
2018-04-05 15:05 - 2017-12-14 15:39 - 000000000 ____D C:\Users\Zbyšek\Documents\Soubory aplikace Outlook
2018-04-05 13:02 - 2017-10-19 11:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-04-05 12:25 - 2017-04-06 08:59 - 000000000 ____D C:\ProgramData\NVIDIA
2018-04-05 12:22 - 2017-10-26 08:28 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\AIMP
2018-04-05 12:22 - 2011-04-28 11:48 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\vlc
2018-04-05 08:54 - 2017-10-19 11:19 - 000004200 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E71698AD-CDD8-4D87-B2BE-A6757666F908}
2018-04-05 08:42 - 2017-10-19 11:11 - 004909310 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-04-05 08:42 - 2017-09-30 16:31 - 002297104 _____ C:\WINDOWS\system32\perfh005.dat
2018-04-05 08:42 - 2017-09-30 16:31 - 000641596 _____ C:\WINDOWS\system32\perfc005.dat
2018-04-05 08:36 - 2017-10-19 11:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-04-05 08:36 - 2017-09-29 10:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-04-05 07:30 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-04-05 07:29 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-04-05 07:29 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-04-04 07:26 - 2015-09-14 15:03 - 000000000 ____D C:\Users\Zbyšek\Documents\AquaMark3
2018-04-03 15:24 - 2013-04-30 08:59 - 000000000 ____D C:\Temp
2018-04-03 08:26 - 2013-08-22 12:29 - 000000000 ____D C:\Program Files\trend micro
2018-04-03 07:31 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-03-29 08:54 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\rescache
2018-03-27 07:50 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-03-27 07:36 - 2011-09-12 11:57 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\Audacity
2018-03-27 07:13 - 2017-10-19 11:09 - 005268176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-03-27 07:13 - 2017-04-06 08:59 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-03-26 15:24 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-03-26 08:01 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-03-26 07:32 - 2017-09-29 15:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-03-26 07:32 - 2011-04-28 11:16 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-03-26 07:28 - 2014-08-05 08:51 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-24 01:50 - 2018-01-22 16:00 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-03-24 01:02 - 2018-01-22 16:00 - 000633224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-03-24 01:02 - 2018-01-22 16:00 - 000083072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-03-24 01:02 - 2017-12-14 12:10 - 005952392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-03-24 01:02 - 2017-12-14 12:10 - 002596320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-03-24 01:02 - 2017-12-14 12:10 - 001767824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-03-24 01:02 - 2017-12-14 12:10 - 000451040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-03-21 13:22 - 2017-12-14 12:10 - 008114212 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-03-21 08:32 - 2017-04-06 08:59 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-03-21 08:32 - 2017-04-06 08:59 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-03-21 08:32 - 2016-12-16 17:43 - 000001485 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2018-03-16 09:38 - 2011-04-28 09:55 - 000000000 ____D C:\Supgam
2018-03-16 09:31 - 2018-02-12 10:25 - 000000000 ____D C:\Program Files\AMD
2018-03-16 09:31 - 2012-08-06 08:23 - 000000000 ____D C:\Program Files (x86)\AMD
2018-03-16 09:30 - 2014-02-11 10:44 - 000000000 ____D C:\Users\Zbyšek\AppData\Roaming\Spider Player
2018-03-14 17:28 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-03-14 15:05 - 2017-10-24 08:37 - 002137024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2018-03-14 15:05 - 2016-12-16 17:43 - 001310144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2018-03-14 14:44 - 2017-04-07 20:02 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2018-03-14 09:54 - 2013-08-16 12:00 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-03-14 09:52 - 2017-10-11 10:28 - 130364688 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-03-14 09:52 - 2011-05-02 14:18 - 130364688 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-03-13 08:34 - 2017-10-26 08:28 - 000000000 ____D C:\Program Files (x86)\AIMP
2018-03-13 07:02 - 2017-10-19 11:11 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-03-12 08:31 - 2017-10-19 11:21 - 000000000 ___RD C:\Users\Zbyšek\3D Objects
2018-03-12 08:31 - 2016-05-31 09:31 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-03-09 11:35 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-03-09 08:25 - 2012-12-20 12:16 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2018-03-08 12:59 - 2015-09-16 14:05 - 000000000 ____D C:\Users\Zbyšek\Documents\OCCT
2018-03-08 10:21 - 2015-09-14 15:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MadOnion.com
2018-03-08 10:21 - 2015-09-14 15:36 - 000000000 ____D C:\Program Files (x86)\MadOnion.com
2018-03-08 10:13 - 2015-09-15 09:45 - 000000000 ____D C:\Program Files (x86)\Futuremark
2018-03-08 09:49 - 2011-05-05 14:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2018-03-08 09:49 - 2011-04-28 09:59 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-03-07 14:33 - 2013-10-21 12:39 - 000000022 _____ C:\WINDOWS\GPU-Z.INI
==================== Files in the root of some directories =======
2017-01-05 14:49 - 2017-01-05 14:51 - 000021368 _____ (Schneider Electric) C:\Users\Zbyšek\en_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000021368 _____ (Schneider Electric) C:\Users\Zbyšek\es_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000021880 _____ (Schneider Electric) C:\Users\Zbyšek\fr_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000021880 _____ (Schneider Electric) C:\Users\Zbyšek\grm_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000021368 _____ (Schneider Electric) C:\Users\Zbyšek\it_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000020344 _____ (Schneider Electric) C:\Users\Zbyšek\jp_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 001079808 _____ (Microsoft Corporation) C:\Users\Zbyšek\mfc80u.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000626688 _____ (Microsoft Corporation) C:\Users\Zbyšek\msvcr80.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 013923704 _____ (Schneider Electric) C:\Users\Zbyšek\PCPE Setup.exe
2017-01-05 14:49 - 2017-01-05 14:51 - 000021368 _____ (Schneider Electric) C:\Users\Zbyšek\pt_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000018808 _____ () C:\Users\Zbyšek\ResourceReader.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000020856 _____ (Schneider Electric) C:\Users\Zbyšek\ru_res.dll
2017-01-05 14:49 - 2017-01-05 14:51 - 000019832 _____ (Schneider Electric) C:\Users\Zbyšek\zh_res.dll
2013-06-03 08:54 - 2013-06-03 08:54 - 000000761 _____ () C:\Users\Zbyšek\AppData\Roaming\SQLite3.dll
2011-04-28 10:01 - 2018-02-06 16:48 - 000000600 _____ () C:\Users\Zbyšek\AppData\Roaming\winscp.rnd
2012-09-27 13:45 - 2012-09-27 14:00 - 000000079 _____ () C:\Users\Zbyšek\AppData\Local\CrystalDiskMark30.ini
2011-05-04 08:47 - 2018-03-19 16:12 - 000051712 _____ () C:\Users\Zbyšek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-02-28 16:51 - 2015-02-24 18:07 - 002128896 _____ () C:\Users\Zbyšek\AppData\Local\file__0.localstorage
2011-05-09 11:58 - 2011-05-09 11:58 - 000000036 _____ () C:\Users\Zbyšek\AppData\Local\housecall.guid.cache
2013-02-15 15:21 - 2013-04-23 15:17 - 000004096 ____H () C:\Users\Zbyšek\AppData\Local\keyfile3.drm
2014-11-24 17:06 - 2014-11-24 17:06 - 000000060 _____ () C:\Users\Zbyšek\AppData\Local\MRDownloader.err
2014-11-24 17:07 - 2014-11-24 17:49 - 000001144 _____ () C:\Users\Zbyšek\AppData\Local\MRDownloader.nast
2014-11-13 13:45 - 2014-11-13 13:45 - 000029696 _____ () C:\Users\Zbyšek\AppData\Local\MSGBOX.EXE
2018-01-30 14:40 - 2018-01-30 14:40 - 000002114 _____ () C:\Users\Zbyšek\AppData\Local\recently-used.xbel
2011-04-28 13:08 - 2014-03-03 12:58 - 000007657 _____ () C:\Users\Zbyšek\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-04-05 09:13
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction - Chrome <==== ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
U3 idsvc; no ImagePath
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 14.03.2018
Ran by Zbyšek (06-04-2018 08:20:05) Run:1
Running from C:\Users\Zbyšek\Desktop
Loaded Profiles: Zbyšek (Available Profiles: Zbyšek & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction - Chrome <==== ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
U3 idsvc; no ImagePath
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Windows Defender" => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKLM\System\CurrentControlSet\Services\idsvc" => removed successfully
idsvc => service removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8675328 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 130336891 B
Java, Flash, Steam htmlcache => 1066 B
Windows/system/drivers => 2104212 B
Edge => 8418445 B
Chrome => 887704939 B
Firefox => 10847720 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 284016 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Zbyšek => 24779164 B
DefaultAppPool => 0 B
RecycleBin => 0 B
EmptyTemp: => 1023.4 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 08:20:43 ====
Ran by Zbyšek (06-04-2018 08:20:05) Run:1
Running from C:\Users\Zbyšek\Desktop
Loaded Profiles: Zbyšek (Available Profiles: Zbyšek & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicy: Restriction - Chrome <==== ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
U3 idsvc; no ImagePath
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Windows Defender" => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKLM\System\CurrentControlSet\Services\idsvc" => removed successfully
idsvc => service removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8675328 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 130336891 B
Java, Flash, Steam htmlcache => 1066 B
Windows/system/drivers => 2104212 B
Edge => 8418445 B
Chrome => 887704939 B
Firefox => 10847720 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 284016 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Zbyšek => 24779164 B
DefaultAppPool => 0 B
RecycleBin => 0 B
EmptyTemp: => 1023.4 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 08:20:43 ====
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Zdá se, že je vše v pořádku.
Děkuji za pomoc!
Děkuji za pomoc!
-
Rudy
- Site Admin
- Příspěvky: 118244
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
To jsem rád. Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?