Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
jiri321
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 15 zář 2014 21:36

Prosim o kontrolu

#1 Příspěvek od jiri321 »

Dobrý den,
nemá sice žádný konkrétní problém s notebookem, ale přeste prosím o preventivku. Zdá se mi, jakoby ve windows občas "problikl" nějaký program na poadí....Díky

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jiri at 2017-06-04 11:40:01
Microsoft Windows 10 Home
System drive C: has 46 GB (38%) free of 121 GB
Total RAM: 12211 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:40:05, on 04.06.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\Jiri\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Jiri\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_171.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_171.exe
C:\Program Files\trend micro\Jiri.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer13.msn.com/?pc=ACJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {2E38825B-8815-42CF-9126-C58BC28D4591} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll
O4 - HKLM\..\Run: [BacKGround Agent] C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
O4 - HKLM\..\Run: [KeePass 2 PreLoad] "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [WSHelperSetup.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [WSHelperSetup.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Jiri\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Jiri\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: HandyAndy.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: prio32.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 17.0.0 (AVP17.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: DbxSvc - Unknown owner - C:\WINDOWS\system32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\WINDOWS\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: @oem169.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: IObit Uninstaller Service (IObitUnSvr) - IObit - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: klvssbrigde64 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe
O23 - Service: Služba Kaspersky Secure Connection 1.0.0 (KSDE1.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Launch Manager Service (LMSvc) - Acer Incorporate - C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Quick Access Service (QASvc) - Acer Incorporate - C:\Program Files\Acer\Acer Quick Access\QASvc.exe
O23 - Service: Razer Chroma SDK Server - Razer Inc. - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
O23 - Service: Razer Chroma SDK Service - Razer Inc. - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: User Experience Improvement Program (UEIPSvc) - acer - C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\SysWOW64\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\SysWOW64\vmnat.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wondershare Application Framework Service (WsAppService) - Wondershare - C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe

--
End of file - 17488 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
dashost.exe {f661ea39-d1f1-4c65-8a605a1821527616}
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\ibtsiva
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe" -r
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\system32\DbxSvc.exe
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe"
"C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe"
"C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe"
"C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe"
"C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe"
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
"C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc

"C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe"
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\SysWOW64\vmnetdhcp.exe
C:\WINDOWS\SysWOW64\vmnat.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Acer\Acer Quick Access\QASvc.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Acer\AOP Framework\acer\\ccd.exe" "C:\Users\Jiri\AppData\Local\AOP SDK\acer infra\acer\SyncAgent" S-1-5-21-2797642738-601741613-3505758773-1001 168 472 "C:\ProgramData\acer\CCD"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe" "--AUTO_START" "--start" "--address" "127.0.0.1" "--port" "49330" "--depend_on_key" "SYSTEM\CurrentControlSet\Services\ESRV_SVC_WILLAMETTE" "--depend_on_value" "run" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=w output_folder='C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll','process_input_options.txt' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll','service=yes' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll','pause=60000 working_dir=C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData override_existing_tracing=no limit_output_by_filesize_mb=10' os='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\os_counters.txt' "
"C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe"
"C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe" -r
"C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe"
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe"
"C:\Program Files\Acer\Acer Quick Access\QAEvent.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Launch Manager\LMTray.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe" -hidden
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe" -hidden
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Dolby Digital Plus\ddp.exe" -autostart
"C:\Program Files\Acer\Acer Quick Access\QAMsg.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" XGpuTrayIcon"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --disable-gpu-compositing --no-sandbox --primordial-pipe-token=916D65F29AF1D02DD3D2E8014F0AF609 --lang=en-US --lang=en-US --log-file="C:\Users\Jiri\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\debug.log" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --service-request-channel-token=916D65F29AF1D02DD3D2E8014F0AF609 --renderer-client-id=2 --mojo-platform-channel-handle=1568 /prefetch:1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Users\Jiri\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Users\Jiri\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:crashpad-handler --no-upload-gzip --no-rate-limit --database=C:\Users\Jiri\AppData\Local\Dropbox\Crashpad --metrics-dir=0 --url=https://d.dropbox.com/report_crashpad_minidump --https-pin=0x23,0xf2,0xed,0xff,0x3e,0xde,0x90,0x25,0x9a,0x9e,0x30,0xf4,0xa,0xf8,0xf9,0x12,0xa5,0xe5,0xb3,0x69,0x4e,0x69,0x38,0x44,0x3,0x41,0xf6,0x6,0xe,0x1,0x4f,0xfa --https-pin=0xaf,0xf9,0x88,0x90,0x6d,0xde,0x12,0x95,0x5d,0x9b,0xeb,0xbf,0x92,0x8f,0xdc,0xc3,0x1c,0xce,0x32,0x8d,0x5b,0x93,0x84,0xf2,0x1c,0x89,0x41,0xca,0x26,0xe2,0x3,0x91 --https-pin=0x5a,0x88,0x96,0x47,0x22,0xe,0x54,0xd6,0xbd,0x8a,0x16,0x81,0x72,0x24,0x52,0xb,0xb5,0xc7,0x8e,0x58,0x98,0x4b,0xd5,0x70,0x50,0x63,0x88,0xb9,0xde,0xf,0x7,0x5f --https-pin=0xfe,0xa2,0xb7,0xd6,0x45,0xfb,0xa7,0x3d,0x75,0x3c,0x1e,0xc9,0xa7,0x87,0xc,0x40,0xe1,0xf7,0xb0,0xc5,0x61,0xe9,0x27,0xb9,0x85,0xbf,0x71,0x18,0x66,0xe3,0x6f,0x22 --https-pin=0x76,0xee,0x85,0x90,0x37,0x4c,0x71,0x54,0x37,0xbb,0xca,0x6b,0xba,0x60,0x28,0xea,0xdd,0xe2,0xdc,0x6d,0xbb,0xb8,0xc3,0xf6,0x10,0xe8,0x51,0xf1,0x1d,0x1a,0xb7,0xf5 --https-pin=0x6d,0xbf,0xae,0x0,0xd3,0x7b,0x9c,0xd7,0x3f,0x8f,0xb4,0x7d,0xe6,0x59,0x17,0xaf,0x0,0xe0,0xdd,0xdf,0x42,0xdb,0xce,0xac,0x20,0xc1,0x7c,0x2,0x75,0xee,0x20,0x95 --https-pin=0x1e,0xa3,0xc5,0xe4,0x3e,0xd6,0x6c,0x2d,0xa2,0x98,0x3a,0x42,0xa4,0xa7,0x9b,0x1e,0x90,0x67,0x86,0xce,0x9f,0x1b,0x58,0x62,0x14,0x19,0xa0,0x4,0x63,0xa8,0x7d,0x38 --https-pin=0x87,0xaf,0x34,0xd6,0x6f,0xb3,0xf2,0xfd,0xf3,0x6e,0x9,0x11,0x1e,0x9a,0xba,0x2f,0x6f,0x44,0xb2,0x7,0xf3,0x86,0x3f,0x3d,0xb,0x54,0xb2,0x50,0x23,0x90,0x9a,0xa5 --https-pin=0xbc,0xfb,0x44,0xaa,0xb9,0xad,0x2,0x10,0x15,0x70,0x6b,0x41,0x21,0xea,0x76,0x1c,0x81,0xc9,0xe8,0x89,0x67,0x59,0xf,0x6f,0x94,0xae,0x74,0x4d,0xc8,0x8b,0x78,0xfb --https-pin=0xab,0x98,0x49,0x52,0x76,0xad,0xf1,0xec,0xaf,0xf2,0x8f,0x35,0xc5,0x30,0x48,0x78,0x1e,0x5c,0x17,0x18,0xda,0xb9,0xc8,0xe6,0x7a,0x50,0x4f,0x4f,0x6a,0x51,0x32,0x8f --https-pin=0x49,0x5,0x46,0x66,0x23,0xab,0x41,0x78,0xbe,0x92,0xac,0x5c,0xbd,0x65,0x84,0xf7,0xa1,0xe1,0x7f,0x27,0x65,0x2d,0x5a,0x85,0xaf,0x89,0x50,0x4e,0xa2,0x39,0xaa,0xaa --https-pin=0x56,0x32,0xd9,0x7b,0xfa,0x77,0x5b,0xf3,0xc9,0x9d,0xde,0xa5,0x2f,0xc2,0x55,0x34,0x10,0x86,0x40,0x16,0x72,0x9c,0x52,0xdd,0x65,0x24,0xc8,0xa9,0xc3,0xb4,0x48,0x9f --https-pin=0x2a,0x8f,0x2d,0x8a,0xf0,0xeb,0x12,0x38,0x98,0xf7,0x4c,0x86,0x6a,0xc3,0xfa,0x66,0x90,0x54,0xe2,0x3c,0x17,0xbc,0x7a,0x95,0xbd,0x2,0x34,0x19,0x2d,0xc6,0x35,0xd0 --https-pin=0x32,0xb6,0x4b,0x66,0x72,0x7a,0x20,0x63,0xe4,0x6,0x6f,0x3b,0x95,0x8c,0xb0,0xaa,0xee,0x57,0x6a,0x5e,0xce,0xfd,0x95,0x33,0x99,0xbb,0x88,0x74,0x73,0x1d,0x95,0x87 --https-pin=0xf5,0x3c,0x22,0x5,0x98,0x17,0xdd,0x96,0xf4,0x0,0x65,0x16,0x39,0xd2,0xf8,0x57,0xe2,0x10,0x70,0xa5,0x9a,0xbe,0xd9,0x7,0x94,0x0,0xd9,0xf6,0x95,0x50,0x69,0x0 --https-pin=0x67,0xdc,0x4f,0x32,0xfa,0x10,0xe7,0xd0,0x1a,0x79,0xa0,0x73,0xaa,0xc,0x9e,0x2,0x12,0xec,0x2f,0xfc,0x3d,0x77,0x9e,0xa,0xa7,0xf9,0xc0,0xf0,0xe1,0xc2,0xc8,0x93 --https-pin=0x19,0x6,0xc6,0x12,0x4d,0xbb,0x43,0x85,0x78,0xd0,0xe,0x6,0x6d,0x50,0x54,0xc6,0xc3,0x7f,0xf,0xa6,0x2,0x8c,0x5,0x54,0x5e,0x9,0x94,0xed,0xda,0xec,0x86,0x29 --https-pin=0x1d,0x75,0xd0,0x83,0x1b,0x9e,0x8,0x85,0x39,0x4d,0x32,0xc7,0xa1,0xbf,0xdb,0x3d,0xbc,0x1c,0x28,0xe2,0xb0,0xe8,0x39,0x1f,0xb1,0x35,0x98,0x1d,0xbc,0x5b,0xa9,0x36 --annotation=buildno=Dropbox-win-27.4.22 --annotation=client_session_id=f5a1decb-aa01-47b4-90a1-594c469e2456 --annotation=host_int_account1_boot=3860451740 --annotation=machine_id=1dee6032-7c3e-41c8-b645-2535f19583ab --annotation=platform=win --annotation=platform_version=10 --initial-client-data=0x1e0,0x1e4,0x1e8,0x1dc,0x1ec,0x77b8f83c,0x77b8f84c,0x77b8f85c
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:exit-monitor -session-token:f5a1decb-aa01-47b4-90a1-594c469e2456 -target-handle:468 -target-shutdown-event:472 "-target-command-line:\"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe\" /systemstartup" -method:collectupload -handler-pipe:\\.\pipe\crashpad_9764_NEOUXUGEAVKEMZDC
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"fontdrvhost.exe"
"C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe"
C:\Windows\System32\InstallAgent.exe -Embedding
C:\Windows\System32\InstallAgentUserBroker.exe -Embedding
"C:\Program Files (x86)\Acer\Care Center\ACCStd.exe"
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
"C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe" -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="7800.0.2143640614\1336935782" "C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 7800 "\\.\pipe\gecko-crash-server-pipe.7800" plugin
"C:\WINDOWS\System32\Macromed\Flash\FlashPlayerPlugin_25_0_0_171.exe" --proxy-stub-channel=Flash8884.122A8758.23611 --host-broker-channel=Flash8884.122A8758.2091 --host-pid=8884 --host-npapi-version=29 --plugin-path="C:\WINDOWS\System32\Macromed\Flash\NPSWF32_25_0_0_171.dll"
"C:\WINDOWS\System32\Macromed\Flash\FlashPlayerPlugin_25_0_0_171.exe" --channel=8156.006FF350.1630222278 --proxy-stub-channel=Flash8884.122A8758.23611 --plugin-path="C:\WINDOWS\System32\Macromed\Flash\NPSWF32_25_0_0_171.dll" --host-npapi-version=29 --type=renderer

C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x370
"D:\Jirik\Stazeno\RSITx64(1).exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Uninstaller_SkipUac_Jiri.job - C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer

=========Mozilla firefox=========

ProfilePath - C:\Users\Jiri\AppData\Roaming\Mozilla\Firefox\Profiles\52wn6h5e.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"
prefs.js - "keyword.URL" - ""

"light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.171 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.131.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.131.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.171 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-03-28 2478880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-06 1253736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-27 210120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-27 3078960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-06 1028968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-20 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-20 186944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{093F479D-712E-46CD-9E06-62E734A05F68} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2016-12-06 1253736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{093F479D-712E-46CD-9E06-62E734A05F68} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-06 1028968]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-05-03 1893496]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-07-17 16152792]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-07-14 1394392]
"Malwarebytes TrayApp"=C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2017-01-20 2780112]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-05-19 9773272]
"WSHelperSetup.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2014-10-31 2072928]
"OneDrive"=C:\Users\Jiri\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-04-12 1518808]
"Spotify Web Helper"=C:\Users\Jiri\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-04-25 1446000]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2017-05-04 27716568]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BacKGround Agent"=C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-03-18 66304]
"KeePass 2 PreLoad"=C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2015-04-10 2715536]
"Wondershare Helper Compact.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2014-10-31 2072928]
"WSHelperSetup.exe"=C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2014-10-31 2072928]
"NPSStartup"= []
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2017-05-30 29246632]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2017-04-13 596640]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15 587288]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HandyAndy.lnk - C:\Program Files\Andy\HandyAndy.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="prio.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-05-30 16:42:35 ----A---- C:\WINDOWS\system32\drivers\klupd_klif_kimul.sys
2017-05-30 12:22:14 ----A---- C:\WINDOWS\system32\DbxSvc.exe
2017-05-27 10:31:00 ----SHD---- C:\Config.Msi
2017-05-25 20:37:44 ----D---- C:\Program Files (x86)\VulkanRT
2017-05-25 20:37:44 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2017-05-25 20:37:44 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2017-05-25 20:37:44 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2017-05-25 20:37:44 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2017-05-25 20:37:30 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-05-25 20:37:30 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2017-05-25 20:37:30 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-05-25 20:37:30 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-05-25 20:37:30 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-05-25 20:37:30 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-25 20:37:30 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-05-25 20:37:14 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvdispgenco6438233.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvdispco6438233.dll
2017-05-25 20:33:58 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-05-25 20:33:57 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2017-05-25 20:33:57 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2017-05-25 20:33:57 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2017-05-25 20:33:57 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-05-25 20:33:57 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-05-25 20:33:57 ----A---- C:\WINDOWS\system32\nvapi64.dll
2017-05-25 20:28:56 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-05-25 20:28:56 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-24 17:08:40 ----A---- C:\WINDOWS\system32\drivers\klupd_klif_mark.sys
2017-05-24 17:08:40 ----A---- C:\WINDOWS\system32\drivers\klupd_klif_arkmon.sys
2017-05-14 12:28:54 ----D---- C:\Users\Jiri\AppData\Roaming\VMware
2017-05-14 12:27:21 ----A---- C:\WINDOWS\SYSWOW64\vsocklib.dll
2017-05-14 12:27:21 ----A---- C:\WINDOWS\system32\vsocklib.dll
2017-05-14 12:27:21 ----A---- C:\WINDOWS\system32\drivers\vsock.sys
2017-05-14 12:27:18 ----A---- C:\WINDOWS\system32\drivers\vmx86.sys
2017-05-14 12:27:18 ----A---- C:\WINDOWS\system32\drivers\vmkbd.sys
2017-05-14 12:27:03 ----A---- C:\WINDOWS\SYSWOW64\vmnetdhcp.exe
2017-05-14 12:26:58 ----A---- C:\WINDOWS\SYSWOW64\vmnat.exe
2017-05-14 12:26:58 ----A---- C:\WINDOWS\system32\vnetinst.dll
2017-05-14 12:26:58 ----A---- C:\WINDOWS\system32\drivers\vmnetuserif.sys
2017-05-14 12:26:56 ----A---- C:\WINDOWS\system32\vnetlib64.dll
2017-05-14 12:26:49 ----A---- C:\WINDOWS\system32\drivers\hcmon.sys
2017-05-14 12:26:39 ----D---- C:\Program Files\Common Files\VMware
2017-05-14 12:26:39 ----D---- C:\Program Files (x86)\VMware
2017-05-14 12:26:39 ----AD---- C:\ProgramData\VMware
2017-05-14 12:22:16 ----AD---- C:\Program Files\Andy
2017-05-14 12:06:48 ----AD---- C:\Program Files\Bonjour
2017-05-14 12:06:48 ----AD---- C:\Program Files (x86)\Bonjour
2017-05-14 12:03:17 ----D---- C:\Users\Jiri\AppData\Roaming\Andy
2017-05-11 16:39:58 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-05-11 16:39:58 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-05-11 16:39:58 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-05-11 16:39:58 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-05-11 16:39:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-11 16:39:57 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-05-11 16:39:57 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-05-11 16:39:56 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-05-11 16:39:56 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-05-11 16:39:56 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-05-11 16:39:56 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-05-11 16:39:56 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-05-11 16:39:56 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-05-11 16:39:55 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-05-11 16:39:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-05-11 16:39:54 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-05-11 16:39:54 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-05-11 16:39:54 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-05-11 16:39:53 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-05-11 16:39:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-05-11 16:39:53 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-05-11 16:39:52 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-05-11 16:39:51 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-05-11 16:39:50 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-05-11 16:39:49 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-05-11 16:39:48 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-05-11 16:39:48 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-05-11 16:39:48 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-05-11 16:39:47 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-05-11 16:39:47 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-05-11 16:39:47 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-05-11 16:39:47 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-05-11 16:39:47 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-05-11 16:39:47 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-05-11 16:39:47 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-05-11 16:39:47 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-05-11 16:39:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-05-11 16:39:46 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-05-11 16:39:46 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-05-11 16:39:46 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-05-11 16:39:45 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-05-11 16:39:45 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-05-11 16:39:45 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2017-05-11 16:39:45 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2017-05-11 16:39:45 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-05-11 16:39:45 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-05-11 16:39:44 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-05-11 16:39:44 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Enumeration.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\SYSWOW64\adsnt.dll
2017-05-11 16:39:43 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-11 16:39:43 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2017-05-11 16:39:43 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\virtdisk.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-05-11 16:39:42 ----A---- C:\WINDOWS\SYSWOW64\BthTelemetry.dll
2017-05-11 16:39:41 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-05-11 16:39:41 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-05-11 16:39:40 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-05-11 16:39:40 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-11 16:39:40 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-11 16:39:40 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-05-11 16:39:40 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-11 16:39:40 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-11 16:39:40 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-05-11 16:39:40 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-11 16:39:39 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-05-11 16:39:38 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-05-11 16:39:38 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-11 16:39:38 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-05-11 16:39:35 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-11 16:39:34 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-11 16:39:33 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-11 16:39:32 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-05-11 16:39:32 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-05-11 16:39:32 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-11 16:39:32 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2017-05-11 16:39:32 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-11 16:39:32 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-11 16:39:32 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-11 16:39:32 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-05-11 16:39:31 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-11 16:39:31 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-11 16:39:31 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-11 16:39:31 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-11 16:39:30 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-05-11 16:39:30 ----A---- C:\WINDOWS\system32\localspl.dll
2017-05-11 16:39:30 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-05-11 16:39:30 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-11 16:39:29 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-11 16:39:29 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-11 16:39:29 ----A---- C:\WINDOWS\system32\shell32.dll
2017-05-11 16:39:29 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-11 16:39:28 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-11 16:39:28 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-11 16:39:28 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-11 16:39:27 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-05-11 16:39:27 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-11 16:39:27 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-11 16:39:27 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-11 16:39:27 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-11 16:39:27 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-11 16:39:26 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-11 16:39:26 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-11 16:39:26 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-11 16:39:26 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-11 16:39:25 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-11 16:39:25 ----A---- C:\WINDOWS\system32\services.exe
2017-05-11 16:39:25 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-05-11 16:39:25 ----A---- C:\WINDOWS\system32\mf.dll
2017-05-11 16:39:24 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-05-11 16:39:24 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-11 16:39:24 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-11 16:39:24 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-11 16:39:24 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\mfps.dll
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-11 16:39:23 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-11 16:39:22 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-11 16:39:22 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-11 16:39:21 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\wksprt.exe
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\rdpclip.exe
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\fvecpl.dll
2017-05-11 16:39:19 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-11 16:39:18 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-05-11 16:39:18 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-05-11 16:39:17 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-05-11 16:39:17 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-11 16:39:17 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-11 16:39:17 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-11 16:39:16 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-05-11 16:39:16 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-05-11 16:39:16 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-05-11 16:39:16 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-05-11 16:39:15 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-11 16:39:15 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-05-11 16:39:15 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-11 16:39:14 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-11 16:39:14 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-05-11 16:39:14 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-11 16:39:14 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-05-11 16:39:14 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-05-11 16:39:14 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-11 16:39:14 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-05-11 16:39:14 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-05-11 16:39:13 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-11 16:39:13 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-05-11 16:39:13 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-11 16:39:13 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-11 16:39:12 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-11 16:39:12 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-11 16:39:12 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-11 16:39:12 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-11 16:39:12 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-11 16:39:12 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-11 16:39:12 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-05-11 16:39:12 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-05-11 16:39:11 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-11 16:39:11 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-11 16:39:11 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-11 16:39:11 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-11 16:39:11 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-11 16:39:11 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-11 16:39:11 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-11 16:39:10 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-11 16:39:10 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-11 16:39:10 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-11 16:39:10 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-05-11 16:39:09 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-11 16:39:08 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-11 16:39:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-11 16:39:07 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-11 16:39:07 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-11 16:39:07 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-05-11 16:39:06 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-05-11 16:39:06 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-05-11 16:39:06 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-11 16:39:06 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-05-11 16:39:06 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-11 16:39:05 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-11 16:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-11 16:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-11 16:39:05 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-11 16:39:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-05-11 16:39:05 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-11 16:39:04 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-05-11 16:39:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-05-11 16:39:04 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-11 16:39:04 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-11 16:39:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-11 16:39:03 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-11 16:39:03 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-11 16:39:03 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-05-11 16:39:03 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-11 16:39:03 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-11 16:39:02 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-11 16:39:02 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-11 16:39:02 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-05-11 16:39:02 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-11 16:39:02 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-11 16:39:02 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-11 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\catsrvps.dll
2017-05-11 16:39:01 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-11 16:39:00 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-05-11 16:39:00 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-11 16:39:00 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-11 16:38:59 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-11 16:38:59 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-11 16:38:59 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-11 16:38:59 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-11 16:38:59 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-05-11 16:38:58 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-05-11 16:38:58 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-11 16:38:58 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-05-11 16:38:58 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-11 16:38:58 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-11 16:38:58 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-11 16:38:58 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-11 16:38:57 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-05-11 16:38:57 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-05-11 16:38:57 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-11 16:38:57 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-11 16:38:57 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-11 16:38:57 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-11 16:38:57 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-05-11 16:38:55 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-05-11 16:38:54 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-11 16:38:54 ----A---- C:\WINDOWS\explorer.exe
2017-05-11 16:38:53 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-11 16:38:53 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-11 16:38:53 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-11 16:38:53 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2017-05-11 16:38:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-05-11 16:38:53 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-11 16:38:52 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\SettingsHandlers_ClosedCaptioning.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\resutils.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-11 16:38:51 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\wimserv.exe
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\wimgapi.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\spwizeng.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\input.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\cryptui.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-11 16:38:50 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\vds.exe
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-11 16:38:49 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-09 17:12:46 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2017-05-09 17:12:46 ----A---- C:\WINDOWS\system32\drivers\ssudbus.sys
2017-05-09 17:11:28 ----A---- C:\WINDOWS\SYSWOW64\secman.dll

======List of files/folders modified in the last 1 month======

2017-06-04 11:40:05 ----D---- C:\WINDOWS\Prefetch
2017-06-04 11:40:04 ----D---- C:\Program Files\trend micro
2017-06-04 11:40:01 ----D---- C:\WINDOWS\Temp
2017-06-04 11:39:46 ----D---- C:\Users\Jiri\AppData\Roaming\Skype
2017-06-04 11:35:12 ----D---- C:\WINDOWS\system32\SleepStudy
2017-06-04 11:33:00 ----D---- C:\WINDOWS\system32\sru
2017-06-04 10:42:04 ----AD---- C:\Program Files (x86)\Overwatch
2017-06-04 09:49:00 ----D---- C:\ProgramData\Kaspersky Lab
2017-06-04 09:47:53 ----AD---- C:\Program Files (x86)\Blizzard App
2017-06-04 09:32:48 ----D---- C:\WINDOWS\AppReadiness
2017-06-04 09:30:04 ----D---- C:\ProgramData\NVIDIA
2017-06-04 09:29:43 ----D---- C:\WINDOWS\System32
2017-06-04 09:29:43 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-03 22:48:20 ----D---- C:\WINDOWS\system32\config
2017-06-03 22:47:49 ----RD---- C:\WINDOWS\Microsoft.NET
2017-06-03 22:47:28 ----D---- C:\WINDOWS\debug
2017-06-03 22:25:27 ----D---- C:\WINDOWS\system32\Tasks
2017-06-03 22:25:27 ----D---- C:\Program Files\Common Files\AV
2017-06-03 22:15:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-03 22:14:27 ----D---- C:\WINDOWS
2017-06-03 22:09:36 ----D---- C:\WINDOWS\system32\drivers
2017-06-03 22:09:24 ----SHD---- C:\System Volume Information
2017-06-03 22:09:24 ----AD---- C:\Program Files (x86)\Hi-Rez Studios
2017-06-03 22:06:59 ----D---- C:\WINDOWS\INF
2017-06-03 22:06:45 ----HD---- C:\Program Files\WindowsApps
2017-06-03 22:00:38 ----D---- C:\WINDOWS\system32\catroot2
2017-06-03 07:06:17 ----SHDC---- C:\WINDOWS\Installer
2017-06-03 07:06:17 ----D---- C:\ProgramData\Skype
2017-06-03 07:06:14 ----RD---- C:\Program Files (x86)\Skype
2017-06-03 07:06:14 ----D---- C:\Program Files (x86)\Common Files
2017-06-02 14:35:51 ----D---- C:\Users\Jiri\AppData\Roaming\uTorrent
2017-06-01 17:12:34 ----D---- C:\WINDOWS\WinSxS
2017-06-01 16:39:34 ----D---- C:\Program Files (x86)\Dropbox
2017-05-31 22:06:52 ----D---- C:\WINDOWS\CbsTemp
2017-05-31 22:06:51 ----D---- C:\WINDOWS\system32\appraiser
2017-05-30 16:25:56 ----D---- C:\ProgramData\ProductData
2017-05-27 10:31:06 ----D---- C:\WINDOWS\SysWOW64
2017-05-27 10:31:06 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-05-27 10:29:50 ----AD---- C:\Program Files (x86)\Microsoft Office
2017-05-25 20:38:43 ----D---- C:\WINDOWS\system32\CatRoot
2017-05-25 20:37:49 ----D---- C:\WINDOWS\system32\DriverStore
2017-05-25 20:37:47 ----D---- C:\Program Files\NVIDIA Corporation
2017-05-25 20:37:44 ----RD---- C:\Program Files (x86)
2017-05-25 20:37:14 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-05-25 20:36:49 ----D---- C:\ProgramData\NVIDIA Corporation
2017-05-25 20:28:53 ----D---- C:\WINDOWS\SoftwareDistribution
2017-05-23 20:12:10 ----AD---- C:\Program Files\CCleaner
2017-05-23 18:10:02 ----D---- C:\WINDOWS\system32\MRT
2017-05-23 18:04:02 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-22 18:36:42 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-05-19 20:15:06 ----D---- C:\Users\Jiri\AppData\Roaming\Battle.net
2017-05-18 19:54:18 ----D---- C:\Program Files (x86)\Steam
2017-05-18 19:41:24 ----D---- C:\Users\Jiri\AppData\Roaming\KeePass
2017-05-18 09:35:05 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-14 12:47:50 ----RD---- C:\Program Files
2017-05-14 12:47:49 ----D---- C:\Users\Jiri\AppData\Roaming\Process Hacker 2
2017-05-14 12:27:21 ----DC---- C:\WINDOWS\system32\DRVSTORE
2017-05-14 12:26:43 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2017-05-14 12:26:39 ----HD---- C:\ProgramData
2017-05-14 12:26:39 ----D---- C:\Program Files\Common Files
2017-05-14 12:20:15 ----D---- C:\GOG Games
2017-05-14 12:03:17 ----RD---- C:\Users
2017-05-12 20:39:02 ----D---- C:\WINDOWS\rescache
2017-05-12 18:16:17 ----RD---- C:\WINDOWS\assembly
2017-05-11 23:17:51 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-05-11 23:17:51 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-05-11 23:17:51 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-05-11 23:17:51 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-05-11 23:17:51 ----D---- C:\WINDOWS\SYSWOW64\Dism
2017-05-11 23:17:51 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-05-11 23:17:46 ----D---- C:\WINDOWS\system32\wbem
2017-05-11 23:17:46 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-05-11 23:17:45 ----SD---- C:\WINDOWS\system32\F12
2017-05-11 23:17:45 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-05-11 23:17:45 ----D---- C:\WINDOWS\system32\oobe
2017-05-11 23:17:45 ----D---- C:\WINDOWS\system32\en-US
2017-05-11 23:17:45 ----D---- C:\WINDOWS\system32\cs-CZ
2017-05-11 23:17:40 ----D---- C:\WINDOWS\ShellExperiences
2017-05-11 23:17:40 ----D---- C:\WINDOWS\Provisioning
2017-05-11 23:17:40 ----D---- C:\WINDOWS\PolicyDefinitions
2017-05-11 23:17:39 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-05-11 23:17:39 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-05-11 23:17:38 ----RD---- C:\Program Files\Windows Defender
2017-05-11 23:17:38 ----D---- C:\Program Files\Windows Photo Viewer
2017-05-11 23:17:38 ----D---- C:\Program Files (x86)\Windows Defender
2017-05-11 21:06:28 ----D---- C:\ProgramData\Microsoft Help
2017-05-11 16:32:29 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2017-05-10 22:20:37 ----D---- C:\Users\Jiri\AppData\Roaming\Spotify
2017-05-09 21:07:02 ----D---- C:\WINDOWS\system32\Macromed
2017-05-09 21:07:01 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-05-09 17:15:00 ----D---- C:\ProgramData\Samsung
2017-05-09 17:13:52 ----D---- C:\Users\Jiri\AppData\Roaming\Samsung
2017-05-09 17:12:46 ----D---- C:\Program Files (x86)\Samsung
2017-05-09 17:11:26 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-05-07 19:39:51 ----D---- C:\ProgramData\ManiaPlanet
Nahoru
jiri321
Návštěvník
Návštěvník
Příspěvky: 22
Registrován: 15 zář 2014 21:36

Re: Prosim o kontrolu

#2 Příspěvek od jiri321 »

a dalsi cast logu:

====List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit); C:\WINDOWS\system32\DRIVERS\cm_km.sys [2016-06-10 238936]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2016-06-02 554416]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [2016-06-08 63920]
R0 klupd_klif_arkmon;klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [2017-05-24 229288]
R0 klupd_klif_klbg;klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [2017-04-18 112912]
R1 ESProtectionDriver;Malwarebytes Anti-Exploit; \??\C:\WINDOWS\system32\drivers\mbae64.sys [2017-04-14 77440]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-09-28 26528]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\WINDOWS\system32\DRIVERS\klbackupflt.sys [2016-06-15 86352]
R1 klhk;@oem110.inf,%klhkDisplayName%;Kaspersky Lab service driver; C:\WINDOWS\System32\drivers\klhk.sys [2016-06-20 421200]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2017-04-10 1018592]
R1 KLIM6;@oem3.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2016-12-06 57424]
R1 klpd;Kaspersky Lab format recognizer driver; C:\WINDOWS\system32\DRIVERS\klpd.sys [2016-06-01 45488]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2016-06-18 85320]
R1 Klwtp;KLwtp - WFP callout traffic inspector; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2017-03-13 136416]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2017-03-13 199392]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 hcmon;VMware hcmon; C:\WINDOWS\system32\DRIVERS\hcmon.sys [2016-09-06 83008]
R2 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2016-06-01 78216]
R2 MBAMChameleon;MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [2017-06-03 186304]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 rzpmgrk;rzpmgrk; \??\C:\WINDOWS\system32\drivers\rzpmgrk.sys [2016-09-17 44144]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2016-09-07 137840]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-08-20 84992]
R3 ibtusb;@oem169.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-01-13 253696]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-12-19 7969760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-07-21 4589784]
R3 iwdbus;@oem33.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-05-07 27032]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2017-04-10 197336]
R3 klids;klids; \??\C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [2017-06-03 168736]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2016-05-19 52136]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2015-06-07 41656]
R3 kltap;@oem121.inf,%DeviceDescription%;Kaspersky Security Data Escort Adapter; C:\WINDOWS\System32\drivers\kltap.sys [2016-06-07 52152]
R3 klupd_klif_kimul;klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [2017-05-30 87584]
R3 klupd_klif_klark;klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [2017-04-18 251664]
R3 klupd_klif_mark;klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [2017-05-24 173144]
R3 LMDriver;@oem41.inf,%LMDriver.SVCDESC%;Launch Manager Wireless Driver; C:\WINDOWS\System32\drivers\LMDriver.sys [2013-07-18 21360]
R3 MBAMFarflt;MBAMFarflt; \??\C:\WINDOWS\system32\drivers\farflt.sys [2017-06-03 111544]
R3 MBAMProtection;MBAMProtection; \??\C:\WINDOWS\system32\drivers\mbam.sys [2017-06-03 43968]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2017-06-03 251832]
R3 MBAMWebProtection;MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys [2017-06-04 92096]
R3 MEIx64;@oem20.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2015-06-29 184096]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2016-07-16 3485696]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_63178a18623e9325\nvlddmkm.sys [2017-05-19 14458264]
R3 nvvad_WaveExtensible;@oem68.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;@oem26.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-05-18 57792]
R3 RadioShim;@oem41.inf,%RadioShim.SVCDESC%;Shim for HID-KMDF Interface layer; C:\WINDOWS\System32\drivers\RadioShim.sys [2013-07-18 14680]
R3 rt640x64;@oem83.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-08-21 895256]
R3 RTSUER;@oem7.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
R3 rzendpt;@oem141.inf,%rzendpt.SvcDesc%;rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [2016-10-30 52240]
R3 rzudd;@oem154.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2016-10-30 204824]
R3 semav6msr64;semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [2015-06-04 21984]
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2016-03-31 28792]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-04-28 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-08-20 114176]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2017-04-28 249856]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2017-04-28 967680]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 dbx;dbx; C:\WINDOWS\system32\DRIVERS\dbx.sys []
S3 dg_ssudbus;@oem15.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2017-01-16 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-05-07 38296]
S3 IntcDAud;@oem161.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2012-10-17 26112]
S3 qcusbser;@oem170.inf,%QCUSBSER%;Qualcomm USB Device for Legacy Serial Communication; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [2017-03-15 254520]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-04-25 83056]
R2 AVP17.0.0;Služba Kaspersky Anti-Virus 17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [2016-06-28 241544]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2015-03-18 2749696]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_13ded28;CDPUserSvc_13ded28; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-05-14 3971264]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DbxSvc;DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [2017-05-30 48944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2015-11-25 414360]
R2 GamesAppIntegrationService;GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [2015-10-12 349728]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2016-12-09 9728]
R2 ibtsiva;@oem169.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-12-19 373720]
R2 IObitUnSvr;IObit Uninstaller Service; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [2017-03-28 360736]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-07-06 223008]
R2 KSDE1.0.0;Služba Kaspersky Secure Connection 1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [2016-06-28 241544]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-07-06 415520]
R2 LMSvc;Launch Manager Service; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [2014-12-30 455912]
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2017-01-20 4355024]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-18 462968]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-06-14 1879488]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-18 449984]
R2 OneSyncSvc_13ded28;Hostitel synchronizace_13ded28; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2016-09-25 189264]
R2 Razer Chroma SDK Server;Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [2017-04-19 401024]
R2 Razer Chroma SDK Service;Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [2017-04-19 178312]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_13ded28;Data kontaktů_13ded28; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 QASvc;Quick Access Service; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [2014-10-17 458984]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-24 143144]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09 271864]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-01-13 1465352]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-12-19 301528]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-08-24 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2017-02-05 400656]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2015-10-01 6952504]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2015-10-12 209952]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12 177376]
S3 klvssbrigde64;klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe [2016-06-28 77328]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_13ded28;Služba zasílání zpráv_13ded28; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-05-14 207040]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-04 1312768]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosim o kontrolu

#3 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Preventivní kontroly logů“