Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
SyncMaster
Návštěvník
Návštěvník
Příspěvky: 471
Registrován: 15 led 2011 14:21

Prosím o kontrolu logu

#1 Příspěvek od SyncMaster »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Richie at 2017-06-11 18:16:13
Microsoft Windows 10 Home
System drive C: has 700 GB (74%) free of 953 GB
Total RAM: 16296 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:16:33, on 11.6.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe
C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
C:\Users\Richie\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Lenovo\System Update\tvsu.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\Program Files\trend micro\Richie.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [PhotoMasterImportAgent] "C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe" importagent
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [f.lux] "C:\Users\Richie\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CCSDK - Lenovo - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem8.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12425 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
"fontdrvhost.exe"
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s hidserv
c:\windows\system32\svchost.exe -k localservice -s EventSystem
c:\windows\system32\svchost.exe -k localservice -s nsi
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
C:\WINDOWS\system32\igfxCUIService.exe
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
c:\windows\system32\svchost.exe -k localservice -s netprofm
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenonetwork
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
C:\WINDOWS\system32\ibtsiva
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
c:\windows\system32\svchost.exe -k netsvcs -s IKEEXT
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
c:\windows\system32\svchost.exe -k apphost -s AppHostSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
"C:\Program Files\Bonjour\mDNSResponder.exe"
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
c:\windows\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc

c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer

c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
dashost.exe {a191d49d-32cd-4aa0-8b54c493cecc3be1}

c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV

c:\windows\system32\svchost.exe -k localservice -s CDPSvc
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SensorService
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s StorSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
"C:\Program Files (x86)\Lenovo\System Update\SUService.exe"
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s RmSvc
c:\windows\system32\svchost.exe -k localservice -s SstpSvc
c:\windows\system32\svchost.exe -k netsvcs -s RasMan
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s upnphost
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s Netman
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DsSvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s QWAVE
C:\WINDOWS\system32\svchost.exe -k netsvcs -s wlidsvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\AUDIODG.EXE 0x5f4
C:\WINDOWS\system32\svchost.exe -k netsvcs -s XblAuthManager

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -s gpsvc
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe100_ Global\UsGthrCtrlFltPipeMssGthrPipe100 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s lmhosts
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
"C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe" scan upload
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe

"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Windows\RTFTrack.exe"
"C:\Program Files\Lenovo\LenovoUtility\utility.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s WdiSystemHost
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe" importagent
"C:\Users\Richie\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Richie\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3071.86 --initial-client-data=0x1dc,0x1e0,0x1e4,0x1d8,0x1e8,0x7ffd926c19c8,0x7ffd926c1a08,0x7ffd926c19e0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5540 --on-initialized-event-handle=640 --parent-handle=644 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1416 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,11,20,24,26,43,63,76 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=20.19.15.4624 --gpu-driver-date=3-8-2017 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x1392 --service-request-channel-token=3DD76CF6C7211CEBD571671CB5E502FC --mojo-platform-channel-handle=1468 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416 --primordial-pipe-token=6AEFF17966A449E48B455E159A46173D --lang=sk --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=6AEFF17966A449E48B455E159A46173D --renderer-client-id=6 --mojo-platform-channel-handle=2876 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416 --primordial-pipe-token=63687E5CA62123E104A0AFF30BA01EBB --lang=sk --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=63687E5CA62123E104A0AFF30BA01EBB --renderer-client-id=4 --mojo-platform-channel-handle=3280 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416 --primordial-pipe-token=2EC15F2899F3A98629C265ED0AD2C8D2 --lang=sk --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=2EC15F2899F3A98629C265ED0AD2C8D2 --renderer-client-id=5 --mojo-platform-channel-handle=3936 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
"C:\WINDOWS\system32\WerFault.exe" -k -lc win32k.sys win32k.sys-20170611-1813.dmp
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1416 --primordial-pipe-token=0223FF8EA0D3005E89FBABEC3072C5C5 --lang=sk --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=0223FF8EA0D3005E89FBABEC3072C5C5 --renderer-client-id=10 --mojo-platform-channel-handle=6072 /prefetch:1
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --disable-gpu-compositing --no-sandbox --primordial-pipe-token=6C42857BA0E8131B2D9208FC0D3B39A0 --lang=en-US --lang=en-US --log-file="C:\Users\Richie\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\debug.log" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --service-request-channel-token=6C42857BA0E8131B2D9208FC0D3B39A0 --renderer-client-id=2 --mojo-platform-channel-handle=1552 /prefetch:1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Lenovo\System Update\tvsu.exe" PendingTask
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 696 700 708 8192 704
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe" --logon
"C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\Richie\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe"
taskhostw.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{133EAC4F-5891-4D04-BADA-D84870380A80}
"C:\Users\Richie\Downloads\RSITx64.exe"
"C:\Program Files (x86)\Lenovo\System Update\ConfigService.exe" start
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-25 210120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-25 3078960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-25 149704]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-24 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-25 2075440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-24 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28 1393880]
"RtsFT"=C:\Windows\RTFTrack.exe [2015-06-16 5060864]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-25 36352]
"LenovoUtility"=C:\Program Files\Lenovo\LenovoUtility\utility.exe [2017-02-11 791848]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01 508128]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-05-03 1893496]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2017-05-09 303928]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-05-15 13877464]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28 1393880]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-04-28 1393880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PhotoMasterImportAgent"=C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [2016-09-22 675608]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2017-04-17 7946656]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-06-08 3042592]
"f.lux"=C:\Users\Richie\AppData\Local\FluxSoftware\Flux\flux.exe [2016-12-06 1024240]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2017-03-27 2404952]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-03-15 587288]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-06-11 18:16:16 ----D---- C:\Program Files\trend micro
2017-06-11 18:16:13 ----D---- C:\rsit
2017-06-09 06:05:31 ----AD---- C:\Program Files\Dolby Digital Plus
2017-06-09 06:04:11 ----D---- C:\Program Files\Realtek
2017-06-09 06:03:23 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2017-06-09 06:03:23 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2017-06-09 06:03:23 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2017-06-09 06:03:22 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2017-06-09 06:03:19 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2017-06-09 06:03:19 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2017-06-09 06:03:19 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2017-06-09 06:03:18 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2017-06-09 06:03:18 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2017-06-09 06:03:17 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2017-06-09 06:03:17 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2017-06-09 06:03:16 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2017-06-09 06:03:15 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2017-06-09 06:03:15 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2017-06-09 06:03:14 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2017-06-09 06:03:14 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2017-06-09 06:03:14 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2017-06-09 06:03:14 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2017-06-09 06:03:14 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2017-06-09 06:03:14 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2017-06-09 06:03:13 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2017-06-09 06:03:12 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2017-06-09 06:03:12 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2017-06-09 06:03:11 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2017-06-09 06:03:11 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2017-06-09 06:03:11 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2017-06-09 06:03:02 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2017-06-09 06:03:02 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2017-06-09 06:03:01 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2017-06-09 06:03:00 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2017-06-09 06:03:00 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2017-06-09 06:03:00 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2017-06-09 06:03:00 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2017-06-09 06:02:56 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2017-06-09 06:02:51 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2017-06-09 06:02:48 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2017-06-09 06:02:48 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2017-06-09 06:02:35 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2017-06-09 06:02:35 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-06-09 06:02:34 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-06-09 06:02:34 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-06-09 06:02:34 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-06-09 06:02:33 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-06-09 06:02:33 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-06-09 06:02:33 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-06-09 06:02:33 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-06-09 06:02:33 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-06-09 06:02:33 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-06-09 06:02:32 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-06-09 06:02:32 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-06-09 06:02:31 ----A---- C:\WINDOWS\system32\DDPP64AF3.dll
2017-06-09 06:02:30 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2017-06-09 06:02:29 ----A---- C:\WINDOWS\system32\DDPO64AF3.dll
2017-06-09 06:02:29 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2017-06-09 06:02:28 ----A---- C:\WINDOWS\system32\DDPD64AF3.dll
2017-06-09 06:02:28 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2017-06-09 06:02:27 ----A---- C:\WINDOWS\system32\DDPA64F3.dll
2017-06-09 06:02:27 ----A---- C:\WINDOWS\system32\DDPA64.dll
2017-06-09 06:02:25 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-06-09 06:02:24 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2017-06-09 06:02:23 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2017-06-09 05:57:26 ----A---- C:\WINDOWS\SetupAfterRebootService.exe
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\xboxgipsynthetic.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Launcher.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\RstrtMgr.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2017-06-07 20:30:23 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\smartscreenps.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\NPSMDesktopProvider.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\DictationManager.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-06-07 20:30:22 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-06-07 20:30:15 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\xboxgipsynthetic.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\XblGameSaveExt.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\winsrvext.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\winmde.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\SecurityHealthSSO.dll
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-06-07 20:30:14 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\wpnprv.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\utcutil.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\usocore.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\umpo.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\twinui.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\sysmain.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\SRH.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\snmptrap.exe
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\shell32.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\RstrtMgr.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\rdbui.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\provengine.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\NPSM.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\msctf.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\MapsStore.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\MapRouter.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\ISM.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\InputService.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\drivers\rootmdm.sys
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\drivers\ksthunk.sys
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\BingMaps.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-06-07 20:30:13 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\WindowManagement.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\securekernel.exe
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\embeddedmodesvc.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\efscore.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\DictationManager.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\comdlg32.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\cldapi.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\bcdboot.exe
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-06-07 20:30:12 ----A---- C:\WINDOWS\explorer.exe
2017-06-07 20:30:12 ----A---- C:\WINDOWS\bfsvc.exe
2017-05-30 17:06:38 ----D---- C:\Users\Richie\AppData\Roaming\Command and Conquer 3 Kanes Wrath
2017-05-24 22:24:25 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-05-24 22:24:25 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-21 20:08:01 ----D---- C:\Program Files\iPod
2017-05-21 20:08:00 ----AD---- C:\Program Files\iTunes
2017-05-16 08:29:45 ----D---- C:\Program Files\EaseUS
2017-05-16 08:24:31 ----HD---- C:\$SysReset
2017-05-15 20:48:48 ----D---- C:\ProgramData\LogMeIn
2017-05-13 16:57:16 ----A---- C:\WINDOWS\SYSWOW64\CmdLineExt.dll
2017-05-13 11:31:48 ----D---- C:\ProgramData\InstallShield
2017-05-13 11:28:13 ----D---- C:\Program Files (x86)\Empire Interactive

======List of files/folders modified in the last 1 month======

2017-06-11 18:16:25 ----D---- C:\WINDOWS\INF
2017-06-11 18:16:21 ----D---- C:\WINDOWS\Prefetch
2017-06-11 18:16:16 ----RD---- C:\Program Files
2017-06-11 18:15:37 ----D---- C:\WINDOWS\system32\catroot2
2017-06-11 18:15:30 ----D---- C:\ProgramData\NVIDIA
2017-06-11 18:15:16 ----D---- C:\WINDOWS\Temp
2017-06-11 18:15:08 ----D---- C:\WINDOWS\System32
2017-06-11 18:13:53 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-11 18:13:09 ----D---- C:\WINDOWS\LiveKernelReports
2017-06-11 18:13:02 ----D---- C:\Users\Richie\AppData\Roaming\uTorrent
2017-06-11 18:11:11 ----D---- C:\Program Files (x86)\Steam
2017-06-11 17:38:00 ----D---- C:\WINDOWS\system32\sru
2017-06-11 16:38:58 ----D---- C:\WINDOWS\system32\SleepStudy
2017-06-11 10:44:09 ----RD---- C:\WINDOWS\Microsoft.NET
2017-06-10 18:12:46 ----D---- C:\Users\Richie\AppData\Roaming\vlc
2017-06-10 08:16:54 ----D---- C:\WINDOWS\AppReadiness
2017-06-09 12:09:15 ----D---- C:\WINDOWS\system32\config
2017-06-09 11:27:20 ----D---- C:\WINDOWS\rescache
2017-06-09 11:20:29 ----SHD---- C:\System Volume Information
2017-06-09 06:36:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-09 06:06:29 ----D---- C:\WINDOWS\system32\CatRoot
2017-06-09 06:06:05 ----D---- C:\WINDOWS\system32\DriverStore
2017-06-09 06:05:44 ----HD---- C:\Program Files (x86)\Temp
2017-06-09 06:05:33 ----SHDC---- C:\WINDOWS\Installer
2017-06-09 06:05:33 ----D---- C:\WINDOWS\system32\Tasks
2017-06-09 06:04:15 ----D---- C:\WINDOWS\SysWOW64
2017-06-09 06:04:11 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2017-06-09 06:04:10 ----D---- C:\WINDOWS\system32\drivers
2017-06-09 05:59:55 ----D---- C:\Windows
2017-06-08 17:55:47 ----RD---- C:\Program Files (x86)
2017-06-08 12:39:27 ----D---- C:\WINDOWS\WinSxS
2017-06-08 12:04:38 ----HD---- C:\Program Files\WindowsApps
2017-06-07 22:17:32 ----RD---- C:\WINDOWS\assembly
2017-06-07 21:06:58 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-06-07 21:06:56 ----SD---- C:\WINDOWS\system32\F12
2017-06-07 21:06:56 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-06-07 21:06:56 ----D---- C:\WINDOWS\system32\oobe
2017-06-07 21:06:56 ----D---- C:\WINDOWS\system32\appraiser
2017-06-07 21:06:54 ----RD---- C:\Program Files\Windows Defender
2017-06-07 21:06:54 ----D---- C:\WINDOWS\ShellExperiences
2017-06-07 21:06:54 ----D---- C:\WINDOWS\AppPatch
2017-06-07 21:06:54 ----D---- C:\Program Files\Windows Photo Viewer
2017-06-07 21:06:54 ----D---- C:\Program Files\Internet Explorer
2017-06-07 21:06:54 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-06-07 21:06:54 ----D---- C:\Program Files (x86)\Internet Explorer
2017-06-07 20:35:17 ----D---- C:\WINDOWS\Logs
2017-06-07 20:20:35 ----D---- C:\WINDOWS\CbsTemp
2017-06-06 20:31:57 ----D---- C:\Users\Richie\AppData\Roaming\.minecraft
2017-05-31 18:49:06 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2017-05-26 16:48:35 ----D---- C:\WINDOWS\Minidump
2017-05-26 16:48:35 ----D---- C:\WINDOWS\debug
2017-05-26 16:47:34 ----AD---- C:\Program Files\SUPERAntiSpyware
2017-05-25 15:06:08 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-05-25 06:21:48 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-05-25 06:21:19 ----D---- C:\Program Files (x86)\Common Files
2017-05-25 06:20:37 ----AD---- C:\Program Files (x86)\Microsoft Office
2017-05-24 22:25:00 ----D---- C:\ProgramData\NVIDIA Corporation
2017-05-24 22:24:39 ----D---- C:\Program Files\NVIDIA Corporation
2017-05-24 22:24:39 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-05-23 16:35:49 ----D---- C:\WINDOWS\system32\MRT
2017-05-23 16:34:36 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-05-20 18:27:43 ----DC---- C:\WINDOWS\Panther
2017-05-17 06:04:58 ----D---- C:\ProgramData\Lenovo
2017-05-17 06:03:48 ----D---- C:\Program Files (x86)\Lenovo
2017-05-16 15:21:28 ----D---- C:\WINDOWS\system32\LogFiles
2017-05-16 14:09:47 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-05-15 20:48:48 ----HD---- C:\ProgramData
2017-05-13 17:22:35 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-05-13 11:28:29 ----SD---- C:\WINDOWS\Downloaded Program Files
2017-05-13 11:27:47 ----SD---- C:\ProgramData\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-07-24 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-03-18 54272]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-03-18 8192]
R1 MpKsl5f21e189;MpKsl5f21e189; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A0D70930-2A61-4843-ACA4-2758095E632D}\MpKsl5f21e189.sys [2017-06-10 44928]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-03-18 50688]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2017-03-18 79872]
R3 ACPIVPC;@oem24.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2016-10-18 45048]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\system32\DRIVERS\BTHUSB.sys [2017-03-18 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
R3 ETD;@oem27.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-09-14 468568]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2015-09-14 30808]
R3 ibtusb;@oem8.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-01-13 231168]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2017-04-23 7970296]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-05-19 4466392]
R3 MEIx64;@oem2.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-04-14 202848]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2017-03-18 3485696]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_020c5444f1367c00\nvlddmkm.sys [2017-05-02 14456944]
R3 nvvad_WaveExtensible;@oem17.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-05-03 48248]
R3 nvvhci;@oem10.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-05-03 57976]
R3 rt640x64;@oem22.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-22 886528]
R3 RTSPER;@oem47.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2015-06-15 761600]
R3 rtsuvc;@oem25.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-06-16 3068160]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-03-18 123808]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-03-18 103328]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-03-18 58784]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-03-18 61848]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2017-03-18 36760]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\system32\DRIVERS\BTHport.sys [2017-04-30 980992]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-03-18 39424]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-03-18 122880]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-03-18 21504]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2013-07-03 46136]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-03-18 51104]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-03-18 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-03-18 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-03-18 165376]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-03-18 526240]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 IntcDAud;@oem19.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2016-05-12 481768]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-03-18 842656]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-03-18 108960]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-05-03 30328]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-03-18 936864]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-03-20 40352]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2017-01-31 173472]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-04-25 83056]
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2017-03-14 771672]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2017-05-18 2246256]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2017-04-03 83768]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 CDPUserSvc_2bd016d;Connected Devices Platform User Service_2bd016d; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-05-14 3971264]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-09-14 134888]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-22 18856]
R2 ibtsiva;@oem8.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2017-04-23 373752]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-05-01 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-05-03 450168]
R2 OneSyncSvc_2bd016d;Sync Host_2bd016d; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-05-20 335808]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2017-05-09 23416]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2017-02-27 688992]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-10 153752]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2017-04-23 301560]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevicesFlowUserSvc_2bd016d;DevicesFlow_2bd016d; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-03-18 86528]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-10 153752]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2017-05-09 689464]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService_2bd016d;MessagingService_2bd016d; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03 495224]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-05-14 207040]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 PimIndexMaintenanceSvc_2bd016d;Kontaktné údaje_2bd016d; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-18 1284608]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 891904]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2017-03-18 302592]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]

-----------------EOF-----------------

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: Prosím o kontrolu logu

#2 Příspěvek od Kodlz »

Ahoj,
Poprosim o vlozeni logu FRST.txt a Addition.txt z aplikace FRSTLauncher (Farbar Recovery Scan Tool). Navod naleznes zde: http://forum.viry.cz/viewtopic.php?f=13&t=133100
Obsah Additional.txt muzes vlozit rovnou sem do vlakna.

SyncMaster
Návštěvník
Návštěvník
Příspěvky: 471
Registrován: 15 led 2011 14:21

Re: Prosím o kontrolu logu

#3 Příspěvek od SyncMaster »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-06-2017
Ran by Richie (administrator) on RICHARD (12-06-2017 13:20:44)
Running from C:\Users\Richie\Desktop
Loaded Profiles: Richie (Available Profiles: defaultuser0 & Richie & DefaultAppPool)
Platform: Windows 10 Home Version 1703 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
() C:\Program Files (x86)\Lenovo\System Update\SUService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
() C:\Program Files\Lenovo\LenovoUtility\utility.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Flux Software LLC) C:\Users\Richie\AppData\Local\FluxSoftware\Flux\flux.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Lenovo Group Limited) C:\Users\Richie\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17042.14111.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\Windows\RTFTrack.exe [5060864 2015-06-16] (Realtek semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2017-02-11] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-05-09] (Apple Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13877464 2015-05-15] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-09-22] (CyberLink Corp.)
HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7946656 2017-04-17] (SUPERAntiSpyware)
HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\Run: [f.lux] => C:\Users\Richie\AppData\Local\FluxSoftware\Flux\flux.exe [1024240 2016-12-06] (Flux Software LLC)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
GroupPolicy: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 172.20.156.10 172.20.156.24
Tcpip\..\Interfaces\{da73bd9d-f23f-460b-a3f6-f007693cc472}: [DhcpNameServer] 172.20.156.10 172.20.156.24
Tcpip\..\Interfaces\{e0abbf77-3ba2-4c14-a27f-41e453d61588}: [DhcpNameServer] 172.20.156.10 172.20.156.24

Internet Explorer:
==================
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-25] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-25] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-24] (Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-24] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-25] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-25] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-25] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-25] (Microsoft Corporation)

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-25] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-25] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/?clid=13415
CHR StartupUrls: Default -> "hxxp://www.dosearches.com/?utm_source=b&utm_me ... 1383772572"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default [2017-06-12]
CHR Extension: (Prezentácie Google) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-10]
CHR Extension: (Dokumenty Google) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-10]
CHR Extension: (Disk Google) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-10]
CHR Extension: (YouTube) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-10]
CHR Extension: (Sea Cliffs) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpokehhbejeciipobnhjkhhflnmpidkf [2017-05-14]
CHR Extension: (Tabuľky Google) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-10]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-13]
CHR Extension: (AdBlock) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-14]
CHR Extension: (Momentum) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\laookkfknpbbblfpciffpaejjkokdgca [2017-06-11]
CHR Extension: (Webcam Toy) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade [2017-02-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2017-04-19]
CHR Extension: (Gmail) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-10]
CHR Extension: (Chrome Media Router) - C:\Users\Richie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-11]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-04-03] (Apple Inc.)
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (Lenovo)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3971264 2017-05-14] (Microsoft Corporation)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134888 2015-09-14] (ELAN Microelectronics Corp.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-22] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373752 2017-04-23] (Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-05-03] (NVIDIA Corporation)
R3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23416 2017-05-09] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [30808 2015-09-14] (ELAN Microelectronic Corp.)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [46136 2013-07-03] (LogMeIn Inc.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [231168 2017-01-13] (Intel Corporation)
R1 MpKsl17affbcb; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B570160E-21F7-48EC-AF68-6A1E9F58CB46}\MpKsl17affbcb.sys [44928 2017-06-12] (Microsoft Corporation)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2017-03-18] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_020c5444f1367c00\nvlddmkm.sys [14456944 2017-05-02] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-05-03] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [761600 2015-06-15] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3068160 2015-06-16] (Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R2 XilinxPC4Driver; C:\WINDOWS\System32\drivers\xpc4drvr.sys [27384 2013-10-13] (Xilinx, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-12 13:20 - 2017-06-12 13:21 - 00020552 _____ C:\Users\Richie\Desktop\FRST.txt
2017-06-12 13:20 - 2017-06-12 13:20 - 00000000 ____D C:\FRST
2017-06-12 13:19 - 2017-06-12 13:19 - 02438656 _____ (Farbar) C:\Users\Richie\Desktop\FRST64.exe
2017-06-12 13:18 - 2017-06-12 13:18 - 00111103 _____ C:\Users\Richie\Downloads\Nepotvrdené 685812.crdownload
2017-06-12 13:14 - 2017-06-12 13:14 - 00107174 _____ C:\Users\Richie\Downloads\Nepotvrdené 187786.crdownload
2017-06-12 13:14 - 2017-06-12 13:14 - 00106919 _____ C:\Users\Richie\Downloads\Nepotvrdené 519377.crdownload
2017-06-11 18:16 - 2017-06-11 18:17 - 00000000 ____D C:\rsit
2017-06-11 18:16 - 2017-06-11 18:16 - 00000000 ____D C:\Program Files\trend micro
2017-06-11 18:15 - 2017-06-11 18:15 - 01222144 _____ C:\Users\Richie\Downloads\RSITx64.exe
2017-06-09 06:05 - 2017-06-09 06:05 - 00003342 _____ C:\WINDOWS\System32\Tasks\DolbySelectorTask
2017-06-09 06:05 - 2017-06-09 06:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-06-09 06:05 - 2017-06-09 06:05 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2017-06-09 06:04 - 2017-06-09 06:04 - 00000000 ____D C:\Program Files\Realtek
2017-06-09 06:03 - 2015-05-19 18:12 - 04466392 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-06-09 06:03 - 2015-05-19 15:44 - 01745624 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-06-09 06:03 - 2015-05-19 15:07 - 02847960 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-06-09 06:03 - 2015-05-18 17:28 - 02049212 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-06-09 06:03 - 2015-05-18 14:47 - 02702040 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-06-09 06:03 - 2015-05-15 19:27 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-06-09 06:03 - 2015-05-15 16:32 - 01316056 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-06-09 06:03 - 2015-04-13 19:14 - 00168816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-06-09 06:03 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-06-09 06:03 - 2014-12-02 18:42 - 03218800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-06-09 06:03 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-06-09 06:03 - 2014-08-14 19:16 - 05804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2017-06-09 06:03 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2017-06-09 06:03 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-06-09 06:03 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-06-09 06:03 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-06-09 06:03 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-06-09 06:03 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-06-09 06:03 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-06-09 06:03 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-06-09 06:03 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2017-06-09 06:03 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2017-06-09 06:03 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2017-06-09 06:03 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-06-09 06:03 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-06-09 06:03 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-06-09 06:03 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-06-09 06:03 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-06-09 06:03 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-06-09 06:03 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2017-06-09 06:03 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-06-09 06:03 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2017-06-09 06:03 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2017-06-09 06:03 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-06-09 06:02 - 2015-03-08 12:22 - 03182104 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2017-06-09 06:02 - 2014-11-04 13:42 - 06242576 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2017-06-09 06:02 - 2014-11-04 13:42 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2017-06-09 06:02 - 2014-11-04 13:42 - 00336144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2017-06-09 06:02 - 2014-11-04 13:42 - 00284944 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2017-06-09 06:02 - 2014-09-24 11:31 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-06-09 06:02 - 2014-09-24 11:31 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-06-09 06:02 - 2014-09-24 11:31 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-06-09 06:02 - 2014-09-24 11:31 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-06-09 06:02 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2017-06-09 06:02 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2017-06-09 06:02 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-06-09 06:02 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2017-06-09 06:02 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2017-06-09 06:02 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-06-09 06:02 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-06-09 06:02 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2017-06-09 05:57 - 2017-06-09 05:57 - 00010752 _____ C:\WINDOWS\SetupAfterRebootService.exe
2017-06-07 20:30 - 2017-05-20 11:13 - 01333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-06-07 20:30 - 2017-05-20 11:13 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-06-07 20:30 - 2017-05-20 10:55 - 00606960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-06-07 20:30 - 2017-05-20 10:53 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-06-07 20:30 - 2017-05-20 10:48 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-06-07 20:30 - 2017-05-20 10:47 - 01474800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-06-07 20:30 - 2017-05-20 10:46 - 05821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-06-07 20:30 - 2017-05-20 10:46 - 01266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-06-07 20:30 - 2017-05-20 10:46 - 00754080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-06-07 20:30 - 2017-05-20 10:45 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-06-07 20:30 - 2017-05-20 10:44 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-06-07 20:30 - 2017-05-20 10:44 - 00181664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-06-07 20:30 - 2017-05-20 10:43 - 06760024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-06-07 20:30 - 2017-05-20 10:43 - 05802968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-06-07 20:30 - 2017-05-20 10:43 - 04672848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-06-07 20:30 - 2017-05-20 10:43 - 02424016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-06-07 20:30 - 2017-05-20 10:43 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-06-07 20:30 - 2017-05-20 10:43 - 01455592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-06-07 20:30 - 2017-05-20 10:43 - 01120864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-06-07 20:30 - 2017-05-20 10:43 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-06-07 20:30 - 2017-05-20 10:42 - 20373920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-06-07 20:30 - 2017-05-20 10:40 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-06-07 20:30 - 2017-05-20 10:29 - 13840384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-06-07 20:30 - 2017-05-20 10:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-06-07 20:30 - 2017-05-20 10:27 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-06-07 20:30 - 2017-05-20 10:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-06-07 20:30 - 2017-05-20 10:26 - 00059904 _____ C:\WINDOWS\SysWOW64\xboxgipsynthetic.dll
2017-06-07 20:30 - 2017-05-20 10:26 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-06-07 20:30 - 2017-05-20 10:25 - 20505088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-06-07 20:30 - 2017-05-20 10:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2017-06-07 20:30 - 2017-05-20 10:25 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-06-07 20:30 - 2017-05-20 10:24 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-06-07 20:30 - 2017-05-20 10:23 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-06-07 20:30 - 2017-05-20 10:22 - 19334656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-06-07 20:30 - 2017-05-20 10:22 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-06-07 20:30 - 2017-05-20 10:22 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2017-06-07 20:30 - 2017-05-20 10:22 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2017-06-07 20:30 - 2017-05-20 10:21 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2017-06-07 20:30 - 2017-05-20 10:21 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-06-07 20:30 - 2017-05-20 10:21 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2017-06-07 20:30 - 2017-05-20 10:20 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-06-07 20:30 - 2017-05-20 10:20 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-06-07 20:30 - 2017-05-20 10:20 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-06-07 20:30 - 2017-05-20 10:20 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-06-07 20:30 - 2017-05-20 10:19 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-06-07 20:30 - 2017-05-20 10:19 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-06-07 20:30 - 2017-05-20 10:18 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-06-07 20:30 - 2017-05-20 10:18 - 01450496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-06-07 20:30 - 2017-05-20 10:18 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-06-07 20:30 - 2017-05-20 10:17 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-06-07 20:30 - 2017-05-20 10:17 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-06-07 20:30 - 2017-05-20 10:17 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-06-07 20:30 - 2017-05-20 10:17 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-06-07 20:30 - 2017-05-20 10:17 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-06-07 20:30 - 2017-05-20 10:16 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-06-07 20:30 - 2017-05-20 10:16 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-06-07 20:30 - 2017-05-20 10:16 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-06-07 20:30 - 2017-05-20 10:16 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-06-07 20:30 - 2017-05-20 10:16 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-06-07 20:30 - 2017-05-20 10:15 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-06-07 20:30 - 2017-05-20 10:15 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-06-07 20:30 - 2017-05-20 10:14 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-06-07 20:30 - 2017-05-20 10:14 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-06-07 20:30 - 2017-05-20 10:14 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-06-07 20:30 - 2017-05-20 10:14 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-06-07 20:30 - 2017-05-20 10:14 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-06-07 20:30 - 2017-05-20 10:14 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-06-07 20:30 - 2017-05-20 10:11 - 01536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-06-07 20:30 - 2017-05-20 10:10 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-06-07 20:30 - 2017-05-20 10:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2017-06-07 20:30 - 2017-05-20 10:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-06-07 20:30 - 2017-05-20 10:08 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-06-07 20:30 - 2017-05-20 09:08 - 01459728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-06-07 20:30 - 2017-05-20 09:08 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-06-07 20:30 - 2017-05-20 09:08 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-06-07 20:30 - 2017-05-20 09:08 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-07 20:30 - 2017-05-20 09:08 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-06-07 20:30 - 2017-05-20 09:07 - 00287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-07 20:30 - 2017-05-20 09:03 - 08320928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-07 20:30 - 2017-05-20 09:03 - 00777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-06-07 20:30 - 2017-05-20 09:02 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-07 20:30 - 2017-05-20 09:01 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-06-07 20:30 - 2017-05-20 08:59 - 00112544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-06-07 20:30 - 2017-05-20 08:58 - 00188824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-07 20:30 - 2017-05-20 08:56 - 04847928 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-06-07 20:30 - 2017-05-20 08:56 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-07 20:30 - 2017-05-20 08:56 - 00712608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-06-07 20:30 - 2017-05-20 08:56 - 00370928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-07 20:30 - 2017-05-20 08:55 - 07325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-06-07 20:30 - 2017-05-20 08:55 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-06-07 20:30 - 2017-05-20 08:55 - 01911752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-06-07 20:30 - 2017-05-20 08:55 - 01506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-06-07 20:30 - 2017-05-20 08:55 - 01055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-06-07 20:30 - 2017-05-20 08:55 - 00961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-07 20:30 - 2017-05-20 08:55 - 00211872 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-06-07 20:30 - 2017-05-20 08:54 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-06-07 20:30 - 2017-05-20 08:54 - 00730016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-06-07 20:30 - 2017-05-20 08:54 - 00546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-07 20:30 - 2017-05-20 08:54 - 00144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-06-07 20:30 - 2017-05-20 08:53 - 00654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-06-07 20:30 - 2017-05-20 08:53 - 00411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-06-07 20:30 - 2017-05-20 08:53 - 00363424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-06-07 20:30 - 2017-05-20 08:53 - 00335808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-06-07 20:30 - 2017-05-20 08:53 - 00255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-06-07 20:30 - 2017-05-20 08:52 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-06-07 20:30 - 2017-05-20 08:52 - 04709528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-06-07 20:30 - 2017-05-20 08:52 - 01700408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-06-07 20:30 - 2017-05-20 08:51 - 21352176 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-07 20:30 - 2017-05-20 08:51 - 06551856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-06-07 20:30 - 2017-05-20 08:51 - 02604256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-07 20:30 - 2017-05-20 08:51 - 01670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-06-07 20:30 - 2017-05-20 08:51 - 01219560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-06-07 20:30 - 2017-05-20 08:51 - 00406064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-06-07 20:30 - 2017-05-20 08:48 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-06-07 20:30 - 2017-05-20 08:22 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-07 20:30 - 2017-05-20 08:10 - 00809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
2017-06-07 20:30 - 2017-05-20 08:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-06-07 20:30 - 2017-05-20 08:10 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-06-07 20:30 - 2017-05-20 08:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2017-06-07 20:30 - 2017-05-20 08:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-06-07 20:30 - 2017-05-20 08:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys
2017-06-07 20:30 - 2017-05-20 08:09 - 17365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-06-07 20:30 - 2017-05-20 08:09 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-06-07 20:30 - 2017-05-20 08:09 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-06-07 20:30 - 2017-05-20 08:08 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-06-07 20:30 - 2017-05-20 08:08 - 00086016 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
2017-06-07 20:30 - 2017-05-20 08:08 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-06-07 20:30 - 2017-05-20 08:08 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2017-06-07 20:30 - 2017-05-20 08:07 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-06-07 20:30 - 2017-05-20 08:07 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-06-07 20:30 - 2017-05-20 08:07 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-06-07 20:30 - 2017-05-20 08:06 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-06-07 20:30 - 2017-05-20 08:06 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-06-07 20:30 - 2017-05-20 08:06 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2017-06-07 20:30 - 2017-05-20 08:05 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-06-07 20:30 - 2017-05-20 08:05 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-06-07 20:30 - 2017-05-20 08:05 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-06-07 20:30 - 2017-05-20 08:04 - 00778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-06-07 20:30 - 2017-05-20 08:03 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-07 20:30 - 2017-05-20 08:03 - 08331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-06-07 20:30 - 2017-05-20 08:03 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-06-07 20:30 - 2017-05-20 08:03 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-06-07 20:30 - 2017-05-20 08:03 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-06-07 20:30 - 2017-05-20 08:03 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-06-07 20:30 - 2017-05-20 08:03 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-06-07 20:30 - 2017-05-20 08:03 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-06-07 20:30 - 2017-05-20 08:02 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-06-07 20:30 - 2017-05-20 08:02 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 02347520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-06-07 20:30 - 2017-05-20 08:01 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
2017-06-07 20:30 - 2017-05-20 08:00 - 01078272 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-06-07 20:30 - 2017-05-20 08:00 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-06-07 20:30 - 2017-05-20 08:00 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-06-07 20:30 - 2017-05-20 08:00 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-06-07 20:30 - 2017-05-20 08:00 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-06-07 20:30 - 2017-05-20 08:00 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-06-07 20:30 - 2017-05-20 07:59 - 01818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-06-07 20:30 - 2017-05-20 07:59 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-06-07 20:30 - 2017-05-20 07:59 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-06-07 20:30 - 2017-05-20 07:59 - 01141760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-06-07 20:30 - 2017-05-20 07:59 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-06-07 20:30 - 2017-05-20 07:59 - 00972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2017-06-07 20:30 - 2017-05-20 07:59 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-06-07 20:30 - 2017-05-20 07:59 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-06-07 20:30 - 2017-05-20 07:58 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-07 20:30 - 2017-05-20 07:58 - 03784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-06-07 20:30 - 2017-05-20 07:58 - 03135488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-06-07 20:30 - 2017-05-20 07:58 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-06-07 20:30 - 2017-05-20 07:58 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-06-07 20:30 - 2017-05-20 07:58 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2017-06-07 20:30 - 2017-05-20 07:58 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-06-07 20:30 - 2017-05-20 07:57 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-07 20:30 - 2017-05-20 07:57 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-07 20:30 - 2017-05-20 07:57 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-06-07 20:30 - 2017-05-20 07:56 - 02730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-06-07 20:30 - 2017-05-20 07:56 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-07 20:30 - 2017-05-20 07:56 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-07 20:30 - 2017-05-20 07:56 - 01076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-06-07 20:30 - 2017-05-20 07:55 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-07 20:30 - 2017-05-20 07:55 - 03332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-06-07 20:30 - 2017-05-20 07:55 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-06-07 20:30 - 2017-05-20 07:55 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-06-07 20:30 - 2017-05-20 07:55 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-07 20:30 - 2017-05-20 07:54 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-06-07 20:30 - 2017-05-20 07:54 - 04707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-06-07 20:30 - 2017-05-20 07:54 - 04537344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-06-07 20:30 - 2017-05-20 07:54 - 03803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-06-07 20:30 - 2017-05-20 07:54 - 02938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-06-07 20:30 - 2017-05-20 07:54 - 02651136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-06-07 20:30 - 2017-05-20 07:54 - 02516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-06-07 20:30 - 2017-05-20 07:54 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-06-07 20:30 - 2017-05-20 07:52 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-06-07 20:30 - 2017-05-20 07:52 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-07 20:30 - 2017-05-20 07:52 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-06-07 20:30 - 2017-05-20 07:52 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-06-07 20:30 - 2017-05-20 07:51 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-07 20:30 - 2017-05-20 07:51 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2017-06-07 20:30 - 2017-05-20 07:50 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-06-07 20:30 - 2017-05-20 07:50 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2017-06-07 20:30 - 2017-05-20 07:48 - 02438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-06-07 20:30 - 2017-05-20 07:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-06-07 20:30 - 2017-05-20 07:47 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2017-06-07 20:30 - 2017-05-20 07:47 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-06-07 20:30 - 2017-05-20 07:47 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
2017-06-05 17:33 - 2017-06-05 17:33 - 00000000 ____D C:\Users\Richie\AppData\Local\ElevatedDiagnostics
2017-06-05 10:13 - 2017-06-05 10:14 - 06070517 _____ C:\Users\Richie\Downloads\štátnice.pdf
2017-05-30 18:11 - 2017-05-30 18:11 - 01520008 _____ C:\Users\Richie\Downloads\1E9B941C3328413C9716F77A8F6229AB.pdf
2017-05-30 17:06 - 2017-06-08 17:55 - 00000000 ____D C:\Users\Richie\AppData\Roaming\Command and Conquer 3 Kanes Wrath
2017-05-29 19:26 - 2017-05-29 19:26 - 01520008 _____ C:\Users\Richie\Desktop\Aplikačné firewally v produkčnom prostredí.pdf
2017-05-25 15:06 - 2017-05-25 15:06 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-05-24 22:24 - 2017-05-24 22:24 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-24 22:24 - 2017-05-03 22:21 - 00175736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-24 22:24 - 2017-05-03 22:21 - 00143480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-05-23 18:22 - 2017-05-23 18:22 - 00000000 ____D C:\Users\Richie\Documents\My Games
2017-05-23 18:21 - 2017-05-23 18:21 - 00000000 ____D C:\Users\Richie\Downloads\Company of Heroes
2017-05-22 09:23 - 2017-06-07 11:49 - 00171790 _____ C:\Users\Richie\Desktop\Aplikačné firewally v produkčnom prostredí.pptx
2017-05-22 09:23 - 2017-05-22 09:23 - 00000165 ____H C:\Users\Richie\Desktop\~$Aplikačné firewally v produkčnom prostredí.pptx
2017-05-21 20:08 - 2017-05-21 20:08 - 00001822 _____ C:\Users\Public\Desktop\iTunes.lnk
2017-05-21 20:08 - 2017-05-21 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-05-21 20:08 - 2017-05-21 20:08 - 00000000 ____D C:\Program Files\iTunes
2017-05-21 20:08 - 2017-05-21 20:08 - 00000000 ____D C:\Program Files\iPod
2017-05-18 06:47 - 2017-05-18 06:47 - 00000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1580249961-1468198773-3403978891-1001
2017-05-16 14:09 - 2017-05-16 14:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2017-05-16 08:29 - 2017-05-16 08:29 - 00000000 ____D C:\Program Files\EaseUS
2017-05-16 08:24 - 2017-05-16 08:24 - 00000000 ___HD C:\$SysReset
2017-05-15 20:48 - 2017-05-15 20:48 - 00000000 ____D C:\Users\Richie\AppData\Local\LogMeIn
2017-05-15 20:48 - 2017-05-15 20:48 - 00000000 ____D C:\ProgramData\LogMeIn
2017-05-13 17:22 - 2017-05-13 17:22 - 00001292 _____ C:\Users\Public\Desktop\FlatOut 2.lnk
2017-05-13 17:22 - 2017-05-13 17:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Empire Interactive
2017-05-13 16:57 - 2017-05-13 16:57 - 00098304 _____ (Sony DADC Austria AG.) C:\WINDOWS\SysWOW64\CmdLineExt.dll
2017-05-13 11:28 - 2017-05-13 11:28 - 00000000 ____D C:\Program Files (x86)\Empire Interactive

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-12 13:13 - 2017-04-30 10:04 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-12 12:51 - 2017-02-13 23:00 - 00000657 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2017-06-12 12:25 - 2017-04-30 10:07 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-12 06:26 - 2017-04-30 10:24 - 02058052 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-12 06:26 - 2017-02-15 23:40 - 00700530 _____ C:\WINDOWS\system32\perfh01B.dat
2017-06-12 06:26 - 2017-02-15 23:40 - 00205564 _____ C:\WINDOWS\system32\perfc01B.dat
2017-06-12 06:01 - 2017-04-30 10:08 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-12 06:01 - 2017-02-10 23:50 - 00000000 __SHD C:\Users\Richie\IntelGraphicsProfiles
2017-06-11 18:21 - 2017-04-30 10:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-11 18:21 - 2017-04-30 10:04 - 05006664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-11 18:20 - 2017-03-18 13:40 - 01310720 _____ C:\WINDOWS\system32\config\BBI
2017-06-11 18:17 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-06-11 18:13 - 2017-04-30 10:10 - 00000000 ____D C:\Users\Richie
2017-06-11 18:13 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-11 18:13 - 2017-02-13 15:37 - 00000000 ____D C:\Users\Richie\AppData\Roaming\uTorrent
2017-06-11 18:12 - 2017-02-17 17:47 - 00000000 ____D C:\Users\Richie\AppData\LocalLow\uTorrent
2017-06-11 18:11 - 2017-02-13 15:35 - 00000000 ____D C:\Program Files (x86)\Steam
2017-06-11 11:00 - 2017-02-10 23:20 - 00002284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-10 18:12 - 2017-02-19 20:20 - 00000000 ____D C:\Users\Richie\AppData\Roaming\vlc
2017-06-10 12:00 - 2017-02-11 01:18 - 00000000 ____D C:\Users\Richie\AppData\Local\NVIDIA Corporation
2017-06-10 08:16 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-09 11:27 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-06-09 06:05 - 2017-02-11 01:30 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-06-09 06:04 - 2017-04-30 10:08 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-06-08 19:25 - 2017-02-16 00:22 - 00000000 ____D C:\Users\Richie\AppData\Local\CrashDumps
2017-06-08 12:04 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-08 11:57 - 2017-02-10 22:49 - 00000000 ____D C:\Users\Richie\AppData\Local\ConnectedDevicesPlatform
2017-06-07 21:10 - 2016-11-21 09:05 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-06-07 21:06 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-06-07 20:32 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-07 20:25 - 2017-04-30 10:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2017-06-07 20:25 - 2017-02-15 23:40 - 00000000 ____D C:\Users\Richie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-06-06 20:31 - 2017-04-24 19:27 - 00000000 ____D C:\Users\Richie\AppData\Roaming\.minecraft
2017-06-04 17:08 - 2017-02-10 22:50 - 00000000 ____D C:\Users\Richie\AppData\Local\Packages
2017-05-31 18:49 - 2017-02-11 01:08 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-31 14:56 - 2017-02-28 14:55 - 00000170 _____ C:\Users\Richie\.packettracer
2017-05-26 16:48 - 2017-05-06 21:56 - 00000000 ____D C:\WINDOWS\Minidump
2017-05-26 16:47 - 2017-02-13 15:29 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2017-05-25 15:06 - 2017-04-30 10:08 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-05-25 06:21 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-25 06:20 - 2017-02-13 14:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-05-24 22:25 - 2017-04-30 10:07 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-24 22:24 - 2017-04-30 10:25 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-24 22:24 - 2017-04-30 10:25 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-24 22:24 - 2017-04-30 10:25 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-24 22:24 - 2017-04-30 10:25 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-24 22:24 - 2017-04-30 10:25 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-24 22:24 - 2017-04-30 10:25 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-24 22:24 - 2017-04-30 10:25 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-24 22:24 - 2017-04-30 10:07 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-24 22:24 - 2017-04-30 10:07 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-23 16:35 - 2017-02-13 19:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-23 16:34 - 2017-02-13 19:06 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-20 18:27 - 2017-04-25 18:39 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-17 06:04 - 2017-02-11 01:55 - 00000000 ____D C:\ProgramData\Lenovo
2017-05-17 06:03 - 2017-02-11 01:55 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-05-16 14:09 - 2017-04-30 10:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\TVT
2017-05-16 14:09 - 2017-02-11 01:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2017-05-13 17:22 - 2017-02-11 01:23 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-13 11:32 - 2017-02-10 22:50 - 00000000 ____D C:\Users\Richie\AppData\Local\VirtualStore
2017-05-13 11:28 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files

==================== Files in the root of some directories =======

2017-02-19 12:51 - 2017-02-19 12:51 - 0007601 _____ () C:\Users\Richie\AppData\Local\Resmon.ResmonCfg
2017-02-28 14:55 - 2017-02-28 14:56 - 0019456 _____ () C:\Users\Richie\AppData\Local\WebpageIcons.db
2017-04-30 10:08 - 2017-04-30 10:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
2017-06-09 18:10 - 2017-06-09 18:10 - 30950664 _____ () C:\Users\Richie\AppData\Local\Temp\vlc-2.2.6-win32.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-10 18:48

==================== End of FRST.txt ============================

SyncMaster
Návštěvník
Návštěvník
Příspěvky: 471
Registrován: 15 led 2011 14:21

Re: Prosím o kontrolu logu

#4 Příspěvek od SyncMaster »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-06-2017
Ran by Richie (12-06-2017 13:21:33)
Running from C:\Users\Richie\Desktop
Windows 10 Home Version 1703 (X64) (2017-04-30 08:32:50)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1580249961-1468198773-3403978891-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1580249961-1468198773-3403978891-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1580249961-1468198773-3403978891-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-1580249961-1468198773-3403978891-501 - Limited - Disabled)
Richie (S-1-5-21-1580249961-1468198773-3403978891-1001 - Administrator - Enabled) => C:\Users\Richie

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated)
Adobe Dreamweaver CS6 (HKLM-x32\...\{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}) (Version: 12 - Adobe Systems Incorporated)
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Aktualizácie NVIDIA 25.0.0.0 (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Ansel (Version: 382.05 - NVIDIA Corporation) Hidden
Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Cisco Packet Tracer 7.0 64Bit (HKLM\...\Cisco Packet Tracer 7.0 64Bit_is1) (Version: - Cisco Systems, Inc.)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Digilent Software (HKLM-x32\...\Digilent Software) (Version: 1.0.204 - Digilent, Inc.)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc)
f.lux (HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\Flux) (Version: - )
FlatOut 2 (HKLM-x32\...\{4E6D2462-AB33-40BB-AA9F-3FA3E0DD0290}) (Version: 1.00.0000 - Empire Interactive)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.86 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4624 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{C345A462-2044-47D6-81F6-A4416453A514}) (Version: 17.1.1529.1613 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.8 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{F0C7385A-9D20-45F3-8101-05D383885180}) (Version: 12.6.1.25 - Apple Inc.)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11105 - Realtek Semiconductor Corp.)
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.73.5 - ELAN Microelectronic Corp.)
Lenovo Service Bridge (HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 4.0.5.2 - Lenovo)
Lenovo System Update (HKLM-x32\...\{25C64847-B900-48AD-A164-1B4F9B774650}) (Version: 5.07.0053 - Lenovo)
LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo)
LenovoUtility (x32 Version: 3.0.0.4 - Lenovo) Hidden
Microsoft Office 365 ProPlus - sk-sk (HKLM\...\O365ProPlusRetail - sk-sk) (Version: 16.0.8067.2115 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Grafický ovládač 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 382.05 (Version: 382.05 - NVIDIA Corporation) Hidden
Podpora Apple aplikácií (32-bit) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.)
Podpora Apple aplikácií(64-bit) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21275 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7514 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1236 - SUPERAntiSpyware.com)
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Xilinx Design Tools ISE Design Suite System Edition 14.7 (C:\Xilinx\14.7\ISE_DS) (HKLM\...\Xilinx Design Tools ISE Design Suite System Edition 14.7) (Version: - Xilinx, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1580249961-1468198773-3403978891-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-FCBA6D5EB038}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-1580249961-1468198773-3403978891-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-02-13 15:21 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-01-13 14:56 - 2017-01-13 14:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-05-09 00:44 - 2017-05-09 00:44 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-05-16 14:09 - 2017-05-09 18:55 - 00023416 _____ () C:\Program Files (x86)\Lenovo\System Update\SUService.exe
2017-04-30 10:07 - 2017-05-01 22:51 - 00133752 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2015-09-09 11:05 - 2017-04-23 22:28 - 00401912 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-03-18 22:59 - 2017-03-20 06:10 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-06-08 12:03 - 2017-06-08 12:03 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-06-08 12:03 - 2017-06-08 12:03 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-02-11 02:03 - 2017-02-11 02:02 - 00791848 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe
2017-02-11 02:03 - 2017-02-11 02:02 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll
2017-06-11 11:00 - 2017-06-03 10:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.86\libglesv2.dll
2017-06-11 11:00 - 2017-06-03 10:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.86\libegl.dll
2017-05-08 13:39 - 2017-05-08 13:39 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-05-08 13:39 - 2017-05-08 13:39 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-05-08 13:39 - 2017-05-08 13:39 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-06-02 06:21 - 2017-06-02 06:22 - 30965760 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17042.14111.0_x64__8wekyb3d8bbwe\Music.UI.exe
2017-06-02 06:21 - 2017-06-02 06:21 - 09016320 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17042.14111.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-05-26 16:39 - 2017-05-26 16:40 - 03140520 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17042.14111.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-02-13 15:21 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-02-11 01:59 - 2016-09-22 08:24 - 00884504 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\Kernel\Boomerang\UNO.dll
2017-02-11 01:58 - 2016-09-22 08:11 - 00081920 _____ () C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ctypes.pyd
2017-02-13 15:23 - 2017-05-03 22:20 - 65709176 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\sharepoint.com -> hxxps://aossk-files.sharepoint.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 13:47 - 2017-02-13 15:01 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Richie\Downloads\gym-wallpaper-8.jpg
DNS Servers: 172.20.156.10 - 172.20.156.24
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"
HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1580249961-1468198773-3403978891-1001\...\StartupApproved\Run: => "Viber"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D3F87153-66AD-4605-B2D7-67653DDC94D4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{00BABE61-7FF0-441E-8BD9-F06B3A0AE9B2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3AD86730-6CD5-4A4C-B52B-50C6F637B64B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{252156E9-F213-4C52-961B-72D4E2E8E685}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8D88A7C9-688F-4BAD-97F4-BEBA821420E2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{516B9CCB-EDB8-4E7D-A840-0392E2C66ABE}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{ECF9335E-5E55-48C1-9AAD-A8AD7D489EA4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C6E6FD4C-6079-4BEE-B44C-C3169C6876A0}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{01AA927A-BA16-44F1-B8DA-C95603355289}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7E70A638-C759-4A8F-9940-7331CAF3AAA4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6D79B8B2-02B8-4DA3-A2B7-63619826849D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C1DF06BC-E330-4211-8888-2BD6848E023A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{81A4E26E-9630-458B-84E3-32D9F02BD913}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{44B95E30-AA20-46B1-A433-FC1F2A135893}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D883EE8E-D29A-4387-8AB3-4918D1908448}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2D6CEB18-B57A-4EEE-B5CF-E60FC4C6726C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [UDP Query User{CF6AB1AB-B513-4C7F-801E-4D5D38A9C717}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [TCP Query User{83E7CD14-47FF-4344-91C0-409CB276D84E}C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [{F1DB9DF2-BB70-4417-8D83-9EA704205147}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CCA5D4AE-1540-4F12-8726-CCFB116428FA}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3E85B0E3-9466-4B19-815C-CF0ADF9C2E0E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{11EF72ED-3FF8-4302-A529-09C9A37AED37}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{12E090A6-C8DE-48DC-8414-906026114ED7}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9E720AA3-5C65-4D05-88BE-B5CEA1DA661B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{32E1DD92-5FD6-4671-B080-1F89DD89C097}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0ADC5EA6-EDDC-4E60-997B-D88950054B2C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0F4BA2FD-510C-4899-A6B0-760BE884C89D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F561498C-4469-4D55-8A52-C69DAEE6260E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{42B5182C-463C-4D65-96C5-7E12EB04941A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5679B72E-9A78-4EC7-B6CA-74761CEF8461}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6E611316-1B58-4BA4-8C10-C328550E3907}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3543FD08-C08F-4262-95F8-12D6C668339B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DAB13B97-0C76-4F85-BC6D-54C93B6B15D2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{4D9DE079-7700-4CF8-B393-052A5ADBCBDA}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F39AF7A5-14D1-4BEF-9770-768D951161B8}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{EEEBFF42-B7D4-43FA-AB89-0D22F6E9D2DC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{E949606E-F11F-4CBF-8EB0-252302839F57}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{41EA541C-2BFC-4B6C-9227-45DD0FA3903D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6F713F92-62C4-4DB7-90C3-5AEA5DF7CCDF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D931771D-4A9B-4FD3-BA82-75CD91F254AC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6E26B059-CED2-490C-925B-CA246F0702E9}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DF826DB6-DD22-40A6-95CE-2D7C86F40256}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{317A7371-AA50-4D7E-9938-2D8DAC2093F6}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8ABD6106-A2C0-4278-9928-45B8516AA2CE}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{62684BEB-36C1-4EF3-9B2E-85782B418BB4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{30330056-8743-48E3-ACA6-D2569016C63E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6FD515A3-AF41-4A44-9D4F-D1CB88F303A7}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{112C384D-21DF-4881-B8E6-A1ABA48CB0CB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1F9E15DB-F7FE-4C41-B382-D8D676E45058}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D40BB4C3-535E-4E05-9A83-21FAFF1B8C3B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{155F6551-B89B-4A3D-8A6C-E7ACDF0415EB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{47ECD521-7E23-4138-880B-CCCCF67C8110}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1FB37B1A-1CDC-4620-BD8D-D50EA131E566}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{BC166B09-3D6E-4E0C-ACA9-69E8E7DA7919}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2AF01B24-7B84-4BAE-8F1A-C090F1992EF3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{FC285675-93B6-415E-BC38-40430F43FC07}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1747142A-6F06-4539-B6EB-5EA10839365F}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{87507315-F481-48D9-800F-DD9D7059F682}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{83FA23C5-2571-40CA-B5F3-39CE66BEFB75}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C0D64260-9062-464F-9BD5-44140BA83D52}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3F887243-26CA-4F40-B180-F4B9C86643C4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5C005E5C-A77F-4458-8674-ACF4A6AC6780}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{29ABD2A8-5967-4D0A-80E4-1B1FBD364BBB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{AC92B3E2-C837-4535-B653-430E913EE86C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{E0DB8CE6-61EB-4902-A8DA-FDA157A9E3E0}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{975ADC56-A220-45C2-AE6B-02C02223C527}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{305650EA-37C2-42E1-96BD-3D18B3E1B72D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{910912C1-ED21-4F20-A086-B0156E1F334F}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CA052680-AA22-4BBE-97F8-993FC38CD846}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2EF2FE98-A555-49BA-B9DC-7D984F11AEF4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{63E64418-4844-4E97-A0B7-924F25118CD5}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F30EF395-7BCC-4005-BCBB-D7C473613050}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DBDA74F3-6372-4027-80F6-70188811D269}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C4DA6646-7C6B-407D-A112-F81757A42EDE}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{33BDA722-D173-4B71-B386-2FE7D6CC2C59}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DE7B3B08-978C-4168-A760-7BD9B2ADA881}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2C02B159-56A5-401C-829A-E8381520CB5C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2E181BEF-1A0B-4DBC-8969-2FE01D71B90C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1BA3446F-96D5-4490-806C-072A242F9170}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6FBEA8EB-EAE9-4931-B1A7-D41DED391EAC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F009ABC1-1E0B-4C19-9B00-9A763292F71E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CDE21794-3BFB-4BE8-B947-3E0431D7163E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{585CBAC7-A663-4777-B6EE-4C587F6252D7}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D96B0979-8350-42C3-90EB-E80087BB968E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{E2677A93-0F4F-4036-94DC-406D520E2AC2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{4847C777-402D-4827-A207-DA0AEA61FB75}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{185FEC65-ABD6-484C-97E0-B59AB85BF8B2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{53B2D008-081D-4DC6-BA7E-73FDFAD553D3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{83AC870A-92A3-4D93-B895-D3359A6AC319}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{BF8027F3-E3B8-4370-8720-445CBC88F96E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CA33C7C4-085D-4B18-90EF-C0A1A85161F1}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{E45E5AF1-3B02-4DC0-8194-02C76062B2CE}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{077A592B-74FF-42D6-B025-35C93B7D35DC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6F92AA82-F4EA-41C5-8F09-C828CC2B3B65}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5E2A6D72-4485-4E64-B5B6-E3BC7174BBB3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F64D3360-AD27-4C2D-B9A4-7CB92EABDE4B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C81CBD1A-292E-4DB2-B299-8C2E3A2968D6}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{291BB907-DE94-4834-8642-261F0E15D05E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{98B78A96-5C1B-4284-B474-6C0B1AAB557D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7E389EFD-AB76-4E7C-A1FC-77F986016F8C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{74F45881-BD39-462C-9B8A-53FC75FD8120}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{4EA9F402-B3B6-423A-9392-F98E3DC58460}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{309CDA2E-C496-4F9B-9D31-285B7D50ABE0}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1D7E7308-02BA-4425-B6D7-1EE410BEAD5B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{290AC2F0-6E30-4D31-994A-4D15B10BDF01}] => (Block) C:\xilinx\14.7\ise_ds\ise\bin\nt64\unwrapped\isimgui.exe
FirewallRules: [{F7D5BDEE-9B96-4CFE-8CB0-886FB9C1A2AC}] => (Block) C:\xilinx\14.7\ise_ds\ise\bin\nt64\unwrapped\isimgui.exe
FirewallRules: [UDP Query User{E28BDCB6-99D2-482B-878A-792F9506EDCD}C:\xilinx\14.7\ise_ds\ise\bin\nt64\unwrapped\isimgui.exe] => (Allow) C:\xilinx\14.7\ise_ds\ise\bin\nt64\unwrapped\isimgui.exe
FirewallRules: [TCP Query User{60DE44E0-8F92-4CE4-B1F3-2E7135283AB0}C:\xilinx\14.7\ise_ds\ise\bin\nt64\unwrapped\isimgui.exe] => (Allow) C:\xilinx\14.7\ise_ds\ise\bin\nt64\unwrapped\isimgui.exe
FirewallRules: [{67FEE03B-3C32-42BE-80F2-176008BE3CE5}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{4C2B497F-3A41-4519-9E58-DA6B76150937}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9509EF5C-99AA-4D17-B5F7-DA922EBCDBA9}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8010C317-05D9-4335-B0B6-AD7522AEF9C1}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DEA7C466-28AB-44EB-AD27-BBE52A19D3B3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0ADFFF94-BE52-4D09-8947-EE18BB354674}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D71BE98B-A073-453B-877F-1CA55222D22A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5005F039-69E8-4915-B868-FBF27823A2BB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5ED490DE-E0A3-4E94-8AD9-4570FFBBD60C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F4006568-126A-4C81-909C-21325DC874BF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3349AA68-B61D-417C-971C-17F0401FE2E3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D10288A1-D531-4215-BCB6-E79B8A4B6AFC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{717762B5-3828-4E28-A380-7197F5256A9D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{89038514-CBD2-4452-BD30-94B4B9D3EE52}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8D49A778-BEF0-4DA5-8243-3D0673658BDE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E2F3C282-BC82-474D-8104-AB6216CE21F4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BAB01837-0E7E-41E4-ADEA-D1EB4EB519E4}] => (Block) C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe
FirewallRules: [{0C09F196-0FF2-4705-928D-703F8DF73529}] => (Block) C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe
FirewallRules: [UDP Query User{EDE908EE-005C-4077-A28C-6830B396B9B2}C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe
FirewallRules: [TCP Query User{2170746A-35FF-463B-9D19-348C5F997FD9}C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.0\bin\packettracer7.exe
FirewallRules: [{993A180E-6C7F-44DF-BDBB-933C9E169704}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D9279D54-F4FA-43B3-81BE-B00AC065F2C8}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C4C9A8D6-C71F-4969-A110-DFF02F9662E4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{456D2C03-BFA8-406D-994F-3EB6634AEA9F}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8F2B6C63-2A18-45E6-9586-3D2A2DE9DE5B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D90CC7CC-ED7B-47B3-B386-F6AE874B1827}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2C165260-2419-48C5-BDDF-2B00C67C35AF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CBDAD7D5-5259-49DD-855D-1848E60C25F2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CD4EC5CD-F3F1-46E2-82CF-C2CC91DF8955}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6A5AEDD1-F4D8-4A76-8D74-9009D5B2B252}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{B6394CCB-05FD-46E4-924A-9D30B20E23AC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{A8C7FC0B-2730-48D1-B04C-29F532DA9CCF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9776840D-66F9-4F6A-93CF-4809FFC97424}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9FB38E0A-C312-43F6-8E1B-B3734C8AC514}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C32EF37B-1CD3-4396-A40F-00167E856844}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0327F6C5-4660-46E1-A0BA-29F4D4C4D6F5}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8A83F5CD-D716-4ECA-9894-2CCCEA1B77CF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{EF5507F5-44C7-499C-8608-1DD8A9E95836}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5A6D816C-24E5-4998-81C5-4F1936B3E237}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3E909C32-6BD6-470F-8895-9B4EFE8F71D4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6EAB5B86-9E04-444D-BC51-45E6D512CF68}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9AB89A16-65F1-41AA-BA84-B69264420CC1}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{BDFC498F-42EC-4FED-943E-CA86683D4F30}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{215DE7A8-84D7-4A1E-B5BD-1EAC801C6186}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1F1AD3D3-9DFE-4EB4-A9F1-C1A97BF18CCD}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8EA51EB6-ECC1-47A2-9229-00DF195EFCEC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{ED96B4B5-CC7D-4FA3-9F4C-B882E5114CAF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0F70D64F-3167-4BCB-A1A6-6E329DC2E1C6}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5DEBE8EB-6ABD-4AED-82C2-F4E670218DC1}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{46A2CB65-DC19-457E-B2AD-4B6AFA1B79CC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C3152D28-0D06-4DF1-91DC-D3FEE0AA50C9}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{90654C7B-ABE0-4FA9-B068-A5D7B0321A9C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{09FE28FE-BD23-4309-9446-A6BE7B5604A5}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{00BB6D9C-5FE8-42CA-9DEC-3435F7F012A3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7AD77031-BB4F-4827-B25D-88BF9959CCCC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DE58185E-A5D5-4E93-B641-0CF1F5279B49}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{667E0D3A-47DD-417C-9BE9-F805EFC2E947}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1B738350-9331-440B-8D92-1C749BCC7A57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{AED45669-8000-4B97-9A86-5A8192FBFB41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{A48B058C-A30C-4BFA-A90B-9707F5E027E6}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7AFCAC93-E722-4B94-AAB0-8E6A048ABA3D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7ED19F57-9B58-4E54-8294-95F9D132E41D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2038715D-7A89-4217-BDC3-3E472EFAB353}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5FB7DC41-E473-49D6-9956-40B801702E61}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{FCC44D12-ED8F-4257-B41A-B56F5209638A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{47E69F47-874F-4052-8F61-8B3A3E8620C1}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{A6D03F10-A1CD-42FE-81E6-DA3EE7FF2582}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F8A9F8C1-BD50-4374-A4EC-C5B151B533EC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{24A4850E-FD18-47EA-99FD-1C195E4E80CA}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{601B5F20-52AF-4552-879A-7B476AB12428}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{323CD49B-2CD5-4383-9A8D-05E721D820C8}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3207872E-AD28-472D-903D-B2E540C4AAC6}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{70B70CBA-7F4D-435A-9149-21A3603FF056}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C501A57B-61A9-442E-866D-B657328A0AB1}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{48CC92A7-2066-47C0-B270-70ECD652D64B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9B3A9AB8-ED27-4F01-A8AF-B034D41D5A07}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{A9810959-0ACB-4F1F-A8D0-118B98A9D2ED}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5ED13C15-178E-4F85-B32F-A75C80100568}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5D46ABD5-AC65-45CC-803A-CCC0E37358DB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6792D231-CFE5-44EC-9481-F9913A10698F}] => (Allow) C:\Users\Richie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5C256134-C334-4832-9D64-74862C2C432D}] => (Allow) C:\Users\Richie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D3A2BA30-409F-4375-9633-FA6A77BDE73E}] => (Allow) C:\Users\Richie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0E37CAD6-8E27-4D68-B947-DF1DC92B4780}] => (Allow) C:\Users\Richie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1DA114CF-FCE3-4247-B5A0-5028787F0E61}] => (Allow) C:\Users\Richie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{69CCB6CF-3B30-48B0-9A71-79AF65120D0F}] => (Allow) C:\Users\Richie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8F760EF1-EF2A-4A1B-8602-67EB799FC802}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{75822D52-F981-4ACA-BA60-17366CE2C3E0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{EE44ED31-C1ED-4657-84A9-0D46E2B09698}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A79B0F4E-693B-4CCB-A036-9ADA79097328}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CFDD64F2-6710-43A5-BC91-09C0E393F9E6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{01A4F31F-59FD-4E8E-8954-317B9235FC7F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E7AACB4C-0341-409D-9057-CBFF7CCF7CC4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{47587DAF-35A6-44CE-89A2-E9A91BC3A8C3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{92485CDD-1CB1-4A79-B599-0B6C2F11033D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{C4DB674A-59A5-4DD2-9CE1-B28AF05DA9AF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{80073A3A-894E-4C95-9B66-CBF566809D48}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6F1DEA0E-7998-4212-8B18-422042CEC030}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D9857146-F0C9-44DE-9091-939F9E600DEB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F3C6FBBB-97F8-4077-8734-D17ECB5466B6}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{97E6FFF7-7E48-420C-A6EC-B5E2674E4CB0}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{55C624DE-46D3-49E4-94C4-AC7B4905767F}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{A38B17B8-BAF4-47E2-9033-BA67F8A76FD7}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{95A403E9-17DB-4D80-9588-EDC5EFCF0DDD}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5EA1F9EE-9A6F-41EB-A243-9743634255D8}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{41E8424D-04F5-4C7D-AB22-CB93166A2E5D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{A95AB462-8B46-4D02-85DB-0F0BE27ADDFF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5D00866C-1AE2-4ABB-8AB9-B84CF01874A0}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{972D1EC6-98A5-499E-B2FF-F9567CDCD4E7}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{06D535FA-09F2-467B-9D7F-545DB37BE2B0}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6519C36A-7B8D-47E3-8F11-CBCD46CF42A8}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D55CE17F-1FDA-4824-B33A-7D5628B4EA93}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{59ED00A8-B407-4897-B8EF-E92C6E3B62D4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8CCA2399-F6EA-46C6-9D3D-17D77440935C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{86073222-4D4E-4B95-8547-53299CF930E4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{B73AE561-CAF0-40B3-B4E2-E49482CA75BD}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9D2EAA60-7CDA-4022-9740-7AF7958198E3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{685A4BAD-DF12-49CD-B2EF-D4D6714865AE}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3578161B-C06E-4827-85EB-10DEC6C2E421}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6ADB4D1F-AC19-4F49-82DF-70A014ED6686}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8D485734-2C3A-45A5-BD01-597D0B5E8429}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [TCP Query User{937A464B-D290-4D87-ABF7-51FD5BCBD533}C:\program files (x86)\empire interactive\flatout 2\flatout2.exe] => (Allow) C:\program files (x86)\empire interactive\flatout 2\flatout2.exe
FirewallRules: [UDP Query User{60C439B4-76B2-4FD0-82F6-C698C3B8B8F0}C:\program files (x86)\empire interactive\flatout 2\flatout2.exe] => (Allow) C:\program files (x86)\empire interactive\flatout 2\flatout2.exe
FirewallRules: [{57778845-D01D-406C-A6E0-8233A68C04F8}] => (Allow) C:\program files (x86)\empire interactive\flatout 2\flatout2.exe
FirewallRules: [{9A0F2263-CF64-4F8A-89FB-829595F9770D}] => (Allow) C:\program files (x86)\empire interactive\flatout 2\flatout2.exe
FirewallRules: [{E7AB2672-E416-4BF8-B6EC-A2F8201F480A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{BF923F97-30D4-46E7-BC6E-53E9E12757B3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DD9F041F-ECE3-409F-A4E6-13C286984893}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{B1F1BB00-31AC-4D17-8406-468C35894DDB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{84D973F8-E701-4134-BC39-DC688BC48C25}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{87F928D7-A639-4D45-8163-083AB422BB27}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8E3B3552-E858-4476-8A85-0DFF7BF5C1AD}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F0CAEA4C-E795-48EF-A88F-DE5D6BD21C05}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{195C718D-631C-4149-9D61-E52106C79AEA}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0C822596-93AA-4279-B275-66B08E4655DF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D0CE58EC-D208-4B04-A971-D8339FA4F155}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{4F0D18CF-FCB7-4370-99F7-1B0B752A771D}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
FirewallRules: [{78E524A6-5FA5-486A-AFA6-322E63C0E67B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{86768E27-52DD-4B75-A445-9B70F5F64DC9}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{948C1047-620E-4568-BAB6-0BFAE5FAF392}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6622C9DB-894F-41AD-901D-9A008DD9FCB2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0B2AA224-C98F-440D-AAD0-B2E2F5E89357}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D2822F40-DB3D-4634-830D-A3A13AF8AB32}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9F3F42AC-4BFD-48C5-9687-BEBCE09E5F91}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CE59AAB6-EAB5-4233-ACF7-D694DFA41E9A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{26D3A4E0-AF9F-4A56-B4A1-CC659F50F36F}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{7AF41948-7DB2-4DC6-BF24-E8F0954480D4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0F68BEAF-52DF-42D9-A1CC-AB588CE98347}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{5DC3773E-08ED-4DBA-B184-25A6B4B9337C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3BCC1DCF-A84F-4D85-B73D-B6653FC60F07}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{00A4C1A1-ACD9-4A52-A300-0A0F475A0CC4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [TCP Query User{37AEC962-0FC0-417C-85B6-1B05208C3883}C:\users\richie\downloads\company of heroes\reliccoh.exe] => (Allow) C:\users\richie\downloads\company of heroes\reliccoh.exe
FirewallRules: [UDP Query User{A4667947-B5BD-4E0E-9538-3A4B62DAFD77}C:\users\richie\downloads\company of heroes\reliccoh.exe] => (Allow) C:\users\richie\downloads\company of heroes\reliccoh.exe
FirewallRules: [TCP Query User{DB2F44F8-675A-4C31-9965-16C4403630A6}C:\users\richie\downloads\company of heroes\bugreport\bugreport.exe] => (Block) C:\users\richie\downloads\company of heroes\bugreport\bugreport.exe
FirewallRules: [UDP Query User{888E6118-14D4-4D5A-BB5B-255560F8F4B4}C:\users\richie\downloads\company of heroes\bugreport\bugreport.exe] => (Block) C:\users\richie\downloads\company of heroes\bugreport\bugreport.exe
FirewallRules: [{C9613796-9921-4E27-BE3D-28E566DBDC0B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{16BACFFB-4198-4305-A6D7-60E47B92CF34}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{78345994-3EC1-4BE2-8CFE-331EEC7B71F8}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{854D7803-8A61-436C-B0ED-14AE02BC2C70}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{32EB2D4A-DD8E-4087-B9F2-3DB4FFCE8E9F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{91DA30FA-6BF4-44BF-8295-6E7673639BF4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{3199A7D8-1966-4250-A813-E1E74C0455D0}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8AAD97DB-B46F-4F4B-86B2-32241C37E8E6}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{0C92446D-879F-47C6-AF41-7A7EE4513884}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{4343F38A-F01E-40B5-A4D9-24DA9B348C89}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2D7D2E41-2A3A-483A-ABB1-D7A5262D9F7E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{C6FA8AA8-4D39-4CCC-92C7-3F7A4A6F388D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CC6BE4BE-04AA-4102-93BD-2D4FDB81A2DC}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{17C492B6-442F-4514-B851-9FC81D45C3EF}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2D9FF53D-EB8C-49CE-A1DE-3A3CA48F10D2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{332CE5B4-00BF-4D2B-87CF-03E0DB1A87AB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{806DE069-1A1D-49F6-BD30-82A8FB67A645}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{E803E1DC-7E9B-4BD4-BF46-63BBA560B6A1}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{689E99C9-EE67-484A-9282-AD5D943E6EB5}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{32770D5C-1DFA-4147-B3AC-002A0886B2A4}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2992B27E-C98D-4CEF-A502-000FB402FA8E}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6FF18A94-988B-4EE2-8262-F3C7F8F3B097}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7E0FAF5C-1B71-4575-9FCB-0F46E7476B54}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{373A4D75-215C-4552-83E8-1AAF7FD36479}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1FF7ADC3-0277-417D-86AE-E20DDC80008B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{1F5827C1-A1AA-46DC-9CA4-B1D31952862A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{67018707-3C0F-4266-893B-C174770EC7A6}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7FF99B2A-358D-46E2-B803-FAF663E915F3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{64C01108-E5E3-4EA6-9D7B-443E06EB717D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{F19A019B-F7D6-461D-8505-AA196DD5C687}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{19EEDADC-94C4-4F4C-81E2-24B2676A729C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{E1DF019F-C909-40CC-9A73-1C3A6340476F}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{B4E1AA44-8B8F-4BCE-AA1C-59F0E19E7881}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{84FA0CB0-F942-45FD-A4C0-F39EC052D31D}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D84BF7B9-1781-45E8-AD2E-B764C45CB861}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{D3AE7A9C-0947-4B9C-9636-0AEE8D81B875}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{519947F4-B8AF-4F94-A77C-7CD30FF7C441}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{6C60F1FA-BEDA-41B7-863C-C3CD36E3DC03}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{FF91D341-7601-45E0-9448-0D57E2CBEEB8}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{2F0A0523-3C26-42E7-B239-925AEDADBF9F}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{EE9B8A01-757D-4F79-89DB-D8F970F0AAAE}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CCDF1780-465A-47EC-A858-22DC9ABCC9F7}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{8B7E10B6-80E5-4362-BB57-5304669A9B69}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{234CA083-B45C-4E14-8A48-2AC392F1724A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{DC1FD009-333D-41E4-8836-E02B9E906DC7}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7BE1D0EE-DE16-42AB-AFEE-88E48A61917A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{930A1FF0-7733-4F77-AC8D-06CCAFEAD0CB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{069C0526-B5A8-41F4-8010-6F039E4BCE73}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{CC8CD893-2C75-49BF-8913-56A2BB7D352A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{61457688-D6CC-4132-A6C8-A0CB92DDD12B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{995E4011-666E-4615-BC8B-A7FA2ECD36E2}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{7F1ED012-DE65-4C01-A4D3-4962920445F1}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{A3F27253-80C1-4666-9B7F-5E1A36FD21BE}] => (Allow) %systemroot%\system32\alg.exe

==================== Restore Points =========================

01-06-2017 12:26:10 Scheduled Checkpoint
07-06-2017 20:31:06 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/12/2017 06:04:48 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (06/11/2017 06:20:33 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RICHARD)
Description: Aktivácia aplikácie Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI zlyhala pre chybu: -2144927141 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (06/11/2017 06:20:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program RAVCpl64.exe version 1.0.0.966 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2168

Start Time: 01d2e2cdc566c9b5

Termination Time: 7

Application Path: C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

Report Id: de35b578-1c73-4fab-82cc-0c820b2b4ca7

Faulting package full name:

Faulting package-relative application ID:

Error: (06/11/2017 09:31:16 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (06/10/2017 08:17:02 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (06/09/2017 06:12:06 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (06/09/2017 06:07:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname Richard.local already in use; will try Richard-2.local instead

Error: (06/09/2017 06:07:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Richard.local. Addr 172.20.97.98

Error: (06/09/2017 06:07:12 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 172.20.97.110:5353 4 Richard.local. Addr 172.20.97.110

Error: (06/09/2017 06:02:18 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine QueryFullProcessImageNameW. hr = 0x80070006, The handle is invalid.
.


Operation:
Executing Asynchronous Operation

Context:
Current State: DoSnapshotSet


System errors:
=============
Error: (06/12/2017 06:01:34 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "RICHARD :0" could not be registered on the interface with IP address 172.20.97.98.
The computer with the IP address 172.20.97.99 did not allow the name to be claimed by
this computer.

Error: (06/12/2017 06:01:34 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "RICHARD :20" could not be registered on the interface with IP address 172.20.97.98.
The computer with the IP address 172.20.97.99 did not allow the name to be claimed by
this computer.

Error: (06/12/2017 06:01:34 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{E0ABBF77-3BA2-4C14-A27F-41E453D61588} because another computer on the network has the same name. The server could not start.

Error: (06/11/2017 11:12:30 PM) (Source: DCOM) (EventID: 10010) (User: RICHARD)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (06/11/2017 11:12:30 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "RICHARD :0" could not be registered on the interface with IP address 172.20.97.98.
The computer with the IP address 172.20.97.99 did not allow the name to be claimed by
this computer.

Error: (06/11/2017 09:44:30 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "RICHARD :20" could not be registered on the interface with IP address 172.20.97.98.
The computer with the IP address 172.20.97.99 did not allow the name to be claimed by
this computer.

Error: (06/11/2017 09:44:30 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "RICHARD :0" could not be registered on the interface with IP address 172.20.97.98.
The computer with the IP address 172.20.97.99 did not allow the name to be claimed by
this computer.

Error: (06/11/2017 09:44:30 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: The name "RICHARD :0" could not be registered on the interface with IP address 172.20.97.98.
The computer with the IP address 172.20.97.99 did not allow the name to be claimed by
this computer.

Error: (06/11/2017 09:44:30 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{E0ABBF77-3BA2-4C14-A27F-41E453D61588} because another computer on the network has the same name. The server could not start.

Error: (06/11/2017 07:15:05 PM) (Source: DCOM) (EventID: 10010) (User: RICHARD)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.


CodeIntegrity:
===================================
Date: 2017-06-12 13:19:29.941
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 13:19:29.939
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 11:26:04.119
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 11:26:04.116
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 11:26:03.835
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 11:26:03.833
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 11:25:42.936
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 11:25:42.934
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 11:21:24.610
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_020c5444f1367c00\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-06-12 11:21:23.685
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz
Percentage of memory in use: 28%
Total physical RAM: 16296.27 MB
Available physical RAM: 11578.63 MB
Total Virtual: 18728.27 MB
Available Virtual: 13776.08 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.47 GB) (Free:683.19 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: Prosím o kontrolu logu

#5 Příspěvek od Kodlz »

Na plose, tam kde mas umisteny FRST vytvor TXT soubor, ktery pojmenujes fixlist.txt a do nej vloz nasledujici text:

( Spusť znovu FRST a klikni na >Fix<. Po skončení akce se objeví log, který sem zkopíruj).
start
CreateRestorePoint:

CloseProcesses:

Hosts:

EmptyTemp:
GroupPolicy: Restriction <======= ATTENTION
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
2017-05-25 15:06 - 2017-04-30 10:08 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
CustomCLSID: HKU\S-1-5-21-1580249961-1468198773-3403978891-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-FCBA6D5EB038}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
end

SyncMaster
Návštěvník
Návštěvník
Příspěvky: 471
Registrován: 15 led 2011 14:21

Re: Prosím o kontrolu logu

#6 Příspěvek od SyncMaster »

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-06-2017
Ran by Richie (12-06-2017 14:36:25) Run:1
Running from C:\Users\Richie\Desktop
Loaded Profiles: Richie (Available Profiles: defaultuser0 & Richie & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
start
CreateRestorePoint:

CloseProcesses:

Hosts:

EmptyTemp:
GroupPolicy: Restriction <======= ATTENTION
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
2017-05-25 15:06 - 2017-04-30 10:08 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
CustomCLSID: HKU\S-1-5-21-1580249961-1468198773-3403978891-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-FCBA6D5EB038}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
end
*****************

Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\System\CurrentControlSet\Services\ibtsiva => key removed successfully
ibtsiva => service removed successfully
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat => moved successfully
HKU\S-1-5-21-1580249961-1468198773-3403978891-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-FCBA6D5EB038} => key removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20102063 B
Java, Flash, Steam htmlcache => 14294589 B
Windows/system/drivers => 10841156 B
Edge => 512 B
Chrome => 795543167 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 29458 B
defaultuser0 => 7168 B
Richie => 66617838 B
DefaultAppPool => 0 B

RecycleBin => 0 B
EmptyTemp: => 872.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:37:11 ====

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: Prosím o kontrolu logu

#7 Příspěvek od Kodlz »

:arrow: Stáhni AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Ulož na plochu
Ukonči všechny programy
Klikni nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vlož.

:arrow: nasledne tento tool MBAM: http://forum.viry.cz/viewtopic.php?f=29&t=144868
-Nainstaluj,dej úplný sken, nic zatim nemaz

-Log zkopíruj sem.

SyncMaster
Návštěvník
Návštěvník
Příspěvky: 471
Registrován: 15 led 2011 14:21

Re: Prosím o kontrolu logu

#8 Příspěvek od SyncMaster »

Malwarebytes
www.malwarebytes.com

-Podrobnosti denníka-
Dátum skenovania: 12.06.17
Čas skenovania: 15:03
Súbor denníka:
Správca: Áno

-Údaje o softvéri-
Verzia: 3.1.2.1733
Verzia súčastí: 1.0.141
Aktualizovať verziu balíka: 1.0.2137
Licencia: Skúšobná verzia

-Systémové informácie-
OS: Windows 10
Procesor: x64
Systém súborov: NTFS
Používateľ: RICHARD\Richie

-Zhrnutie skenovania-
Typ skenovania: Vyhľadávanie hrozieb
Výsledok: Dokončené
Preskenované objekty: 434279
Zistené hrozby: 0
(Nezistili sa nijaké škodlivé položky)
Hrozby umiestnené do karantény: 0
(Nezistili sa nijaké škodlivé položky)
Uplynulý čas: 4 min, 37 s

-Možnosti skenovania-
Pamäť: Povolené
Spúšťanie: Povolené
Systém súborov: Povolené
Archívy: Povolené
Rootkity: Zakázané
Heuristika: Povolené
PUP: Povolené
PUM: Povolené

-Podrobnosti skenovania-
Proces: 0
(Nezistili sa nijaké škodlivé položky)

Modul: 0
(Nezistili sa nijaké škodlivé položky)

Kľúč databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)

Hodnota databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)

Údaje databázy Registry: 0
(Nezistili sa nijaké škodlivé položky)

Prúd údajov: 0
(Nezistili sa nijaké škodlivé položky)

Priečinok: 0
(Nezistili sa nijaké škodlivé položky)

Súbor: 0
(Nezistili sa nijaké škodlivé položky)

Fyzický sektor: 0
(Nezistili sa nijaké škodlivé položky)


(end)

SyncMaster
Návštěvník
Návštěvník
Příspěvky: 471
Registrován: 15 led 2011 14:21

Re: Prosím o kontrolu logu

#9 Příspěvek od SyncMaster »

# AdwCleaner v6.047 - *Logfile created 12/06/2017 *at 14:53:56
# *Updated on 19/05/2017 by Malwarebytes
# *Database : 2017-06-10.1 [*Server]
# *Operating System : Windows 10 Home (X64)
# *Username : Richie - RICHARD
# *Running from : C:\Users\Richie\Desktop\adwcleaner_6.047.exe
# *Mode: Clean
# *Support : https://www.malwarebytes.com/support



***** [ *Services ] *****



***** [ *Folders ] *****



***** [ *Files ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ *Shortcuts ] *****



***** [ *Scheduled Tasks ] *****



***** [ *Registry ] *****



***** [ *Browsers ] *****



*************************

:: *"Tracing" keys deleted
:: *Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [766 *Bytes] - [12/06/2017 14:53:56]
C:\AdwCleaner\AdwCleaner[S0].txt - [1172 *Bytes] - [12/06/2017 14:53:07]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [913 *Bytes] ##########

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: Prosím o kontrolu logu

#10 Příspěvek od Kodlz »

nic tu nevidim....chova se pc nejak nestandartne?

SyncMaster
Návštěvník
Návštěvník
Příspěvky: 471
Registrován: 15 led 2011 14:21

Re: Prosím o kontrolu logu

#11 Příspěvek od SyncMaster »

Momentálne som nič nepostrehol.. Všetko funguje ako má :idea:

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: Prosím o kontrolu logu

#12 Příspěvek od Kodlz »

to jsem rad ;)

Kodlz
Přítel fóra
Přítel fóra
Příspěvky: 780
Registrován: 30 kvě 2008 12:11

Re: Prosím o kontrolu logu

#13 Příspěvek od Kodlz »

:closed:

Zamčeno