Prosím o kontrolu logu

[Paulie0001]

Zdravím,
Potřeboval bych pomoci trochu pročistit bráchův počítač po delší době. Nebo myslíte, že je v pořádku? Později přidám i log z druhého jeho PC, jakmile mi ho uvolní Taky by jistě potřeboval pročistit. Posílám log z rsit PC1:

PS: teď mi říká brácha, že má občas problémy s PC. Když třeba klikne pravým tlačítkem myši na plochu, trvá cca 10s než se objeví lišta s úkoly. Anebo se dlouho načítají stránky v google chromu, zatímco dole to píše "čekání na mezipamět".

Logfile of random's system information tool 1.10 (written by random/random)
Run by Simca at 2017-08-03 18:01:34
Microsoft Windows 10 Pro
System drive C: has 2 GB (3%) free of 76 GB
Total RAM: 8189 MB (76% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:01:53, on 3.8.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
H:\Games\Steam\Steam.exe
C:\Users\Simca\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
H:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe
C:\Program Files\trend micro\Simca.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Simca\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Simca\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Simca\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Steam] "H:\Games\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Roboscan Real-time Service (Roboscan_RTSrv) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: Roboscan Update Service (Roboscan_UpdSrv) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files (x86)\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8778 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Windows\system32\nvvsvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\atiesrxx.exe
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k iissvcs
"C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
C:\WINDOWS\system32\mqsvc.exe
dashost.exe {69275f7d-b28d-496b-b79f97ae7efc0115}
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files\Roboscan\Roboscan\RSRTSrv.rse"
"C:\Program Files\Roboscan\Roboscan\RSUpdSrv.rse"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding

"C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe" -s
sihost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\AUDIODG.EXE 0x344
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Roboscan\Roboscan\RSAgent.rse" /run
"H:\Games\Steam\Steam.exe" -silent
szndesktop.exe default start
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Users\Simca\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
H:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe "-lang=cs_CZ" "-cachedir=C:\Users\Simca\AppData\Local\Steam\htmlcache" "-steampid=5632" "-buildid=1500335472" "-steamid=0" "-clientui=H:\Games\Steam\clientui" --disable-spell-checking --disable-out-of-process-pac --enable-blink-features=ResizeObserver --disable-smooth-scrolling --disable-gpu-compositing --disable-gpu --enable-direct-write "--log-file=H:\Games\Steam\logs\cef_log.txt"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe" /scheduler
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}

"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Simca\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Simca\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=59.0.3071.115 --initial-client-data=0x1a8,0x1ac,0x1b0,0x1a4,0x1b4,0x7ffa240e19d0,0x7ffa240e19b8,0x7ffa240e19e8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=9032 --on-initialized-event-handle=564 --parent-handle=568 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1436 --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,10,20,21,24,28,43,76 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x1002 --gpu-device-id=0x6758 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1151.1008 --gpu-driver-date=11-4-2015 --service-request-channel-token=A7860652E923C1BB411DDF2035582B90 --mojo-platform-channel-handle=1444 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1436 --primordial-pipe-token=1AD4666C23EFCFB30650639E0C791BBC --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=1AD4666C23EFCFB30650639E0C791BBC --renderer-client-id=4 --mojo-platform-channel-handle=2580 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1436 --primordial-pipe-token=CF859DC1F77B5296B54ADCA8EBA39591 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=CF859DC1F77B5296B54ADCA8EBA39591 --renderer-client-id=5 --mojo-platform-channel-handle=2588 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1436 --primordial-pipe-token=F5FE7F2FBCF065074D2E06D170FA4477 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=F5FE7F2FBCF065074D2E06D170FA4477 --renderer-client-id=6 --mojo-platform-channel-handle=2620 /prefetch:1
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1436 --primordial-pipe-token=39A4EA5C5FBDD10B900A9DE47C0E81F4 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=39A4EA5C5FBDD10B900A9DE47C0E81F4 --renderer-client-id=10 --mojo-platform-channel-handle=5716 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1436 --primordial-pipe-token=46DADEF5EF88E8EFEC2EAF0246C32FDF --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=46DADEF5EF88E8EFEC2EAF0246C32FDF --renderer-client-id=11 --mojo-platform-channel-handle=3580 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1436 --primordial-pipe-token=BBA45C3273070F65BA23CEA3467F5592 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553 --service-request-channel-token=BBA45C3273070F65BA23CEA3467F5592 --renderer-client-id=13 --mojo-platform-channel-handle=6088 /prefetch:1
C:\WINDOWS\servicing\TrustedInstaller.exe
C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1439_none_7efe016621f50bd0\TiWorker.exe -Embedding
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 636 640 648 8192 644
"H:\DOWNLOAD\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\miss_sunshine_notification_service.job - C:\Program Files (x86)\miss sunshine\miss_sunshine_notification_service.exe /url='http://cdn.selectbestopt.com/notf_sys/index.html' /crregname='miss sunshine' /appid='73143' /srcid='2913' /bic='e9eb6f63d48c3fe17ce67dfcb4180e47' /verifier='61fa84e04fad0fdcdd454d8d033adaac' /installerversion='1.50.3.10' /statsdomain='http://stats.buildomserv.com/data.gif?' /errorsdomain='http://stats.buildomserv.com/data.gif?' /monetizationdomain='http://logs.buildomserv.com/monetization.gif?' /installationtime='1427912226' /runfrom='task' /brwtype='notbg' /postponedhours='6'
C:\WINDOWS\tasks\miss_sunshine_updating_service.job - C:\Program Files (x86)\miss sunshine\miss_sunshine_updating_service.exe /campid=2913 /verid=1 /url=http://cdn.buildomserv.com/txt/@CAMPID@/@VER@/file.txt /appid=73143 /taskname=miss_sunshine_updating_service /funurl=http://stats.buildomserv.com

=========Mozilla firefox=========

ProfilePath - C:\Users\Simca\AppData\Roaming\Mozilla\Firefox\Profiles\m8eup4eh.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 26.0.0.137 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Web Components]
"Description"=
"Path"=C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 26.0.0.137 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll


C:\Users\Simca\AppData\Roaming\Mozilla\Firefox\Profiles\m8eup4eh.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\Simca\AppData\Roaming\Mozilla\Firefox\Profiles\m8eup4eh.default\searchplugins\
McSiteAdvisor.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-12-18 16776192]
"Roboscan"=c:\program files\roboscan\roboscan\RSLaunch.exe [2013-11-19 257856]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Simca\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-07-28 1536208]
"cz.seznam.software.autoupdate"=C:\Users\Simca\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Simca\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"Steam"=H:\Games\Steam\steam.exe [2017-07-18 3062560]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
E:\Šikovné programy\Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-04 767176]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-11-04 767176]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2017-06-29 5885352]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

[Paulie0001]

======List of files/folders created in the last 1 month======

2017-08-03 18:01:34 ----D---- C:\rsit
2017-08-03 18:01:34 ----D---- C:\Program Files\trend micro
2017-08-02 19:36:58 ----D---- C:\ProgramData\RELOADED
2017-07-24 10:56:16 ----D---- C:\WINDOWS\Panther
2017-07-22 11:43:16 ----D---- C:\WINDOWS\SYSWOW64\directx
2017-07-12 16:46:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-07-12 16:46:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-07-12 16:46:02 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2017-07-12 16:46:01 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-07-12 16:46:00 ----A---- C:\WINDOWS\SYSWOW64\wdc.dll
2017-07-12 16:46:00 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-07-12 16:45:59 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2017-07-12 16:45:58 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-07-12 16:45:58 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2017-07-12 16:45:58 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-07-12 16:45:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-07-12 16:45:57 ----A---- C:\WINDOWS\SYSWOW64\onex.dll
2017-07-12 16:45:56 ----A---- C:\WINDOWS\SYSWOW64\wvc.dll
2017-07-12 16:45:56 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2017-07-12 16:45:56 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-07-12 16:45:56 ----A---- C:\WINDOWS\SYSWOW64\FXSCOMEX.dll
2017-07-12 16:45:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-07-12 16:45:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2017-07-12 16:45:55 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-07-12 16:45:54 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-07-12 16:45:54 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-07-12 16:45:54 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-07-12 16:45:53 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2017-07-12 16:45:53 ----A---- C:\WINDOWS\SYSWOW64\ufat.dll
2017-07-12 16:45:53 ----A---- C:\WINDOWS\SYSWOW64\uexfat.dll
2017-07-12 16:45:53 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-07-12 16:45:53 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2017-07-12 16:45:53 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-07-12 16:45:53 ----A---- C:\WINDOWS\SYSWOW64\cnvfat.dll
2017-07-12 16:45:53 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2017-07-12 16:45:52 ----A---- C:\WINDOWS\SYSWOW64\ifsutil.dll
2017-07-12 16:45:52 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-07-12 16:45:52 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2017-07-12 16:45:52 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2017-07-12 16:45:51 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2017-07-12 16:45:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-07-12 16:45:51 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-07-12 16:45:51 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-07-12 16:45:51 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-07-12 16:45:50 ----A---- C:\WINDOWS\SYSWOW64\mftranscode.dll
2017-07-12 16:45:50 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-07-12 16:45:50 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-07-12 16:45:49 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-07-12 16:45:49 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-07-12 16:45:49 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-07-12 16:45:49 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-07-12 16:45:48 ----A---- C:\WINDOWS\SYSWOW64\XpsDocumentTargetPrint.dll
2017-07-12 16:45:48 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-07-12 16:45:48 ----A---- C:\WINDOWS\SYSWOW64\uReFSv1.dll
2017-07-12 16:45:48 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-07-12 16:45:48 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-07-12 16:45:47 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-07-12 16:45:47 ----A---- C:\WINDOWS\SYSWOW64\uudf.dll
2017-07-12 16:45:47 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-07-12 16:45:47 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-07-12 16:45:47 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-07-12 16:45:47 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2017-07-12 16:45:47 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2017-07-12 16:45:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-07-12 16:45:46 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-07-12 16:45:46 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-07-12 16:45:45 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-07-12 16:45:45 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2017-07-12 16:45:45 ----A---- C:\WINDOWS\SYSWOW64\ntmarta.dll
2017-07-12 16:45:45 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-07-12 16:45:45 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-07-12 16:45:45 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-07-12 16:45:44 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2017-07-12 16:45:44 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-07-12 16:45:44 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-07-12 16:45:44 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-07-12 16:45:44 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2017-07-12 16:45:44 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2017-07-12 16:45:44 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2017-07-12 16:45:44 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2017-07-12 16:45:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-07-12 16:45:43 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-07-12 16:45:43 ----A---- C:\WINDOWS\SYSWOW64\raschap.dll
2017-07-12 16:45:43 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2017-07-12 16:45:43 ----A---- C:\WINDOWS\SYSWOW64\eapprovp.dll
2017-07-12 16:45:43 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2017-07-12 16:45:43 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-07-12 16:45:43 ----A---- C:\WINDOWS\system32\drivers\scmdisk0101.sys
2017-07-12 16:45:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-07-12 16:45:42 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-07-12 16:45:42 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-07-12 16:45:42 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2017-07-12 16:45:42 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\regsvr32.exe
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-07-12 16:45:41 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-07-12 16:45:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-07-12 16:45:40 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-07-12 16:45:40 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2017-07-12 16:45:40 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2017-07-12 16:45:40 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-07-12 16:45:39 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2017-07-12 16:45:39 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-07-12 16:45:39 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-07-12 16:45:39 ----A---- C:\WINDOWS\SYSWOW64\certutil.exe
2017-07-12 16:45:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2017-07-12 16:45:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-07-12 16:45:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-07-12 16:45:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-07-12 16:45:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-07-12 16:45:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-07-12 16:45:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-07-12 16:45:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-07-12 16:45:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-07-12 16:45:37 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-07-12 16:45:37 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2017-07-12 16:45:36 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2017-07-12 16:45:35 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-07-12 16:45:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-07-12 16:45:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-07-12 16:45:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-07-12 16:45:35 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2017-07-12 16:45:35 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2017-07-12 16:45:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-07-12 16:45:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-07-12 16:45:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-07-12 16:45:34 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-07-12 16:45:34 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-07-12 16:45:34 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-07-12 16:45:34 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2017-07-12 16:45:33 ----A---- C:\WINDOWS\SYSWOW64\azroleui.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-07-12 16:45:32 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-07-12 16:45:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-07-12 16:45:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-07-12 16:45:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2017-07-12 16:45:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2017-07-12 16:45:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-07-12 16:45:31 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2017-07-12 16:45:31 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-07-12 16:45:31 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-07-12 16:45:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2017-07-12 16:45:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-07-12 16:45:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-07-12 16:45:30 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-07-12 16:45:30 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-07-12 16:45:30 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2017-07-12 16:45:29 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-07-12 16:45:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2017-07-12 16:45:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2017-07-12 16:45:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-07-12 16:45:29 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-07-12 16:45:29 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-07-12 16:45:29 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2017-07-12 16:45:28 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-07-12 16:45:27 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-07-12 16:45:27 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2017-07-12 16:45:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2017-07-12 16:45:26 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-07-12 16:45:26 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-07-12 16:45:26 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2017-07-12 16:45:26 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-07-12 16:45:26 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-07-12 16:45:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2017-07-12 16:45:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2017-07-12 16:45:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2017-07-12 16:45:25 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2017-07-12 16:45:25 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2017-07-12 16:45:25 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-07-12 16:45:25 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-07-12 16:45:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-07-12 16:45:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2017-07-12 16:45:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2017-07-12 16:45:24 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2017-07-12 16:45:24 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-07-12 16:45:24 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-07-12 16:45:24 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-07-12 16:45:23 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2017-07-12 16:45:23 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2017-07-12 16:45:23 ----A---- C:\WINDOWS\SYSWOW64\fdProxy.dll
2017-07-12 16:45:23 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-07-12 16:45:22 ----A---- C:\WINDOWS\SYSWOW64\msvcr120_clr0400.dll
2017-07-12 16:45:22 ----A---- C:\WINDOWS\SYSWOW64\msvcp120_clr0400.dll
2017-07-12 16:45:22 ----A---- C:\WINDOWS\system32\msvcr120_clr0400.dll
2017-07-12 16:45:22 ----A---- C:\WINDOWS\system32\msvcp120_clr0400.dll
2017-07-12 16:45:15 ----A---- C:\WINDOWS\system32\tquery.dll
2017-07-12 16:45:15 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2017-07-12 16:45:15 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-07-12 16:45:14 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-07-12 16:45:14 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-07-12 16:45:14 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2017-07-12 16:45:14 ----A---- C:\WINDOWS\system32\tdlrecover.exe
2017-07-12 16:45:14 ----A---- C:\WINDOWS\system32\drivers\rootmdm.sys
2017-07-12 16:45:13 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-07-12 16:45:13 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-07-12 16:45:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-07-12 16:45:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2017-07-12 16:45:12 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-07-12 16:45:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-07-12 16:45:12 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-07-12 16:45:12 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-07-12 16:45:12 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-07-12 16:45:11 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-07-12 16:45:11 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-07-12 16:45:11 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-07-12 16:45:11 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-07-12 16:45:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-07-12 16:45:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-07-12 16:45:11 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-07-12 16:45:10 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2017-07-12 16:45:10 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-07-12 16:45:10 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-07-12 16:45:10 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-07-12 16:45:10 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-07-12 16:45:09 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-07-12 16:45:08 ----A---- C:\WINDOWS\system32\wdc.dll
2017-07-12 16:45:08 ----A---- C:\WINDOWS\system32\shell32.dll
2017-07-12 16:45:08 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2017-07-12 16:45:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-07-12 16:45:06 ----A---- C:\WINDOWS\system32\wvc.dll
2017-07-12 16:45:06 ----A---- C:\WINDOWS\system32\tlscsp.dll
2017-07-12 16:45:06 ----A---- C:\WINDOWS\system32\onex.dll
2017-07-12 16:45:06 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-07-12 16:45:04 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-07-12 16:45:03 ----A---- C:\WINDOWS\system32\mos.dll
2017-07-12 16:45:02 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-07-12 16:45:02 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-07-12 16:45:02 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-07-12 16:45:02 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-07-12 16:45:01 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-07-12 16:44:59 ----A---- C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-07-12 16:44:59 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-07-12 16:44:58 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-07-12 16:44:58 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-07-12 16:44:58 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-07-12 16:44:57 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-07-12 16:44:57 ----A---- C:\WINDOWS\system32\tssrvlic.dll
2017-07-12 16:44:57 ----A---- C:\WINDOWS\system32\raschap.dll
2017-07-12 16:44:57 ----A---- C:\WINDOWS\system32\ProvisioningHandlers.dll
2017-07-12 16:44:57 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-07-12 16:44:57 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-07-12 16:44:57 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-07-12 16:44:56 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-07-12 16:44:56 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-07-12 16:44:56 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-07-12 16:44:56 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-07-12 16:44:56 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-07-12 16:44:55 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-07-12 16:44:55 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-07-12 16:44:55 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-07-12 16:44:55 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-07-12 16:44:55 ----A---- C:\WINDOWS\system32\eapprovp.dll
2017-07-12 16:44:55 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-07-12 16:44:55 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-07-12 16:44:54 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-07-12 16:44:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-07-12 16:44:54 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-07-12 16:44:54 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-07-12 16:44:54 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-07-12 16:44:54 ----A---- C:\WINDOWS\system32\lsass.exe
2017-07-12 16:44:53 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-07-12 16:44:53 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-07-12 16:44:53 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-07-12 16:44:53 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-07-12 16:44:52 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-07-12 16:44:52 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-07-12 16:44:52 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-07-12 16:44:51 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-07-12 16:44:51 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-07-12 16:44:51 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2017-07-12 16:44:50 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-07-12 16:44:37 ----A---- C:\WINDOWS\system32\cscui.dll
2017-07-12 16:44:36 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-07-12 16:44:36 ----A---- C:\WINDOWS\system32\rdpencom.dll
2017-07-12 16:44:36 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-07-12 16:44:35 ----A---- C:\WINDOWS\system32\wksprt.exe
2017-07-12 16:44:35 ----A---- C:\WINDOWS\system32\rastls.dll
2017-07-12 16:44:35 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-07-12 16:44:35 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2017-07-12 16:44:35 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-07-12 16:44:34 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-07-12 16:44:33 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-07-12 16:44:31 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2017-07-12 16:44:31 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-07-12 16:44:31 ----A---- C:\WINDOWS\system32\dcomp.dll
2017-07-12 16:44:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-07-12 16:44:28 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-07-12 16:44:27 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-07-12 16:44:26 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-07-12 16:44:26 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-07-12 16:44:25 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-07-12 16:44:24 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-07-12 16:44:24 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2017-07-12 16:44:23 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-07-12 16:44:22 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-07-12 16:44:21 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-07-12 16:44:20 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-07-12 16:44:19 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-07-12 16:44:18 ----A---- C:\WINDOWS\system32\wininet.dll
2017-07-12 16:44:18 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-07-12 16:44:17 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-07-12 16:44:16 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-07-12 16:44:16 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-07-12 16:44:16 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-07-12 16:44:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-07-12 16:44:14 ----A---- C:\WINDOWS\system32\ole32.dll
2017-07-12 16:44:14 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-07-12 16:44:13 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-07-12 16:44:13 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-07-12 16:44:13 ----A---- C:\WINDOWS\system32\drivers\http.sys
2017-07-12 16:44:12 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-07-12 16:44:11 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-07-12 16:44:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-07-12 16:44:11 ----A---- C:\WINDOWS\system32\msinfo32.exe
2017-07-12 16:44:10 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-07-12 16:44:10 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-07-12 16:44:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-07-12 16:44:10 ----A---- C:\WINDOWS\system32\hal.dll
2017-07-12 16:44:10 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2017-07-12 16:44:10 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2017-07-12 16:44:09 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-07-12 16:44:09 ----A---- C:\WINDOWS\system32\snmptrap.exe
2017-07-12 16:44:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-07-12 16:44:09 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-07-12 16:44:09 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-07-12 16:44:09 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-07-12 16:44:08 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-07-12 16:44:08 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-07-12 16:44:08 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-07-12 16:44:08 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-07-12 16:44:08 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-07-12 16:44:07 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-07-12 16:44:07 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-07-12 16:44:07 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-07-12 16:44:07 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-07-12 16:44:07 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-07-12 16:44:07 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-07-12 16:44:06 ----A---- C:\WINDOWS\system32\d2d1.dll
2017-07-12 16:44:06 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-07-12 16:44:06 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-07-12 16:44:06 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-07-12 16:44:05 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2017-07-12 16:44:05 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-07-12 16:44:05 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-07-12 16:44:05 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2017-07-12 16:44:05 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-07-12 16:44:04 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-07-12 16:44:04 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-07-12 16:44:04 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-07-12 16:44:04 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-07-12 16:44:04 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-07-12 16:44:04 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-07-12 16:44:04 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-07-12 16:44:03 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2017-07-12 16:44:03 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-07-12 16:44:03 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-07-12 16:44:02 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-07-12 16:44:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-07-12 16:44:02 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-07-12 16:44:02 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-07-12 16:44:01 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-07-12 16:44:01 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-07-12 16:44:01 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-07-12 16:44:01 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-07-12 16:44:00 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-07-12 16:44:00 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-07-12 16:44:00 ----A---- C:\WINDOWS\system32\wlidprov.dll
2017-07-12 16:44:00 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-07-12 16:44:00 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-07-12 16:44:00 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-07-12 16:44:00 ----A---- C:\WINDOWS\system32\DeviceDirectoryClient.dll
2017-07-12 16:44:00 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-07-12 16:43:59 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-07-12 16:43:59 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-07-12 16:43:59 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-07-12 16:43:59 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-07-12 16:43:59 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-07-12 16:43:58 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-07-12 16:43:58 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-07-12 16:43:58 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-07-12 16:43:58 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-07-12 16:43:58 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-07-12 16:43:57 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-07-12 16:43:57 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-07-12 16:43:57 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-07-12 16:43:52 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2017-07-12 16:43:49 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2017-07-12 16:43:49 ----A---- C:\WINDOWS\system32\twinui.dll
2017-07-12 16:43:47 ----A---- C:\WINDOWS\system32\untfs.dll
2017-07-12 16:43:47 ----A---- C:\WINDOWS\system32\ufat.dll
2017-07-12 16:43:47 ----A---- C:\WINDOWS\system32\uexfat.dll
2017-07-12 16:43:47 ----A---- C:\WINDOWS\system32\ifsutil.dll
2017-07-12 16:43:47 ----A---- C:\WINDOWS\system32\cnvfat.dll
2017-07-12 16:43:47 ----A---- C:\WINDOWS\system32\autochk.exe
2017-07-12 16:43:47 ----A---- C:\WINDOWS\system32\autofmt.exe
2017-07-12 16:43:47 ----A---- C:\WINDOWS\system32\autoconv.exe
2017-07-12 16:43:46 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2017-07-12 16:43:46 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-07-12 16:43:46 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2017-07-12 16:43:46 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-07-12 16:43:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-12 16:43:45 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-07-12 16:43:44 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-07-12 16:43:44 ----A---- C:\WINDOWS\system32\mispace.dll
2017-07-12 16:43:43 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-07-12 16:43:43 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-07-12 16:43:42 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-07-12 16:43:42 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-12 16:43:41 ----A---- C:\WINDOWS\system32\Wldap32.dll
2017-07-12 16:43:41 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-07-12 16:43:41 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-07-12 16:43:41 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2017-07-12 16:43:41 ----A---- C:\WINDOWS\system32\combase.dll
2017-07-12 16:43:40 ----A---- C:\WINDOWS\system32\uudf.dll
2017-07-12 16:43:40 ----A---- C:\WINDOWS\system32\uReFSv1.dll
2017-07-12 16:43:40 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2017-07-12 16:43:40 ----A---- C:\WINDOWS\explorer.exe
2017-07-12 16:43:39 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-07-12 16:43:39 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-07-12 16:43:39 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-07-12 16:43:39 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-07-12 16:43:38 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2017-07-12 16:43:38 ----A---- C:\WINDOWS\system32\qmgr.dll
2017-07-12 16:43:38 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2017-07-12 16:43:38 ----A---- C:\WINDOWS\system32\KdsCli.dll
2017-07-12 16:43:38 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2017-07-12 16:43:38 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-07-12 16:43:37 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-07-12 16:43:37 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-07-12 16:43:37 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-07-12 16:43:37 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-07-12 16:43:36 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-07-12 16:43:36 ----A---- C:\WINDOWS\system32\certutil.exe
2017-07-12 16:43:36 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-07-12 16:43:36 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2017-07-12 16:43:36 ----A---- C:\WINDOWS\system32\AppVClient.exe
2017-07-12 16:43:36 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2017-07-12 16:43:35 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-07-12 16:43:35 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-07-12 16:43:35 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2017-07-12 16:43:34 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-07-12 16:43:34 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2017-07-12 16:43:34 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-07-12 16:43:33 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-07-12 16:43:33 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-07-12 16:43:33 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-07-12 16:43:32 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-07-12 16:43:32 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-07-12 16:43:32 ----A---- C:\WINDOWS\system32\certprop.dll
2017-07-12 16:43:32 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-07-12 16:43:31 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-07-12 16:43:31 ----A---- C:\WINDOWS\system32\sendmail.dll
2017-07-12 16:43:31 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-07-12 16:43:31 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-07-12 16:43:31 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-07-12 16:43:31 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2017-07-12 16:43:30 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-07-12 16:43:30 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-07-12 16:43:30 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-07-12 16:43:30 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-07-12 16:43:30 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-07-12 16:43:29 ----A---- C:\WINDOWS\system32\CPFilters.dll
2017-07-12 16:43:28 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-07-12 16:43:28 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-07-12 16:43:28 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-07-12 16:43:28 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-07-12 16:43:28 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-07-12 16:43:28 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-07-12 16:43:27 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-07-12 16:43:27 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-07-12 16:43:27 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-07-12 16:43:26 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-07-12 16:43:26 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2017-07-12 16:43:25 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2017-07-12 16:43:25 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-07-12 16:43:24 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-07-12 16:43:24 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-07-12 16:43:24 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-07-12 16:43:24 ----A---- C:\WINDOWS\system32\easwrt.dll
2017-07-12 16:43:24 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-07-12 16:43:24 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-07-12 16:43:23 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-07-12 16:43:23 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-07-12 16:43:23 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-07-12 16:43:23 ----A---- C:\WINDOWS\system32\fdProxy.dll
2017-07-12 16:43:22 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-07-12 16:43:22 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-07-12 16:43:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-07-12 16:43:22 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-07-12 16:43:22 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-07-12 16:43:21 ----A---- C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
2017-07-12 16:43:21 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-07-12 16:43:20 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2017-07-12 16:43:20 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-07-10 16:23:11 ----AD---- C:\Program Files (x86)\LogMeIn Hamachi
2017-07-08 19:59:22 ----D---- C:\Users\Simca\AppData\Roaming\AVAST Software
2017-07-08 19:59:01 ----AD---- C:\Program Files (x86)\Booking
2017-07-08 19:57:17 ----A---- C:\WINDOWS\system32\drivers\lpsport.sys
2017-07-08 19:55:05 ----D---- C:\Program Files\AVAST Software
2017-07-08 19:54:51 ----D---- C:\ProgramData\BOINC
2017-07-08 19:54:47 ----D---- C:\WINDOWS\Downloaded Installations
2017-07-08 19:54:39 ----D---- C:\Users\Simca\AppData\Roaming\WarThunder
2017-07-08 19:50:54 ----D---- C:\ProgramData\McAfee
2017-07-08 18:47:47 ----A---- C:\WINDOWS\fonts\AgencyB.TTF.BAK

======List of files/folders modified in the last 1 month======

2017-08-03 18:01:51 ----D---- C:\Users\Simca\AppData\Roaming\Seznam.cz
2017-08-03 18:01:45 ----D---- C:\WINDOWS\Prefetch
2017-08-03 18:01:34 ----RD---- C:\Program Files
2017-08-03 18:00:48 ----D---- C:\WINDOWS\AppReadiness
2017-08-03 18:00:18 ----D---- C:\WINDOWS\Temp
2017-08-03 17:59:28 ----D---- C:\WINDOWS\system32\Tasks
2017-08-03 17:55:53 ----A---- C:\WINDOWS\system32\ayboot.ini
2017-08-03 17:55:31 ----D---- C:\ProgramData\NVIDIA
2017-08-03 17:49:28 ----D---- C:\WINDOWS\system32\sru
2017-08-03 17:49:14 ----D---- C:\Users\Simca\AppData\Roaming\uTorrent
2017-08-03 10:57:07 ----D---- C:\WINDOWS\system32\SleepStudy
2017-08-03 08:38:48 ----AD---- C:\Program Files (x86)\Battle.net
2017-08-02 19:36:58 ----HD---- C:\ProgramData
2017-08-02 19:35:55 ----RSD---- C:\WINDOWS\assembly
2017-08-02 19:35:02 ----SHD---- C:\System Volume Information
2017-08-02 15:04:23 ----HD---- C:\Program Files\WindowsApps
2017-08-02 10:31:30 ----D---- C:\WINDOWS\system32\config
2017-08-02 10:25:25 ----RD---- C:\WINDOWS\Microsoft.NET
2017-07-31 18:59:36 ----D---- C:\WINDOWS\system32\catroot2
2017-07-29 11:02:41 ----D---- C:\Program Files (x86)\Common Files
2017-07-29 11:02:38 ----D---- C:\Program Files (x86)
2017-07-29 00:21:54 ----SHDC---- C:\WINDOWS\Installer
2017-07-29 00:21:51 ----D---- C:\Windows
2017-07-24 11:45:40 ----D---- C:\WINDOWS\Logs
2017-07-24 10:56:14 ----D---- C:\WINDOWS\system32\LogFiles
2017-07-22 11:43:16 ----D---- C:\WINDOWS\SysWOW64
2017-07-20 22:55:47 ----D---- C:\Users\Simca\AppData\Roaming\vlc
2017-07-14 16:50:36 ----D---- C:\WINDOWS\system32\Macromed
2017-07-14 16:50:35 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-07-13 21:44:04 ----HD---- C:\$WINDOWS.~BT
2017-07-13 09:21:19 ----D---- C:\WINDOWS\rescache
2017-07-12 19:25:51 ----D---- C:\WINDOWS\System32
2017-07-12 19:25:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-12 19:22:56 ----D---- C:\WINDOWS\WinSxS
2017-07-12 19:21:28 ----D---- C:\WINDOWS\INF
2017-07-12 19:20:25 ----D---- C:\WINDOWS\system32\DriverStore
2017-07-12 19:14:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-07-12 19:14:23 ----D---- C:\WINDOWS\system32\wbem
2017-07-12 19:14:23 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-07-12 19:14:22 ----D---- C:\WINDOWS\system32\oobe
2017-07-12 19:14:21 ----D---- C:\WINDOWS\system32\en-US
2017-07-12 19:14:21 ----D---- C:\WINDOWS\system32\drivers
2017-07-12 19:14:21 ----D---- C:\WINDOWS\system32\cs-CZ
2017-07-12 19:14:21 ----D---- C:\WINDOWS\system32\appraiser
2017-07-12 19:14:20 ----D---- C:\WINDOWS\ShellExperiences
2017-07-12 19:14:19 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-07-12 19:14:19 ----D---- C:\Program Files\Windows Photo Viewer
2017-07-12 19:14:19 ----D---- C:\Program Files\Windows Mail
2017-07-12 19:14:19 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-07-12 17:12:03 ----D---- C:\WINDOWS\CbsTemp
2017-07-12 16:55:00 ----D---- C:\WINDOWS\system32\MRT
2017-07-12 16:50:29 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-07-08 20:16:28 ----RSD---- C:\WINDOWS\Fonts
2017-07-08 20:14:47 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-07-08 19:56:36 ----D---- C:\ProgramData\AVAST Software
2017-07-07 18:38:51 ----D---- C:\WINDOWS\system32\UNP
2017-07-07 18:38:51 ----AD---- C:\Program Files\UNP

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdide64;amdide64; C:\WINDOWS\System32\drivers\amdide64.sys [2016-06-06 13848]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2015-12-09 26528]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2009-03-15 85424]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-16 21648880]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-16 674288]
R3 AtiHDAudioService;@oem6.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-10-17 110096]
R3 Hamachi;@oem54.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2016-05-04 45680]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-12-18 5523456]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-09-25 175616]
R3 RoboFww;RoboFww; \??\c:\program files\roboscan\roboscan\plugin\realtime\RoboFww.sys [2013-11-19 35616]
R3 RoboRtwIFDrv;RoboRtwIFDrv; \??\c:\program files\roboscan\roboscan\plugin\realtime\RoboRtw.sys [2013-11-19 97056]
R3 rt640x64;@oem87.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-12-18 946696]
R3 tap0901t;@oem89.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\System32\drivers\tap0901t.sys [2016-04-26 48824]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-06-21 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 androidusb;@oem0.inf,%SAMSUNG.Adb.SvcDesc%;SAMSUNG Android Composite ADB Interface Driver; C:\WINDOWS\System32\Drivers\ssadadb.sys [2010-12-21 36328]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 127328]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-17 157024]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-17 141152]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 dg_ssudbus;@oem70.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2015-10-29 22200]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-17 179040]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 pelmouse;@oem86.inf,%PELMOUSE.SvcDesc%;Mouse Suite Driver; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [2016-07-11 26880]
S3 pelusblf;@oem86.inf,%PELUSBLF.SvcDesc%;USB Mouse Low Filter Driver; C:\WINDOWS\system32\DRIVERS\pelusblf.sys [2016-07-11 33048]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 RTL8167;Realtek 8167 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt64win7.sys [2015-12-09 1026304]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2017-06-21 124928]
S3 ssadbus;@oem52.inf,%SAMSUNG.Service.Desc%;SAMSUNG Android USB Composite Device driver (WDM); C:\WINDOWS\System32\drivers\ssadbus.sys [2011-06-02 157672]
S3 ssadmdfl;@oem26.inf,%Samsung.Filter.Name%;SAMSUNG Android USB Modem (Filter); C:\WINDOWS\system32\DRIVERS\ssadmdfl.sys [2011-06-02 16872]
S3 ssadmdm;@oem26.inf,%Samsung.Service.Name%;SAMSUNG Android USB Modem Drivers; C:\WINDOWS\system32\DRIVERS\ssadmdm.sys [2011-06-02 177640]
S3 ssadserd;@oem72.inf,%Samsung.Service.Name%;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\WINDOWS\system32\DRIVERS\ssadserd.sys [2011-06-02 146920]
S3 ssudmdm;@oem29.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-16 255472]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-04 351944]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_35180;CDPUserSvc_35180; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2017-06-29 3418024]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-05-27 419248]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-09-25 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-03-04 922968]
R2 OneSyncSvc_35180;Hostitel synchronizace_35180; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2014-06-17 76888]
R2 Roboscan_RTSrv;Roboscan Real-time Service; C:\Program Files\Roboscan\Roboscan\RSRTSrv.rse [2013-11-19 439104]
R2 Roboscan_UpdSrv;Roboscan Update Service; C:\Program Files\Roboscan\Roboscan\RSUpdSrv.rse [2013-11-19 842048]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-03-04 411936]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_35180;Data kontaktů_35180; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-07-18 1608480]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-14 272384]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_35180;Služba zasílání zpráv_35180; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-10-15 147624]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-12-20 2104840]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 2889896]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-04 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-06-21 822624]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.