Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Blue screen

V tomto fóru se řeší problematika modré smrti - BSOD

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Odpovědět
Zpráva
Autor
Kubajzzz
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 09 lis 2016 10:17

Blue screen

#1 Příspěvek od Kubajzzz »

Dobrý den, prosím mohli byste mi zkontrolovat log?? Z ničeho nic se mi objevuje blue screen a restartuje se mi pc.

Logfile of random's system information tool 1.14 (written by random/random)
Run by Kubajz at 2016-11-09 10:20:48
Microsoft Windows 10 Home
System drive C: has 48 GB (49%) free of 98 GB
Total RAM: 8052 MB (37% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:20:52, on 09.11.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
D:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
D:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.30\deploy\LoLLauncher.exe
D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.70\deploy\LoLPatcher.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.230\deploy\LolClient.exe
C:\Program Files\trend micro\Kubajz_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo15.msn.com/?pc=LCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: SuperAdBlockerBHO Class - {00000000-6C30-11D8-9363-000AE6309654} - C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABBHO.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Kubajz\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [SuperAdBlocker] C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SAdBlock.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "D:\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Send to OneNote.lnk = C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O20 - Winlogon Notify: !SABWinLogon - C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABWINLO.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCSDK - Lenovo - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Unknown owner - C:\WINDOWS\system32\IntelCpHDCPSvc.exe (file missing)
O23 - Service: Dolby DAX2 API Service (DAX2API) - Unknown owner - C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - D:\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GDCAgent - Lenovo - C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (ibtsiva.exe) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: System Interface Foundation Service (ImControllerService) - Lenovo Group Limited - c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LSCWinService - Lenovo - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Wireless Controller Service - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
O23 - Service: O2FLASH - BayHubTech/O2Micro International - C:\WINDOWS\System32\drivers\o2flash.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Super Ad Blocker Service (SABSVC) - SuperAdBlocker.com - C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 14427 bytes

======Enumerating Processes======

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-92073195-f6fe-49f3-90ec-47e33a138fe2 -SystemEventPortName:HostProcess-c1f75dcf-a2ea-4a0c-b0b4-1bdd209c01c5 -IoCancelEventPortName:HostProcess-bf75e40f-95b7-4f0d-8d57-4cde3d0c41f0 -NonStateChangingEventPortName:HostProcess-c362a590-df71-4000-8f35-62e1235e5128 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7e549edd-5903-4034-bcd8-7c93112eeb4a -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ecefa2d5-e975-4738-a42d-b7c074e8f4b7 -SystemEventPortName:HostProcess-060d09a7-122e-434e-95a2-5f39ae4c2efe -IoCancelEventPortName:HostProcess-0a694368-c9eb-4364-9d57-86c56f9b3229 -NonStateChangingEventPortName:HostProcess-8195bfa2-53ec-480a-8360-bf9ad2e83944 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:93485030-9a49-467d-9054-866227add13e -DeviceGroupId:
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 1702009195280
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\dashost.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem"
C:\WINDOWS\System32\drivers\o2flash.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe"
"C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\AUDIODG.EXE 0x2e8
"C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
C:\WINDOWS\System32\dwm.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -l 3 -c
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe" 1 1 1 1
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Kubajz\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel=-m --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=54.0.2840.71 --handshake-handle=0x1b8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/ClientSideDetectionModel/Model0/DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/enabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,15,19,33,50,59 --gpu-vendor-id=0x8086 --gpu-device-id=0x191b --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4271 --gpu-driver-date=8-11-2015 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x139b --mojo-application-channel-token=B4503DBFE6D6845019C777CFC1E2ABB8 --mojo-platform-channel-handle=1300 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=FCB62A9BA8492BB6F695D475FC8A60E6 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=FCB62A9BA8492BB6F695D475FC8A60E6 --channel="7120.2.1137041493\784435870" --mojo-platform-channel-handle=2780 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/WebFontsInterventionV2/Default/ --primordial-pipe-token=4D7FC87A6CEFA39039A41FF2EA50E051 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=4D7FC87A6CEFA39039A41FF2EA50E051 --channel="7120.3.1142335059\164176212" --mojo-platform-channel-handle=2832 /prefetch:1
"C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE" /tsr
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=FC96C3853D104E1C47F71C5D85C8D5AA --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=FC96C3853D104E1C47F71C5D85C8D5AA --channel="7120.4.1492587887\284702135" --mojo-platform-channel-handle=4652 /prefetch:1
C:\WINDOWS\System32\fontdrvhost.exe
"C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" -update_completed Succeeded
"D:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe" updateandrun lol_launcher LoLLauncher.exe
"C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe"
D:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.30\deploy\LoLLauncher.exe
D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.70\deploy\LoLPatcher.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
"C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe" -name 7ef2cc90-f984-4fbb-9e26-8e662d576da2 -runas SYSTEM -pluginName LenovoSystemUpdatePlugin -pluginVersion 1.2.46.0
"C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe" -name c4a31d92-8a99-4523-a7e4-7334238daddf -runas SYSTEM -pluginName LenovoAuthenticationPlugin -pluginVersion 1.2.52.0
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=ECAB4D2616A5D2D3BCF003132718D461 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=ECAB4D2616A5D2D3BCF003132718D461 --channel="7120.9.225833286\573444359" --mojo-platform-channel-handle=2352 /prefetch:1
D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.230\deploy\LolClient.exe
"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=2E596AFE1F154F5C9A397050563E889A --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=2E596AFE1F154F5C9A397050563E889A --channel="7120.11.852841484\2110569728" --mojo-platform-channel-handle=6736 /prefetch:1
"C:\WINDOWS\system32\cmd.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=34D37A7A946259342CCABD4AB0DA6B7E --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=34D37A7A946259342CCABD4AB0DA6B7E --channel="7120.13.357900017\2142111068" --mojo-platform-channel-handle=6184 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/*AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=ECCD607ACBA4AEEE3026E6B7DEE7B754 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=ECCD607ACBA4AEEE3026E6B7DEE7B754 --channel="7120.15.1430200950\246815213" --mojo-platform-channel-handle=6380 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutomaticTabDiscarding<AutomaticTabDiscarding,BlockSmallPluginContent<PluginPowerSaverTiny,MaterialDesignUserManager<MaterialDesignUserManager,NonValidatingReloadOnNormalReload<NonValidatingReloadOnNormalReload,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PreconnectMore<PreconnectMore,SSLPostQuantumExperiment<SSLPostQuantum,SubresourceFilter<SubresourceFilter,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PointerEvent<PointerEvent,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/Control/*AutofillCreditCardSigninPromo/Default/*AutomaticTabDiscarding/Enabled_Once_10-gen2/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Enabled/*ChromeChannelStable/Enabled/*ClientSideDetectionModel/Model0/*DisallowFetchForDocWrittenScriptsInMainFrame/Default/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/ExtensionDeveloperModeWarning/Enabled/*GFE/Default/GoogleBrandedContextMenu/default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/MaterialDesignUserManager/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*NonValidatingReloadOnNormalReload/Enabled2/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/enabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SafeBrowsingUpdateFrequency/Default/*SignInPasswordPromo/Default/*StrictSecureCookies/Default/*SubresourceFilter/EnabledForPhishingSites/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_39/*UMA-Uniformity-Trial-10-Percent/group_04/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=47B6F2692BAB8AF59A74E2B92D87C513 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1.25 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=47B6F2692BAB8AF59A74E2B92D87C513 --channel="7120.18.119829265\948597371" --mojo-platform-channel-handle=8848 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 648 652 660 8192 656
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\Kubajz\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\WINDOWS\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\WINDOWS\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\Kubajz\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\PDVDServ12 Task - C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1474625154 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{430F9519-BB0E-475F-8801-5DD3470583A9} - C:\Windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{2264AC7F-6A2D-4E74-9272-B0DBF1A9C99C} - C:\WINDOWS\system32\pcalua.exe -a "D:\Riot Games\League of Legends\lol.launcher.exe" -d "D:\Riot Games\League of Legends"
C:\WINDOWS\system32\tasks\{89DB772D-50B2-4005-AB8B-46EA28D2D0EC} - C:\Windows\system32\pcalua.exe -a "D:\Riot Games\League of Legends\lol.launcher.exe" -d "D:\Riot Games\League of Legends"
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe Reboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\PLA\LSC Memory - C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Subscription Maintenance - C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe scan upload mininterval:2880
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe scan upload
C:\WINDOWS\system32\tasks\Lenovo\Experience Improvement - "C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe"
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program 64 35 - "%ProgramFiles(x86)%\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe"
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Solution Center Launcher - %programfiles%\lenovo\lenovo solution center\App\LSCService.exe Actions UpdateStatus
C:\WINDOWS\system32\tasks\Lenovo\LSC\Lenovo Solution Center Notifications - %programfiles%\Lenovo\Lenovo Solution Center\LSCNotify.exe /show
C:\WINDOWS\system32\tasks\Lenovo\LSC\LSCHardwareScan - "C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe" -diag HWScan
C:\WINDOWS\system32\tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance - %windir%\system32\sc.exe START ImControllerService
C:\WINDOWS\system32\tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_TVSUUpdateTask - reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
C:\WINDOWS\system32\tasks\CyberLink\Photo Master Gadget startup - C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe backgroundagent

=========Google Chrome=========

C:\Users\Kubajz\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension eofcbnmajmjmplflapaojjnihcjkigck 0 Avast SafePrice 12.0.102
Extension felcaaldnbdncclmgdcncolpebgiejap
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.5.0
Extension gomekmidlodglbbmalcneegieacbdmki 1 Avast Online Security 12.0.124
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.0
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.0
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5416.905.0.6
Homepage:
default_search_provider.search_url:
C:\Users\Kubajz\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=


======Registry dump======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={386BB8C7-3E84-4667-A677-70F8218498E3}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{386BB8C7-3E84-4667-A677-70F8218498E3}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=LCTE


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={386BB8C7-3E84-4667-A677-70F8218498E3}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{386BB8C7-3E84-4667-A677-70F8218498E3}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=LCTE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-08 214216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-08 2326320]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00000000-6C30-11D8-9363-000AE6309654}]
SuperAdBlockerBHO Class - C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABBHO.dll [2007-08-01 249856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-10-08 151248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-10-08 1632048]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-09-23 16482040]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-09-23 1427712]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-09-23 1427712]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-09-23 1427712]
"LenovoUtility"=C:\Program Files\Lenovo\LenovoUtility\utility.exe [2015-11-13 791848]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-30 36352]
"DAX2_APP"=C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [2015-06-16 628736]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2016-09-30 1844280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Kubajz\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-10-12 633024]
"SuperAdBlocker"=C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SAdBlock.exe [2007-08-01 1564672]
"DAEMON Tools Lite Automount"=D:\DAEMON Tools Lite\DTAgent.exe [2016-08-29 4299968]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-08-26 8912088]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"=C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [2015-07-21 110008]
"CLVirtualDrive"=C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [2015-07-21 492472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-11-08 9044392]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2016-10-31 596640]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16 1156824]

C:\Users\Kubajz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Send to OneNote.lnk - C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000D7}"=C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABSEHB.DLL [2006-11-07 77824]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-11-09 10:20:48 ----D---- C:\rsit
2016-11-09 10:20:48 ----D---- C:\Program Files\trend micro
2016-11-09 00:20:13 ----D---- C:\Users\Kubajz\AppData\Roaming\Solvusoft
2016-11-09 00:19:21 ----D---- C:\ProgramData\Solvusoft
2016-11-09 00:19:21 ----D---- C:\ProgramData\~0
2016-10-28 22:37:03 ----D---- C:\Users\Kubajz\AppData\Roaming\FiraxisLive
2016-10-28 22:33:45 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-10-28 22:25:17 ----D---- C:\WINDOWS\Minidump
2016-10-28 19:22:41 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2016-10-28 19:22:37 ----D---- C:\Program Files (x86)\VulkanRT
2016-10-28 19:22:37 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2016-10-28 19:22:37 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2016-10-28 19:22:37 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2016-10-28 19:22:37 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvopencl.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvdispgenco6437570.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvdispco6437570.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvcuda.dll
2016-10-28 19:20:31 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2016-10-28 17:30:24 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-10-28 17:30:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-10-28 17:30:24 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-10-28 17:30:24 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-10-28 17:30:24 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-28 17:30:23 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-28 17:30:23 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-28 17:30:23 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-10-28 17:30:22 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-10-28 17:30:22 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-10-28 17:30:22 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-28 17:30:22 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-10-28 17:30:21 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-28 17:30:21 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-28 17:30:21 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-28 17:30:20 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-10-28 17:30:20 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-10-28 17:30:20 ----A---- C:\WINDOWS\system32\msctf.dll
2016-10-28 17:30:19 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-10-28 17:30:19 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-28 17:30:19 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-28 17:30:16 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-28 17:30:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 17:30:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 17:30:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 17:30:14 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-10-28 17:30:14 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-10-28 17:30:14 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-10-28 17:30:13 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-10-28 17:30:13 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-10-28 17:30:13 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-28 17:30:13 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-10-28 17:30:12 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-10-28 17:30:12 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-10-28 17:30:12 ----A---- C:\WINDOWS\system32\ole32.dll
2016-10-28 17:30:12 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-10-28 17:30:12 ----A---- C:\WINDOWS\system32\energy.dll
2016-10-28 17:30:12 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-10-28 17:30:12 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2016-10-28 17:30:11 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2016-10-28 17:30:11 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-10-28 17:30:11 ----A---- C:\WINDOWS\SYSWOW64\iscsiwmi.dll
2016-10-28 17:30:11 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2016-10-28 17:30:11 ----A---- C:\WINDOWS\system32\usocore.dll
2016-10-28 17:30:11 ----A---- C:\WINDOWS\system32\user32.dll
2016-10-28 17:30:11 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-10-28 17:30:11 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-10-28 17:30:11 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-10-28 17:30:11 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-10-28 17:30:10 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-28 17:30:10 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-28 17:30:10 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-10-28 17:30:10 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-10-28 17:30:10 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-10-28 17:30:09 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-10-28 17:30:09 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-10-28 17:30:08 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-28 17:30:08 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-28 17:30:08 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-28 17:30:08 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-28 17:30:08 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-28 17:30:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-28 17:30:06 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-28 17:30:06 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-10-28 17:30:06 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-28 17:30:06 ----A---- C:\WINDOWS\explorer.exe
2016-10-28 17:30:05 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-28 17:30:04 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-10-28 17:30:04 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-10-28 17:30:04 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-10-28 17:30:04 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-10-28 17:30:04 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-28 17:30:04 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-10-28 17:30:03 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\fontext.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-10-28 17:30:03 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\sud.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\stobject.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\powercfg.exe
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\gameux.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\fhcpl.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\Display.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\DevicePairingFolder.dll
2016-10-28 17:30:02 ----A---- C:\WINDOWS\system32\autoplay.dll
2016-10-28 17:30:01 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-10-28 17:30:01 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-28 17:30:01 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-10-28 17:30:01 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-28 17:30:01 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-10-28 17:30:01 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-10-28 17:30:00 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-28 17:30:00 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-10-28 17:29:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-10-28 17:29:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-10-28 17:29:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-10-28 17:29:59 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-10-28 17:29:59 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-10-28 17:29:58 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-10-28 17:29:58 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-28 17:29:58 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-10-28 17:29:58 ----A---- C:\WINDOWS\system32\mispace.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll

Kubajzzz
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 09 lis 2016 10:17

Re: Blue screen

#2 Příspěvek od Kubajzzz »

2016-10-28 17:29:57 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-28 17:29:57 ----A---- C:\WINDOWS\splwow64.exe
2016-10-28 17:29:56 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-10-28 17:29:56 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-10-28 17:29:56 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-28 17:29:56 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-10-28 17:29:56 ----A---- C:\WINDOWS\system32\esent.dll
2016-10-28 17:29:56 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\SYSWOW64\wmpeffects.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\system32\wer.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-10-28 17:29:55 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2016-10-28 17:29:54 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\wmpshell.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\weretw.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\cmifw.dll
2016-10-28 17:29:54 ----A---- C:\WINDOWS\system32\authui.dll
2016-10-28 17:29:52 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2016-10-28 17:29:52 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2016-10-28 17:29:52 ----A---- C:\WINDOWS\SYSWOW64\chartv.dll
2016-10-28 17:29:52 ----A---- C:\WINDOWS\SYSWOW64\esentutl.exe
2016-10-28 17:29:52 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2016-10-28 17:29:52 ----A---- C:\WINDOWS\system32\wups.dll
2016-10-28 17:29:52 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-10-28 17:29:52 ----A---- C:\WINDOWS\system32\chartv.dll
2016-10-28 17:29:52 ----A---- C:\WINDOWS\system32\esentutl.exe
2016-10-28 17:29:51 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-10-28 17:29:50 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-28 17:29:50 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-10-28 17:29:50 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-10-28 17:29:50 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-10-28 17:29:50 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-10-28 17:29:49 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-28 17:29:49 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-28 17:29:49 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-28 17:29:49 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-10-28 17:29:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-10-28 17:29:48 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-28 17:29:48 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-28 17:29:48 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-28 17:29:48 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-10-28 17:29:47 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-10-28 17:29:47 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-28 17:29:47 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-28 17:29:47 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-10-28 17:29:47 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-10-28 17:29:47 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-10-28 17:29:47 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-28 17:29:46 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-10-28 17:29:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-10-28 17:29:45 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-10-28 17:29:44 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-10-28 17:29:44 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-28 17:29:44 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-10-28 17:29:44 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-10-28 17:29:44 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-28 17:29:44 ----A---- C:\WINDOWS\system32\combase.dll
2016-10-28 17:29:44 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-10-28 17:29:44 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-28 17:29:43 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2016-10-28 17:29:42 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-28 17:29:42 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\system32\efsext.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-10-28 17:29:42 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\SYSWOW64\autoplay.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\system32\shdocvw.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\system32\msinfo32.exe
2016-10-28 17:29:39 ----A---- C:\WINDOWS\system32\EncDec.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-28 17:29:39 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-10-28 17:29:38 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-10-28 17:29:38 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-10-28 17:29:38 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-28 17:29:38 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-10-28 17:29:38 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-10-28 17:29:38 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-28 17:29:37 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-28 17:29:37 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-28 17:29:37 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-28 17:29:37 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-10-28 17:29:37 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-28 17:29:37 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-10-28 17:29:37 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-10-28 17:29:37 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-28 17:29:36 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-28 17:29:36 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-28 17:29:36 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-28 17:29:36 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-10-28 17:29:35 ----A---- C:\WINDOWS\system32\winmde.dll
2016-10-28 17:29:35 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-10-28 17:29:35 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-28 17:29:35 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-10-28 17:29:35 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-10-28 17:29:35 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-28 17:29:34 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-10-28 17:29:34 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-10-28 17:29:34 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-10-28 17:29:34 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-28 17:29:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-28 17:29:33 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-10-28 17:29:33 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-10-28 17:29:33 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-10-28 17:29:33 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-10-28 17:29:33 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-28 17:29:33 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-10-28 17:29:32 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-28 17:29:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-10-28 17:29:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-10-28 17:29:30 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-10-28 17:29:30 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-10-28 17:29:28 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-10-28 17:29:28 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-10-28 17:29:28 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-10-28 17:29:28 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-10-28 17:29:28 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-10-28 17:29:28 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-28 17:29:28 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-10-28 17:29:28 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-28 17:29:27 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-10-28 17:29:27 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-10-28 17:29:27 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-10-28 17:29:27 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-10-28 17:29:27 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-10-28 17:29:27 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-28 17:29:27 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-10-28 17:29:26 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-10-28 17:29:26 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-10-28 17:29:26 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-10-28 17:29:26 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-10-28 17:29:26 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-28 17:29:26 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-10-28 17:29:26 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-10-28 17:29:26 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-10-28 17:29:26 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-10-28 17:29:26 ----A---- C:\WINDOWS\system32\cdd.dll
2016-10-28 17:29:25 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-10-28 17:29:25 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-28 17:29:24 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2016-10-28 17:29:24 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-10-28 17:29:24 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-10-28 17:29:24 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-10-28 17:29:24 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-10-28 17:29:24 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-10-28 17:29:24 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-10-25 17:02:01 ----A---- C:\WINDOWS\system32\nvdispgenco6437563.dll
2016-10-25 17:02:01 ----A---- C:\WINDOWS\system32\nvdispco6437563.dll
2016-10-24 17:46:00 ----D---- C:\WINDOWS\Panther
2016-10-23 17:39:05 ----D---- C:\Users\Kubajz\AppData\Roaming\Crystal Dynamics
2016-10-22 02:33:35 ----A---- C:\WINDOWS\system32\nvdispgenco6437557.dll
2016-10-22 02:33:35 ----A---- C:\WINDOWS\system32\nvdispco6437557.dll
2016-10-13 23:59:58 ----A---- C:\WINDOWS\system32\drivers\rzpmgrk.sys
2016-10-13 23:33:34 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-10-13 23:33:33 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-13 23:33:33 ----A---- C:\WINDOWS\system32\wpx.dll
2016-10-13 23:33:33 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-10-13 23:33:33 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-10-13 23:33:33 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\netshell.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\dsreg.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-10-13 23:33:32 ----A---- C:\WINDOWS\system32\bcdedit.exe
2016-10-13 23:33:31 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-10-13 23:33:31 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2016-10-13 23:33:31 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-10-13 23:33:31 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2016-10-13 23:33:31 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-13 23:33:31 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-13 23:33:31 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-10-13 23:33:25 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-10-13 23:33:24 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-10-13 23:33:24 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-13 23:33:23 ----A---- C:\WINDOWS\system32\smartscreen.exe
2016-10-13 23:33:22 ----A---- C:\WINDOWS\system32\drivers\MegaSas2i.sys
2016-10-13 23:33:21 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-10-13 23:33:21 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-13 23:33:21 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-13 23:33:21 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-10-13 23:33:20 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-13 23:33:20 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-10-13 23:33:20 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-10-13 23:33:20 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2016-10-13 23:33:20 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-10-13 23:33:20 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-10-13 23:33:20 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-13 23:33:19 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-10-13 23:33:19 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2016-10-13 23:33:19 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-13 23:33:19 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-10-13 23:33:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-10-13 23:33:16 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-13 23:33:15 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-10-13 23:33:14 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-10-13 23:33:13 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-10-13 23:33:12 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-13 23:33:12 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-10-13 23:33:12 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-13 23:33:11 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-10-13 23:33:11 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-10-13 23:33:11 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-10-13 23:33:11 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-10-13 23:33:11 ----A---- C:\WINDOWS\system32\dialclient.dll
2016-10-13 23:33:06 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-10-13 23:33:06 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-10-13 23:33:06 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-13 23:33:05 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-10-13 23:33:05 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-10-13 23:33:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-10-13 23:33:04 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-10-13 23:33:04 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-10-13 23:33:04 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-10-13 23:33:03 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-13 23:33:03 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-10-13 23:33:03 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-13 23:33:03 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-10-13 23:33:03 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-13 23:33:03 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-13 23:33:03 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-13 23:33:03 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\system32\msi.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-13 23:33:02 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-10-13 23:33:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2016-10-13 23:33:01 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-10-13 23:33:01 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2016-10-13 23:33:01 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-13 23:32:57 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-10-13 23:32:56 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-13 23:32:55 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-10-13 23:32:55 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-13 23:32:55 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-13 23:32:54 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-10-13 23:32:54 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-13 23:32:54 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-10-13 23:32:54 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-10-13 23:32:54 ----A---- C:\WINDOWS\system32\cloudAP.dll
2016-10-13 23:32:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-10-13 23:32:53 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-13 23:32:53 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-10-13 23:32:53 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-13 23:32:53 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-10-13 23:32:53 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-10-13 23:32:53 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-10-13 23:32:53 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-10-13 23:32:53 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-10-13 23:32:52 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-13 23:32:52 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-13 23:32:52 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-10-13 23:32:52 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-10-13 23:32:52 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys
2016-10-12 18:30:21 ----D---- C:\Windows.old
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\TempSignedLicenseExchangeTask.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\MSAC3ENC.DLL
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\LicenseManagerApi.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\MSAC3ENC.DLL
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\encapi.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\devenum.dll
2016-10-12 18:29:15 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-10-12 18:29:14 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\manage-bde.exe
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\fveui.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\fvenotify.exe
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\bdeunlock.exe
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\bdeui.dll
2016-10-12 18:29:14 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\wmploc.DLL
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\wlancfg.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\spwmp.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\NetworkCollectionAgent.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\Chakrathunk.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\eappprxy.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\dxmasf.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\ws2_32.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wpninprc.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wpnapps.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wmploc.DLL
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wlansvc.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wlansec.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wlancfg.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wlanapi.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\wfdprov.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\spwmp.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\nshwfp.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\mprdim.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\mprddm.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\lsass.exe
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\iesetup.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\iernonce.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\Chakrathunk.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\evr.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\dxmasf.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\dasHost.exe
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\das.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\csrsrv.dll
2016-10-12 18:29:10 ----A---- C:\WINDOWS\system32\cmintegrator.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\ws2_32.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\tcpipcfg.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\slcext.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\netiougc.exe
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\credprovslegacy.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\system32\msxml6r.dll
2016-10-12 18:29:07 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2016-10-12 18:29:07 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-10-12 18:29:07 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-10-12 18:29:07 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-10-12 18:29:07 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2016-10-12 18:29:07 ----A---- C:\WINDOWS\system32\drivers\cmimcext.sys
2016-10-12 18:29:04 ----A---- C:\WINDOWS\SYSWOW64\pwrshplugin.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\SYSWOW64\DscCoreConfProv.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\tsmf.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\SessEnv.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\rshx32.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\lsm.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-12 18:29:04 ----A---- C:\WINDOWS\system32\bootux.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\wificonnapi.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\w32time.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\usermgr.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\usbmon.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\uReFS.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\tcpipcfg.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\sbe.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\RMapi.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\qedit.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\puiobj.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\provtool.exe
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\provops.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\provengine.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\provdatastore.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\PrintWSDAHost.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\PhoneServiceRes.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\PhoneService.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\nltest.exe
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\nettrace.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\netiougc.exe
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\localspl.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\hal.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Family.Client.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\credprovslegacy.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\C_IS2022.DLL
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\c_GSM7.DLL
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\C_G18030.DLL
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\aclui.dll
2016-10-12 18:29:03 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\SYSWOW64\pidgenx.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\systemreset.exe
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\sppcext.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\sppc.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\slcext.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\slc.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\Sens.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\RelPost.exe
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\ReAgent.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\pwrshplugin.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\pidgenx.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\odbcconf.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\imapi2.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\gpsvc.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\GenValObj.exe
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\dsregcmd.exe
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\DscCoreConfProv.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\DscCore.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\discan.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-10-12 18:29:01 ----A---- C:\WINDOWS\system32\appinfo.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.CredDialogController.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.UXRes.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\UserDataTypeHelperUtil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\UserDataPlatformHelperUtil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\UserDataLanguageUtil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccessRes.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\POSyncServices.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\PhoneutilRes.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\NmaDirect.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MosResource.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosTrace.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MosHost.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\Microsoft-Windows-MapControls.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MapControlStringsRes.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\ExtrasXmlParser.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\ContactActivation.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\biwinrt.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\AppointmentActivation.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\SYSWOW64\AddressParser.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\XamlTileRender.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\wups2.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\VCardParser.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\UserDataAccessRes.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\tquery.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\skci.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\securekernel.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\POSyncServices.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\PhoneutilRes.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\NmaDirect.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\nativemap.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\mssprxy.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MosResource.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\moshost.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\mf.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MDEServer.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\mapstoasttask.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MapRouter.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MapControlStringsRes.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\InputService.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\ExSMime.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\DbgModel.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\dafpos.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\ContactActivation.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\CastLaunch.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\biwinrt.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2016-10-12 18:28:58 ----A---- C:\WINDOWS\system32\AddressParser.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Energy.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Core.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\MSAJApi.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\DataExchange.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\container.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\ClipboardServer.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Printers.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\wincorlib.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\win32u.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\win32k.sys
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\wevtapi.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\webio.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\tzres.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\schannel.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\samlib.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\resutils.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\offlinesam.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\NfcRadioMedia.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\MSAJApi.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\mprapi.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\icsvcext.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\icsvc.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\ffbroker.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\DataExchange.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\container.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\clusapi.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\ClipboardServer.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\ci.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\cdp.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\AppContracts.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-10-12 18:28:54 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.UserDeviceAssociation.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\storagewmi_passthru.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\offlinesam.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\msxml6r.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\encapi.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\devenum.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\delegatorprovider.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\DbgModel.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\SYSWOW64\BackgroundMediaPolicy.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\tdh.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\storagewmi_passthru.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\storagewmi.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\spaceman.exe
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\smphost.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\pdh.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-10-12 18:28:52 ----A---- C:\WINDOWS\system32\delegatorprovider.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\mprapi.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\imapi2.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\C_IS2022.DLL
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\c_GSM7.DLL
2016-10-12 18:28:51 ----A---- C:\WINDOWS\SYSWOW64\C_G18030.DLL
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\dwmapi.dll
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\vpci.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-10-12 18:28:51 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-10-12 18:22:24 ----D---- C:\WINDOWS\system32\Microsoft
2016-10-12 18:20:26 ----D---- C:\WINDOWS\SYSWOW64\SDA
2016-10-12 18:20:20 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2016-10-12 18:20:19 ----D---- C:\Program Files\Reference Assemblies
2016-10-12 18:20:19 ----D---- C:\Program Files\MSBuild
2016-10-12 18:20:19 ----D---- C:\Program Files (x86)\Reference Assemblies
2016-10-12 18:20:19 ----D---- C:\Program Files (x86)\MSBuild
2016-10-12 18:20:03 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2016-10-12 18:20:03 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2016-10-12 18:20:02 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-10-12 18:20:01 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2016-10-12 18:20:01 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-10-12 18:20:01 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-10-12 18:19:54 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2016-10-12 17:56:34 ----D---- C:\ProgramData\Microsoft OneDrive
2016-10-12 17:43:24 ----D---- C:\ProgramData\USOShared
2016-10-12 17:41:34 ----SHD---- C:\ProgramData\Šablony
2016-10-12 17:41:34 ----SHD---- C:\ProgramData\Plocha
2016-10-12 17:41:34 ----SHD---- C:\ProgramData\Nabídka Start
2016-10-12 17:41:34 ----SHD---- C:\ProgramData\Dokumenty
2016-10-12 17:41:34 ----SHD---- C:\ProgramData\Data aplikací
2016-10-12 17:39:29 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2016-10-12 17:38:37 ----ASH---- C:\hiberfil.sys
2016-10-12 17:35:22 ----SD---- C:\Users\Kubajz\AppData\Roaming\Microsoft
2016-10-12 17:35:20 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2016-10-12 17:34:30 ----D---- C:\ProgramData\Razer
2016-10-12 17:34:28 ----AD---- C:\Program Files (x86)\Razer
2016-10-12 17:34:23 ----D---- C:\ProgramData\Dolby
2016-10-12 17:34:23 ----D---- C:\Program Files\Dolby
2016-10-12 17:34:22 ----D---- C:\Program Files (x86)\Realtek
2016-10-12 17:34:17 ----D---- C:\WINDOWS\system32\DAX2
2016-10-12 17:34:13 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2016-10-12 17:34:13 ----D---- C:\Program Files\Realtek
2016-10-12 17:34:09 ----D---- C:\ProgramData\NVIDIA
2016-10-12 17:34:07 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2016-10-12 17:34:07 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2016-10-12 17:34:07 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2016-10-12 17:34:07 ----A---- C:\WINDOWS\system32\nvshext.dll
2016-10-12 17:34:07 ----A---- C:\WINDOWS\system32\nvmctray.dll
2016-10-12 17:34:07 ----A---- C:\WINDOWS\system32\nvcpl.dll
2016-10-12 17:34:07 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2016-10-12 17:34:07 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2016-10-12 17:33:59 ----D---- C:\ProgramData\NVIDIA Corporation
2016-10-12 17:33:56 ----D---- C:\Program Files\NVIDIA Corporation
2016-10-12 17:33:51 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2016-10-12 17:33:51 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2016-10-12 17:33:51 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-10-12 17:33:51 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-10-12 17:33:50 ----AS---- C:\WINDOWS\bootstat.dat
2016-10-12 17:33:49 ----AD---- C:\Program Files\Intel
2016-10-12 17:33:39 ----HD---- C:\Program Files\Uninstall Information
2016-10-12 17:33:36 ----D---- C:\Program Files\Synaptics
2016-10-12 17:33:05 ----D---- C:\WINDOWS\system32\SleepStudy
2016-10-12 17:33:05 ----D---- C:\WINDOWS\ServiceProfiles
2016-10-12 17:33:02 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-12 17:33:00 ----D---- C:\WINDOWS\Prefetch
2016-10-10 11:02:23 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2016-10-10 11:02:23 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2016-10-10 11:02:23 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2016-10-10 11:02:23 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2016-10-10 11:02:23 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-10-10 11:02:14 ----A---- C:\WINDOWS\NvContainerRecovery.bat

======List of files/folders modified in the last 1 month======

2016-11-09 10:20:48 ----RD---- C:\Program Files
2016-11-09 10:08:06 ----D---- C:\WINDOWS\Temp
2016-11-09 10:08:00 ----D---- C:\WINDOWS\system32\config
2016-11-09 09:54:37 ----SHDC---- C:\WINDOWS\Installer
2016-11-09 09:54:13 ----D---- C:\WINDOWS\system32\sru
2016-11-09 09:52:50 ----D---- C:\WINDOWS\System32
2016-11-09 02:52:01 ----D---- C:\Users\Kubajz\AppData\Roaming\vlc
2016-11-09 02:19:21 ----D---- C:\WINDOWS\system32\catroot2
2016-11-09 02:18:35 ----D---- C:\WINDOWS\WinSxS
2016-11-09 02:17:28 ----HD---- C:\ProgramData
2016-11-09 02:16:25 ----D---- C:\WINDOWS\CbsTemp
2016-11-09 00:26:38 ----D---- C:\WINDOWS\SoftwareDistribution
2016-11-09 00:26:38 ----D---- C:\Windows
2016-11-09 00:23:32 ----RD---- C:\Program Files (x86)
2016-11-09 00:22:43 ----D---- C:\WINDOWS\Tasks
2016-11-09 00:21:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-09 00:20:40 ----D---- C:\WINDOWS\system32\Tasks
2016-11-08 18:26:12 ----RD---- C:\WINDOWS\Microsoft.NET
2016-11-08 16:17:59 ----D---- C:\WINDOWS\system32\drivers
2016-11-08 14:54:36 ----D---- C:\WINDOWS\AppReadiness
2016-11-07 14:28:28 ----HD---- C:\Program Files\WindowsApps
2016-11-06 11:26:13 ----D---- C:\WINDOWS\LiveKernelReports
2016-11-05 22:45:48 ----D---- C:\ProgramData\PMB Files
2016-11-05 13:30:55 ----D---- C:\WINDOWS\system32\LogFiles
2016-11-05 13:11:39 ----D---- C:\Users\Kubajz\AppData\Roaming\DAEMON Tools Lite
2016-11-01 23:24:59 ----D---- C:\WINDOWS\rescache
2016-10-31 22:19:20 ----D---- C:\Program Files (x86)\Google
2016-10-31 00:22:08 ----D---- C:\WINDOWS\INF
2016-10-30 12:57:54 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-28 22:25:16 ----D---- C:\WINDOWS\SysWOW64
2016-10-28 19:21:43 ----D---- C:\WINDOWS\system32\CatRoot
2016-10-28 19:03:41 ----D---- C:\WINDOWS\system32\WDI
2016-10-28 19:00:18 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-10-28 19:00:18 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-10-28 19:00:18 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-10-28 19:00:18 ----D---- C:\WINDOWS\system32\wbem
2016-10-28 19:00:18 ----D---- C:\WINDOWS\system32\oobe
2016-10-28 19:00:18 ----D---- C:\WINDOWS\system32\en-US
2016-10-28 19:00:18 ----D---- C:\WINDOWS\system32\cs-CZ
2016-10-28 19:00:18 ----D---- C:\WINDOWS\system32\Boot
2016-10-28 19:00:18 ----D---- C:\WINDOWS\system32\appraiser
2016-10-28 19:00:17 ----RSD---- C:\WINDOWS\Fonts
2016-10-28 19:00:17 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-10-28 19:00:17 ----D---- C:\WINDOWS\AppPatch
2016-10-28 19:00:17 ----D---- C:\Program Files\Windows Media Player
2016-10-28 19:00:17 ----D---- C:\Program Files (x86)\Windows Media Player
2016-10-28 17:18:30 ----D---- C:\WINDOWS\Logs
2016-10-25 22:40:31 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2016-10-25 22:40:31 ----A---- C:\WINDOWS\system32\nvapi64.dll
2016-10-25 00:30:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-22 02:35:16 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2016-10-20 09:44:53 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-10-20 09:44:39 ----D---- C:\Program Files (x86)\Common Files
2016-10-20 09:43:12 ----AD---- C:\Program Files (x86)\Microsoft Office
2016-10-15 13:09:16 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-10-15 12:12:46 ----RSD---- C:\WINDOWS\assembly
2016-10-13 23:58:15 ----D---- C:\WINDOWS\debug
2016-10-13 23:55:41 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-10-13 23:55:41 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-10-13 23:55:41 ----D---- C:\WINDOWS\system32\migwiz
2016-10-13 23:55:41 ----D---- C:\WINDOWS\ShellExperiences
2016-10-13 23:55:41 ----D---- C:\Program Files\Windows Photo Viewer
2016-10-13 23:55:41 ----D---- C:\Program Files\Windows Mail
2016-10-13 23:55:41 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-10-13 23:36:43 ----D---- C:\WINDOWS\system32\MRT
2016-10-13 23:36:39 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-10-13 18:44:17 ----SD---- C:\ProgramData\Microsoft
2016-10-13 11:45:49 ----D---- C:\WINDOWS\appcompat
2016-10-12 19:50:00 ----D---- C:\ProgramData\McAfee
2016-10-12 19:50:00 ----D---- C:\Program Files\Common Files
2016-10-12 18:30:03 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-10-12 18:30:03 ----SD---- C:\WINDOWS\system32\F12
2016-10-12 18:30:03 ----SD---- C:\WINDOWS\system32\dsc
2016-10-12 18:30:03 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-10-12 18:30:03 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2016-10-12 18:30:03 ----D---- C:\WINDOWS\SYSWOW64\setup
2016-10-12 18:30:03 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\zh-TW
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\zh-HK
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\zh-CN
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\uk-UA
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\tr-TR
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\th-TH
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\sv-SE
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\sl-SI
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\sk-SK
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\setup
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\ru-RU
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\ro-RO
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\pt-PT
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\pt-BR
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\pl-PL
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\nl-NL
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\nb-NO
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\migration
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\lv-LV
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\lt-LT
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\ko-KR
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\ja-jp
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\it-IT
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\hu-HU
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\hr-HR
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\he-IL
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\fr-FR
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\fr-CA
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\fi-FI
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\et-EE
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\es-MX
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\es-ES
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\en-GB
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\el-GR
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\drivers\en-US
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\Dism
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\de-DE
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\da-DK
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\bg-BG
2016-10-12 18:30:03 ----D---- C:\WINDOWS\system32\ar-SA
2016-10-12 18:30:03 ----D---- C:\WINDOWS\Provisioning
2016-10-12 18:30:02 ----RD---- C:\Program Files\Windows Defender
2016-10-12 18:30:02 ----D---- C:\WINDOWS\bcastdvr
2016-10-12 18:30:02 ----D---- C:\Program Files\Internet Explorer
2016-10-12 18:30:02 ----D---- C:\Program Files (x86)\Windows Mail
2016-10-12 18:30:02 ----D---- C:\Program Files (x86)\Windows Defender
2016-10-12 18:30:02 ----D---- C:\Program Files (x86)\Internet Explorer
2016-10-12 18:24:55 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2016-10-12 18:24:55 ----D---- C:\WINDOWS\SYSWOW64\winrm
2016-10-12 18:24:55 ----D---- C:\WINDOWS\SYSWOW64\WCN
2016-10-12 18:24:55 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2016-10-12 18:24:55 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2016-10-12 18:24:55 ----D---- C:\WINDOWS\SYSWOW64\en
2016-10-12 18:24:55 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2016-10-12 18:24:55 ----D---- C:\WINDOWS\system32\winrm
2016-10-12 18:24:55 ----D---- C:\WINDOWS\system32\WCN
2016-10-12 18:24:55 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-10-12 18:24:55 ----D---- C:\WINDOWS\system32\slmgr
2016-10-12 18:24:55 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2016-10-12 18:24:54 ----D---- C:\WINDOWS\system32\en
2016-10-12 18:24:54 ----D---- C:\WINDOWS\servicing
2016-10-12 18:24:54 ----D---- C:\WINDOWS\en-US
2016-10-12 18:20:20 ----D---- C:\WINDOWS\SYSWOW64\MUI
2016-10-12 18:20:20 ----D---- C:\WINDOWS\system32\MUI
2016-10-12 17:43:24 ----D---- C:\ProgramData\USOPrivate
2016-10-12 17:41:34 ----D---- C:\Program Files\Windows NT
2016-10-12 17:41:00 ----D---- C:\WINDOWS\Registration
2016-10-12 17:40:40 ----D---- C:\WINDOWS\system32\WinBioDatabase
2016-10-12 17:40:40 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2016-10-12 17:39:17 ----D---- C:\WINDOWS\system32\drivers\etc
2016-10-12 17:38:21 ----D---- C:\WINDOWS\system32\FxsTmp
2016-10-12 17:38:10 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-10-12 17:38:09 ----D---- C:\WINDOWS\system32\CodeIntegrity
2016-10-12 17:36:18 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-10-12 17:36:17 ----SHD---- C:\WINDOWS\SYSWOW64\AI_RecycleBin
2016-10-12 17:36:16 ----HD---- C:\WINDOWS\system32\WLANProfiles
2016-10-12 17:36:16 ----D---- C:\WINDOWS\system32\spool
2016-10-12 17:36:15 ----DC---- C:\WINDOWS\system32\DRVSTORE
2016-10-12 17:36:15 ----D---- C:\WINDOWS\system32\NDF
2016-10-12 17:36:06 ----RD---- C:\Users
2016-10-12 17:36:04 ----D---- C:\Program Files (x86)\Microsoft.NET
2016-10-12 17:36:03 ----D---- C:\Program Files\Common Files\microsoft shared
2016-10-12 17:35:43 ----D---- C:\WINDOWS\system32\Recovery
2016-10-12 17:35:09 ----HD---- C:\Recovery
2016-10-12 17:35:08 ----D---- C:\WINDOWS\system32\Sysprep
2016-10-12 17:34:37 ----RD---- C:\WINDOWS\PrintDialog
2016-10-12 17:34:37 ----RD---- C:\WINDOWS\MiracastView
2016-10-12 17:34:31 ----D---- C:\WINDOWS\twain_32
2016-10-12 17:34:07 ----D---- C:\WINDOWS\Help
2016-10-12 17:33:50 ----HD---- C:\Intel

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-09-23 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-10-13 293352]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-07-30 1462720]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 45920]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-09-23 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-09-23 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-09-23 969184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-09-23 513632]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-11-12 91912]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-09-23 108816]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-09-23 163416]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 rzpmgrk;rzpmgrk; \??\C:\WINDOWS\system32\drivers\rzpmgrk.sys [2016-09-17 44144]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2016-09-07 137840]
R3 ACPIVPC;@oem8.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-06-15 42328]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-10-12 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2016-10-12 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-10-12 84992]
R3 dtlitescsibus;@oem32.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-09-28 30264]
R3 dtliteusbbus;@oem42.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-09-28 47672]
R3 ibtusb;@oem47.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2015-09-17 122120]
R3 Netwtw04;___ Intel(R) Wireless Adapter Driver for Windows 10 - 64 Bit; C:\WINDOWS\System32\drivers\Netwtw04.sys [2016-07-16 7116288]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_fe7c040832a3bf1e\nvlddmkm.sys [2016-10-26 14159928]
R3 nvvad_WaveExtensible;@oem56.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2016-04-14 56384]
R3 O2FJ2RDR;O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [2015-05-21 201240]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 rt640x64;@oem22.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-16 895256]
R3 rtsuvc;@oem18.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-06-11 3059416]
R3 rzendpt;@oem55.inf,%rzendpt.SvcDesc%;rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [2015-08-13 50392]
R3 rzudd;@oem50.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2015-08-13 202952]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-09-23 51320]
R3 SynTP;@oem61.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-09-23 642168]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S1 SABDIFSV;SABDIFSV; \??\C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABDIFSV.SYS [2005-09-21 5632]
S1 SABKUTIL;SABKUTIL; \??\C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABKUTIL.sys [2007-02-20 32256]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-09-23 37656]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-10-15 967168]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-10-12 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2015-07-10 3354384]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-09-30 29240]
S3 SABProcEnum;SABProcEnum; \??\C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABProcEnum.sys [2005-03-21 4096]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-23 197128]
R2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2015-07-29 650680]
R2 CDPUserSvc_b4768a;CDPUserSvc_b4768a; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-10-08 3291848]
R2 DAX2API;Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [2016-01-27 163328]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2015-08-13 640928]
R2 GDCAgent;GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [2015-07-30 1155512]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-27 18856]
R2 ibtsiva.exe;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [2015-09-16 135408]
R2 ImControllerService;System Interface Foundation Service; c:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2016-09-13 60752]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2015-08-07 207648]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2015-08-07 415520]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-09-30 457272]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-10-25 458176]
R2 NVIDIA Wireless Controller Service;NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [2016-09-30 1165368]
R2 O2FLASH;O2FLASH; C:\WINDOWS\System32\drivers\o2flash.exe [2015-05-21 82096]
R2 OneSyncSvc_b4768a;Hostitel synchronizace_b4768a; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2016-09-24 189264]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2015-08-13 157088]
R2 SABSVC;Super Ad Blocker Service; C:\Program Files (x86)\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE [2005-08-31 65536]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-09-23 255608]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 Intel(R) Security Assist;Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [2015-05-19 335872]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 isaHelperSvc;Intel(R) Security Assist Helper; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [2015-05-19 7680]
S3 cplspcon;Intel(R) Content Protection HDCP Service; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [2015-08-23 592488]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; D:\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-08-29 1467072]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\hvhostsvc.dll
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2015-05-22 881152]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2015-07-17 271296]
S3 MessagingService_b4768a;Služba zasílání zpráv_b4768a; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2015-08-13 268192]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-09-30 457272]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-10-07 209104]
S3 PimIndexMaintenanceSvc_b4768a;Data kontaktů_b4768a; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Blue screen

#3 Příspěvek od Rudy »

Zdravím!
Otevřte adresář c:\windows\minidump, jeho obsah zabalte do raru a přiložte k vašem příštímu postu. Zároveň přesouvám vlákno do správné sekce.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kubajzzz
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 09 lis 2016 10:17

Re: Blue screen

#4 Příspěvek od Kubajzzz »

Zdravím. Ve vámi zmíněné složce nic není, i přes zobrazení skrytých souborů.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Blue screen

#5 Příspěvek od Rudy »

To je smůla. Pomocí těch souborů by bylo možné zhruba určit ohnisko problému. Co jste instaloval těsně před tím, než se problém objevil?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kubajzzz
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 09 lis 2016 10:17

Re: Blue screen

#6 Příspěvek od Kubajzzz »

Myslím, že Skyrim

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Blue screen

#7 Příspěvek od Rudy »

Na zkoušku ho odinstalujte a pak PC vyzkoušejte, zda se nebude BSOD opakovat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

aanime
Návštěvník
Návštěvník
Příspěvky: 49
Registrován: 16 dub 2010 10:21

Re: Blue screen

#8 Příspěvek od aanime »

Dobrý den,

chtěl bych Vás poprosit o kontrolu logu. Občas (cca. 1x do týdne) se mi totiž objeví BSOD bez nějakých zjevných příčin. Dále se mi stává (přibližně ve čtvrtině případů), že při přechodu notebooku do úsporného režimu se pouze vypne obrazovka a dále je nutné notebook násilně vypnout.
Přikládám log z RSIT a obsah složky Minidump. Díky moc.



Logfile of random's system information tool 1.09 (written by random/random)
Run by Lukas at 2017-01-03 19:48:01
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 19 GB (28%) free of 70 GB
Total RAM: 3067 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:48:33, on 3.1.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17909)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\PLFSetI.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Users\Lukas\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Windows\system32\taskeng.exe
C:\Windows\explorer.exe
C:\Windows\system32\notepad.exe
C:\Bezpecnost, sit\!\RSIT.exe
C:\Program Files\trend micro\Lukas.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Foxit Reader Service (FoxitReaderService) - Foxit Software Inc. - C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - HP - C:\Windows\system32\HPSIsvc.exe
O23 - Service: ZoneAlarm Toolbar IswSvc (IswSvc) - Unknown owner - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 7510 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\9t8j6x6t.default-1390047542763

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.ceskenoviny.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.186 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.111.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
NPOFF12.DLL
nppdf32.dll
npwachk.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\9t8j6x6t.default-1390047542763\extensions\
cs@dictionaries.addons.mozilla.org
{4BBDD651-70CF-4821-84F8-2B918CF89CA3}

C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\9t8j6x6t.default-1390047542763\searchplugins\
duckduckgo.xml
googletranslate.xml
vimeo.xml
wikipedia-eng.xml
wolframalpha.xml
youtube.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office12\GR469A~1.DLL [2015-07-06 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-24 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-24 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-03-08 336384]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2015-07-06 31016]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2016-07-11 1491128]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2016-10-24 587288]
"PLFSetI"=C:\Windows\PLFSetI.exe [2016-12-07 200704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OEXPRESS"= []
"Nektra OEAPI"= []
"WEBTRAN"= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Bezpecnost, sit\CCleaner5.23\CCleaner.exe /MONITOR []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cisco AnyConnect Secure Mobility Agent for Windows]
C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe -minimized []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\f.lux]
C:\Users\Lukas\AppData\Local\FluxSoftware\Flux\flux.exe [2016-02-03 1017224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Infium]
C:\Bezpecnost, sit\QIP 2010\qip.exe /autorun []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-04-03 1234216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NIRegistrationWizard]
C:\Program Files\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe -autoDiscover 1 -displayIfNoneFound 0 -displayRegisterOptions 1 -sleepIfNoneFound 0 -locale 1029 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDFPrint]
C:\Program Files\pdf24\pdf24.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Bezpecnost, sit\Spybot - Search & Destroy\TeaTimer.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2017-01-02 6825888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TVPro Control]
C:\Program Files\TV IR\TV IR.EXE [2010-04-22 692296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Akcelerátor spuštění AutoCADu.lnk]
C:\PROGRA~1\COMMON~1\AUTODE~1\ACSTAR~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Aktualizovat ESET licenci.lnk]
C:\PROGRA~1\ESET\MINODL~1\MINODL~1.EXE -u -d 10000 []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AutoCAD Startup Accelerator.lnk]
C:\PROGRA~1\COMMON~1\AUTODE~1\ACSTAR~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NI Error Reporting.lnk]
C:\PROGRA~1\NATION~1\Shared\NIERRO~1\NIERSE~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk]
C:\PROGRA~1\Comodo\GEEKBU~1\launcher.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk]
C:\PROGRA~1\ArcSoft\TOTALM~1\TMMONI~1.EXE [2007-04-20 258048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Lukas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\Lukas\AppData\Roaming\Dropbox\bin\Dropbox.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Lukas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MICROS~1\Office12\ONENOTEM.EXE [2015-07-06 98632]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office12\GR469A~1.DLL [2015-07-06 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\System32\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\System32\CScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-01-03 19:48:01 ----D---- C:\rsit
2016-12-09 10:57:02 ----A---- C:\Users\Lukas\AppData\Roaming\LTspiceIV.ini
2016-12-09 10:55:36 ----D---- C:\Program Files\LTC
2016-12-07 22:31:36 ----A---- C:\Windows\USB_VIDEO_REG.exe
2016-12-07 22:31:36 ----A---- C:\Windows\PLFSetI.exe
2016-12-07 22:31:36 ----A---- C:\Windows\PidList.ini
2016-12-07 22:31:36 ----A---- C:\Windows\Image.dll
2016-12-07 22:31:36 ----A---- C:\Windows\Acer Crystal Eye webcam.EXE
2016-12-07 22:30:57 ----D---- C:\Users\Lukas\AppData\Roaming\InstallShield

======List of files/folders modified in the last 1 month======

2017-01-03 19:48:13 ----D---- C:\Windows\Prefetch
2017-01-03 19:48:04 ----D---- C:\Program Files\trend micro
2017-01-03 19:45:23 ----SHD---- C:\Windows\Installer
2017-01-03 19:45:14 ----D---- C:\Windows\system32\config
2017-01-03 19:45:12 ----RSD---- C:\Windows\assembly
2017-01-03 19:45:08 ----RD---- C:\Program Files
2017-01-03 19:45:08 ----D---- C:\ProgramData\Autodesk
2017-01-03 19:45:08 ----D---- C:\Program Files\Common Files\Autodesk Shared
2017-01-03 19:44:54 ----D---- C:\Windows\System32
2017-01-03 19:44:45 ----RSD---- C:\Windows\Fonts
2017-01-03 19:44:20 ----D---- C:\Windows\Help
2017-01-03 19:43:04 ----SHD---- C:\System Volume Information
2017-01-03 19:38:08 ----D---- C:\Windows\inf
2017-01-03 19:38:05 ----D---- C:\Windows\Minidump
2017-01-03 19:38:05 ----D---- C:\Windows
2017-01-03 18:56:31 ----D---- C:\Windows\Temp
2017-01-03 18:45:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-01-03 09:24:33 ----D---- C:\Program Files\SUPERAntiSpyware
2017-01-02 22:07:30 ----D---- C:\Users\Lukas\AppData\Roaming\foobar2000
2017-01-02 18:59:47 ----D---- C:\Program Files\Comodo
2017-01-02 18:28:36 ----D---- C:\AdwCleaner
2017-01-02 18:25:30 ----D---- C:\Bezpecnost, sit
2016-12-27 17:13:22 ----D---- C:\Windows\system32\Tasks
2016-12-22 09:53:27 ----D---- C:\Users\Lukas\AppData\Roaming\Mp3tag
2016-12-22 09:12:56 ----D---- C:\Temp
2016-12-17 17:13:25 ----D---- C:\logs
2016-12-17 14:47:13 ----D---- C:\Windows\system32\catroot2
2016-12-17 11:42:51 ----D---- C:\Windows\Tasks
2016-12-17 11:26:32 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-12-17 11:26:32 ----D---- C:\Program Files\Mozilla Firefox
2016-12-14 09:36:30 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-12-14 09:36:28 ----D---- C:\Windows\system32\Macromed
2016-12-10 16:09:50 ----D---- C:\Mensi programy
2016-12-08 08:39:48 ----D---- C:\Windows\SoftwareDistribution
2016-12-07 22:31:35 ----HD---- C:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 gfibto;gfibto; C:\Windows\system32\drivers\gfibto.sys [2013-08-17 13560]
R0 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2media.sys [2005-11-14 34176]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-06-02 477240]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2016-07-10 27488]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2016-07-10 647704]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-03-22 218688]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 Afc;PPdus ASPI Shell; C:\Windows\system32\drivers\Afc.sys [2006-11-10 18688]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-03-09 7723008]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-03-09 239616]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
R3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 WinDriver6;WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [2012-02-27 199008]
S2 ISWKL;ZoneAlarm Toolbar ISWKL; \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-03-09 7723008]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-10-02 86056]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-08-29 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 29472]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-08-29 18472]
S3 DfuUsb;DfuUsb; C:\Windows\SYSTEM32\DRIVERS\DFUUsb.sys [2007-11-08 10880]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2013-02-13 63464]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2013-02-13 73576]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2015-11-21 17408]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RTL2832UBDA;REALTEK 2832U BDA Driver; C:\Windows\system32\drivers\RTL2832UBDA.sys [2010-07-01 188392]
S3 RTL2832UUSB;REALTEK 2832U USB Driver; C:\Windows\System32\Drivers\RTL2832UUSB.sys [2010-07-01 32872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 smsbda;DVB-T TV Stick; C:\Windows\system32\drivers\smsbda.sys [2009-12-03 52128]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 SynasUSB;SynasUSB; C:\Windows\system32\drivers\SynasUSB.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 vpnva;Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows; C:\Windows\system32\DRIVERS\vpnva-6.sys [2014-08-15 43888]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2014-08-21 142648]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-11-10 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-03-09 176128]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-10-02 595232]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2016-07-11 4561512]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 FoxitReaderService;Foxit Reader Service; C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [2016-10-22 1659592]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2015-11-21 99896]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 86880]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-01-14 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-07-09 144200]
S2 IswSvc;ZoneAlarm Toolbar IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-14 270936]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-01-14 45744]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2016-06-12 85096]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2016-07-11 1670840]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-07-09 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-07-25 102912]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2015-07-06 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-16 172488]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2015-07-06 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-05-20 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2015-03-13 4846168]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-03-22 1343400]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2007-11-07 3004416]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-01-14 139944]

-----------------EOF-----------------
Přílohy
010317-19406-01.zip
(24.12 KiB) Staženo 109 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Blue screen

#9 Příspěvek od Rudy »

2aanime: Založte si, prosím, vlastní topic. Děkujeme.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět