dlouhý start NTB

[tata22]

Dobrý den, u dcery zase problém s rychlostí NTB, zejména při startu Windows 10. Můžete mně někdo mrknout kde hledat problém? CCleaner použivám u cery pravidelně. Naposledy před chvilkou. Zde log:
Logfile of random's system information tool 1.10 (written by random/random)
Run by Uživatel at 2016-11-08 17:22:36
Microsoft Windows 10 Home
System drive C: has 494 GB (52%) free of 953 GB
Total RAM: 8053 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:22:42, on 8. 11. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\Uživatel\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Users\Uživatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Lenovo EasyCamera\Monitor.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe
C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
C:\Program Files (x86)\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
C:\Program Files\trend micro\Uživatel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Java\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Java\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [Lenovo EasyCamera_Monitor] C:\Program Files (x86)\Lenovo EasyCamera\monitor.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [HPUsageTrackingLEDM] "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
O4 - HKLM\..\Run: [YouCam Service6] "C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe" /s
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [f.lux] "C:\Users\Uživatel\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Uživatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Přeložit - {230D1201-7607-4CF6-A11F-9E4BF0A333E0} - C:\Program Files (x86)\Verdict Free\etnxp.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: (no name) - {2C73F784-D2DE-4422-B070-2E3332FE5744} - C:\Program Files (x86)\Verdict Free\etnxp.dll
O9 - Extra 'Tools' menuitem: Internetový překladač... - {2C73F784-D2DE-4422-B070-2E3332FE5744} - C:\Program Files (x86)\Verdict Free\etnxp.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @oem27.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: BitRaider Mini-Support Service Stub Loader (BRSptStub) - BitRaider, LLC - C:\ProgramData\BitRaider\BRSptStub.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: System Interface Foundation Service (ImControllerService) - Lenovo Group Limited - C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel® ME Service (Intel(R) ME Service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14734 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-0d7b8f4b-4d2f-4e6c-b830-58c4f79fab75 -SystemEventPortName:HostProcess-479cea80-9045-4fd1-8630-e19a1857e0bd -IoCancelEventPortName:HostProcess-5af1aefc-50c9-42b8-8a7d-f2b7de817c16 -NonStateChangingEventPortName:HostProcess-03655a8e-8833-4378-af3a-64da0adf703c -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c1c5a84a-7c52-4595-93b4-f9f150eb0a89 -DeviceGroupId:WudfDefaultDevicePool
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-dded3da4-c83e-40e2-99df-fb40ca88c6cd -SystemEventPortName:HostProcess-3c52094f-c360-4dab-9f39-969aac869980 -IoCancelEventPortName:HostProcess-9b3615e5-6297-40c0-bcf3-e9acb4f8a92f -NonStateChangingEventPortName:HostProcess-b34d8de5-fb88-47e1-894d-5c42b922e50b -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:ccfb1b85-49e6-489c-a094-db9c2db4f9b2 -DeviceGroupId:
C:\WINDOWS\System32\svchost.exe -k NetworkService
dashost.exe {657ccb03-77ad-4cab-ab89f72d2ea7dab2}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Windows\system32\HPSIsvc.exe
C:\WINDOWS\system32\svchost.exe -k appmodel

"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Origin\OriginWebHelperService.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
sihost.exe
igfxEM.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
igfxHK.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
igfxTray.exe
-name 5ca05a0d-0408-429a-b90f-5569205f5f51 -runas -pluginName LenovoAudioPlugin -pluginVersion 1.2.139.0
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
"C:\Program Files (x86)\Steam\Steam.exe" -silent
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\Uživatel\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
"C:\Users\Uživatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
"C:\Program Files (x86)\Lenovo EasyCamera\Monitor.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"fontdrvhost.exe"
"C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
"C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe" /s
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" "C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE" -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Origin\QtWebEngineProcess.exe" --type=renderer --enable-threaded-compositing --no-sandbox --disable-databases --lang=en --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="17660.4.252964597\1363829646" /prefetch:673131151
"C:\Program Files (x86)\Origin\QtWebEngineProcess.exe" --type=renderer --enable-threaded-compositing --no-sandbox --lang=en --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=4 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="17660.8.524622202\299153096" /prefetch:673131151
"C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe" "-cachedir=C:\Users\UĹľivatel\AppData\Local\Steam\htmlcache" "-steampid=8608" "-buildid=1476379980" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
-name c03cf4d4-95b8-492f-8741-9489bbd3f892 -runas -pluginName LenovoSettingsAppPlugin -pluginVersion 1.2.61.0
"C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe" -name a0e269a9-e3d2-4927-930b-e5367c0a1267 -runas SYSTEM -pluginName LenovoAuthenticationPlugin -pluginVersion 1.2.52.0
-name 901a6c60-4a1f-476f-aa06-25249b5cc75f -runas -pluginName LenovoCameraPlugin -pluginVersion 1.2.143.0
"C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe" -name 9e87a79a-9f4f-47cd-9fe7-a8499212a72a -runas SYSTEM -pluginName LenovoSystemUpdatePlugin -pluginVersion 1.2.46.0
"C:\Users\Uživatel\AppData\Local\Apps\2.0\8M2W0OOL.T8O\3XZNCNPC.Z8K\lsb...tion_2d7b41b05b24775e_0001.0006_589ac911618caaca\LSB.exe"
-name c91f845f-7a27-446b-8b95-948b97449015 -runas -pluginName IdeaPowerPlugin -pluginVersion 1.2.70.0
-name 146908fc-3d72-487b-a77f-0d3d13554d19 -runas -pluginName LenovoPaperDisplayPlugin -pluginVersion 1.2.106.0
-name 2c2032cd-6b68-47f2-8a96-a7bac6aabacb -runas -pluginName DolbyAudioPlugin -pluginVersion 1.2.136.0
-name a3c71918-7783-4b21-96c7-78fe6343378e -runas -pluginName GenericDisplayPlugin -pluginVersion 1.2.82.0
-name cf7e00e9-f3c4-42da-8169-157b75240c20 -runas -pluginName IdeaKeyboardPlugin -pluginVersion 1.2.70.0
-name 6492661a-0fb0-4939-81ee-e6989177dde1 -runas -pluginName IdeaBatteryPlugin -pluginVersion 1.2.70.0
-name d13225aa-65c0-43d6-8dac-4066a0bc0c14 -runas -pluginName IdeaTouchPadPlugin -pluginVersion 1.2.70.0
C:\Windows\System32\smartscreen.exe -Embedding
-name 66ba8c95-ba22-454d-ae5f-57eafa888afc -runas -pluginName GenericAppTagProviderPlugin -pluginVersion 1.2.26.0
C:\WINDOWS\system32\AUDIODG.EXE 0x4bc
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe121_ Global\UsGthrCtrlFltPipeMssGthrPipe121 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
"C:\Users\Uživatel\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-08-16 229064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-09-06 2351920]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-07-26 163528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Java\bin\ssv.dll [2016-09-26 473152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-09-06 1743664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Java\bin\jp2ssv.dll [2016-09-26 186944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-08-07 1321688]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-11-21 36352]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-08-07 1321688]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-06-14 2397120]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2015-09-14 17079352]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2015-09-14 191568]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2016-07-07 3934720]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2016-09-07 631808]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2016-11-08 3044848]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-10-13 2860832]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-06-18 4468056]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-09-28 8944344]
"f.lux"=C:\Users\Uživatel\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-23 1017224]
"OneDrive"=C:\Users\Uživatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-26 633024]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-10-28 9099440]
"IJNetworkScannerSelectorEX"=C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2011-01-15 452016]
"Lenovo EasyCamera_Monitor"=C:\Program Files (x86)\Lenovo EasyCamera\monitor.exe [2010-08-24 257224]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2014-08-01 49976]
"HPUsageTrackingLEDM"=C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe [2009-08-04 30264]
"YouCam Service6"=C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [2013-11-26 500696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-11-08 17:02:06 ----HD---- C:\OneDriveTemp
2016-10-28 11:20:45 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2016-10-28 10:06:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-10-28 10:06:38 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-10-28 10:06:38 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-10-28 10:06:38 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-28 10:06:37 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-10-28 10:06:37 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-28 10:06:37 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-10-28 10:06:36 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-10-28 10:06:34 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-10-28 10:06:34 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-10-28 10:06:33 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-28 10:06:33 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-10-28 10:06:32 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-28 10:06:32 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-28 10:06:31 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-10-28 10:06:29 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-10-28 10:06:29 ----A---- C:\WINDOWS\system32\msctf.dll
2016-10-28 10:06:28 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-10-28 10:06:28 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-10-28 10:06:27 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-10-28 10:06:26 ----A---- C:\WINDOWS\system32\shell32.dll
2016-10-28 10:06:20 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-28 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-10-28 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-10-28 10:06:17 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-10-28 10:06:16 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-10-28 10:06:16 ----A---- C:\WINDOWS\system32\winresume.exe
2016-10-28 10:06:16 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-10-28 10:06:15 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-10-28 10:06:14 ----A---- C:\WINDOWS\system32\energy.dll
2016-10-28 10:06:14 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-10-28 10:06:13 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-10-28 10:06:13 ----A---- C:\WINDOWS\system32\ole32.dll
2016-10-28 10:06:13 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-10-28 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2016-10-28 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-10-28 10:06:12 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2016-10-28 10:06:12 ----A---- C:\WINDOWS\system32\usocore.dll
2016-10-28 10:06:12 ----A---- C:\WINDOWS\system32\user32.dll
2016-10-28 10:06:12 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-10-28 10:06:12 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-10-28 10:06:12 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2016-10-28 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-10-28 10:06:11 ----A---- C:\WINDOWS\SYSWOW64\iscsiwmi.dll
2016-10-28 10:06:11 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-10-28 10:06:11 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-10-28 10:06:11 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-10-28 10:06:11 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-10-28 10:06:10 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-28 10:06:10 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-28 10:06:10 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-10-28 10:06:09 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-10-28 10:06:09 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-10-28 10:06:07 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-28 10:06:06 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-10-28 10:06:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-28 10:06:05 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-28 10:06:05 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-28 10:06:05 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-28 10:06:02 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-10-28 10:06:02 ----A---- C:\WINDOWS\system32\twinui.dll
2016-10-28 10:06:01 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-10-28 10:06:01 ----A---- C:\WINDOWS\explorer.exe
2016-10-28 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-10-28 10:05:59 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-10-28 10:05:59 ----A---- C:\WINDOWS\system32\winload.exe
2016-10-28 10:05:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-28 10:05:59 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-10-28 10:05:58 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-10-28 10:05:58 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-10-28 10:05:58 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-10-28 10:05:58 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-10-28 10:05:58 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-10-28 10:05:57 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-10-28 10:05:56 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2016-10-28 10:05:56 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-10-28 10:05:56 ----A---- C:\WINDOWS\system32\sud.dll
2016-10-28 10:05:56 ----A---- C:\WINDOWS\system32\fontext.dll
2016-10-28 10:05:56 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-10-28 10:05:55 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-10-28 10:05:55 ----A---- C:\WINDOWS\system32\gameux.dll
2016-10-28 10:05:55 ----A---- C:\WINDOWS\system32\Display.dll
2016-10-28 10:05:54 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-10-28 10:05:54 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-10-28 10:05:54 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-10-28 10:05:54 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2016-10-28 10:05:54 ----A---- C:\WINDOWS\system32\stobject.dll
2016-10-28 10:05:54 ----A---- C:\WINDOWS\system32\powercfg.exe
2016-10-28 10:05:54 ----A---- C:\WINDOWS\system32\fhcpl.dll
2016-10-28 10:05:54 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-10-28 10:05:54 ----A---- C:\WINDOWS\system32\autoplay.dll
2016-10-28 10:05:53 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2016-10-28 10:05:53 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-28 10:05:53 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-10-28 10:05:53 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-28 10:05:53 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-10-28 10:05:53 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-10-28 10:05:53 ----A---- C:\WINDOWS\system32\DevicePairingFolder.dll
2016-10-28 10:05:52 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-10-28 10:05:52 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-10-28 10:05:51 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-10-28 10:05:51 ----A---- C:\WINDOWS\system32\wmp.dll
2016-10-28 10:05:50 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-10-28 10:05:49 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-10-28 10:05:48 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-10-28 10:05:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-10-28 10:05:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-10-28 10:05:47 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-10-28 10:05:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-10-28 10:05:45 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-10-28 10:05:44 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-28 10:05:42 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-10-28 10:05:42 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-10-28 10:05:42 ----A---- C:\WINDOWS\system32\mispace.dll
2016-10-28 10:05:42 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-28 10:05:41 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-10-28 10:05:41 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-10-28 10:05:41 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-28 10:05:41 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-28 10:05:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-28 10:05:41 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-28 10:05:41 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-28 10:05:41 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-28 10:05:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-10-28 10:05:40 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-10-28 10:05:40 ----A---- C:\WINDOWS\splwow64.exe
2016-10-28 10:05:39 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-10-28 10:05:39 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-10-28 10:05:39 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-10-28 10:05:38 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-28 10:05:38 ----A---- C:\WINDOWS\system32\esent.dll
2016-10-28 10:05:38 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-28 10:05:37 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-10-28 10:05:36 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-10-28 10:05:36 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-10-28 10:05:36 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2016-10-28 10:05:36 ----A---- C:\WINDOWS\system32\wer.dll
2016-10-28 10:05:36 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-10-28 10:05:36 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2016-10-28 10:05:35 ----A---- C:\WINDOWS\SYSWOW64\wmpeffects.dll
2016-10-28 10:05:35 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-28 10:05:34 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-10-28 10:05:34 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-10-28 10:05:34 ----A---- C:\WINDOWS\system32\weretw.dll
2016-10-28 10:05:34 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-10-28 10:05:34 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-28 10:05:33 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2016-10-28 10:05:33 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2016-10-28 10:05:33 ----A---- C:\WINDOWS\system32\wmpshell.dll
2016-10-28 10:05:33 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2016-10-28 10:05:33 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-10-28 10:05:33 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2016-10-28 10:05:33 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-10-28 10:05:33 ----A---- C:\WINDOWS\system32\cmifw.dll
2016-10-28 10:05:33 ----A---- C:\WINDOWS\system32\authui.dll
2016-10-28 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2016-10-28 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2016-10-28 10:05:31 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2016-10-28 10:05:31 ----A---- C:\WINDOWS\system32\chartv.dll
2016-10-28 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\chartv.dll
2016-10-28 10:05:30 ----A---- C:\WINDOWS\SYSWOW64\esentutl.exe
2016-10-28 10:05:30 ----A---- C:\WINDOWS\system32\wups.dll
2016-10-28 10:05:30 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-10-28 10:05:30 ----A---- C:\WINDOWS\system32\esentutl.exe
2016-10-28 10:05:27 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-10-28 10:05:27 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-10-28 10:05:27 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-10-28 10:05:26 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-28 10:05:25 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-10-28 10:05:25 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-10-28 10:05:24 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-28 10:05:23 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-10-28 10:05:23 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-28 10:05:22 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-10-28 10:05:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-10-28 10:05:20 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-28 10:05:20 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-28 10:05:20 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-10-28 10:05:19 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-28 10:05:19 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-28 10:05:18 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-10-28 10:05:17 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-10-28 10:05:17 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-10-28 10:05:17 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-10-28 10:05:17 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-10-28 10:05:16 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-10-28 10:05:16 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-10-28 10:05:16 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-10-28 10:05:14 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-10-28 10:05:14 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-28 10:05:13 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-10-28 10:05:13 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-10-28 10:05:13 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 10:05:13 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 10:05:13 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-10-28 10:05:12 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 10:05:12 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-28 10:05:12 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-28 10:05:12 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-10-28 10:05:12 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-10-28 10:05:12 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-10-28 10:05:11 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-10-28 10:05:11 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-10-28 10:05:11 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-10-28 10:05:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-10-28 10:05:10 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-28 10:05:10 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-10-28 10:05:10 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-28 10:05:10 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-10-28 10:05:10 ----A---- C:\WINDOWS\system32\combase.dll
2016-10-28 10:05:09 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-10-28 10:05:09 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-10-28 10:05:09 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-10-28 10:05:09 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-10-28 10:05:09 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2016-10-28 10:05:09 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-28 10:05:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-10-28 10:05:08 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-10-28 10:05:08 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-10-28 10:05:08 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-10-28 10:05:08 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-10-28 10:05:07 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-10-28 10:05:07 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-10-28 10:05:07 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-10-28 10:05:07 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-10-28 10:05:07 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-10-28 10:05:07 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-28 10:05:07 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-10-28 10:05:07 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-10-28 10:05:07 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-10-28 10:05:06 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2016-10-28 10:05:06 ----A---- C:\WINDOWS\system32\efsext.dll
2016-10-28 10:05:06 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-10-28 10:05:06 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\SYSWOW64\autoplay.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\system32\shdocvw.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\system32\msinfo32.exe
2016-10-28 10:05:02 ----A---- C:\WINDOWS\system32\EncDec.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-28 10:05:02 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-10-28 10:05:01 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-10-28 10:05:01 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2016-10-28 10:05:00 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-10-28 10:05:00 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-10-28 10:05:00 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-10-28 10:05:00 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-10-28 10:05:00 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-28 10:04:59 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-10-28 10:04:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-10-28 10:04:59 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-28 10:04:58 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-28 10:04:58 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-28 10:04:58 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-10-28 10:04:58 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-10-28 10:04:57 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-28 10:04:56 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-10-28 10:04:55 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-28 10:04:55 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-10-28 10:04:54 ----A---- C:\WINDOWS\system32\wininet.dll
2016-10-28 10:04:54 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-10-28 10:04:53 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-10-28 10:04:53 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-10-28 10:04:53 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-28 10:04:52 ----A---- C:\WINDOWS\system32\winmde.dll
2016-10-28 10:04:52 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-10-28 10:04:51 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-28 10:04:51 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-28 10:04:50 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-10-28 10:04:49 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-10-28 10:04:48 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-10-28 10:04:48 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-10-28 10:04:48 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-10-28 10:04:47 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-10-28 10:04:47 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-10-28 10:04:47 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-10-28 10:04:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-28 10:04:46 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-10-28 10:04:45 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-10-28 10:04:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-10-28 10:04:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-10-28 10:04:40 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-10-28 10:04:39 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-10-28 10:04:35 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-10-28 10:04:35 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-10-28 10:04:34 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-10-28 10:04:34 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-28 10:04:34 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-10-28 10:04:33 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-10-28 10:04:33 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-28 10:04:32 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-10-28 10:04:32 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-10-28 10:04:32 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-10-28 10:04:32 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-28 10:04:31 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-10-28 10:04:30 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-10-28 10:04:30 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-10-28 10:04:30 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-10-28 10:04:30 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-10-28 10:04:30 ----A---- C:\WINDOWS\system32\cdd.dll
2016-10-28 10:04:29 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-10-28 10:04:29 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-10-28 10:04:28 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-10-28 10:04:28 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-10-28 10:04:28 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-28 10:04:28 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-10-28 10:04:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-10-28 10:04:28 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-10-28 10:04:26 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-10-28 10:04:26 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-10-28 10:04:26 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-28 10:04:25 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2016-10-28 10:04:25 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-10-28 10:04:25 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-10-28 10:04:25 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-10-28 10:04:25 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-10-28 10:04:25 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-10-20 13:02:43 ----A---- C:\WINDOWS\system32\WudfUpdate_01011.dll
2016-10-12 09:11:19 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-10-12 09:11:17 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-10-12 09:11:16 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-10-12 09:11:16 ----A---- C:\WINDOWS\system32\msxml6.dll
2016-10-12 09:11:15 ----A---- C:\WINDOWS\system32\wpx.dll
2016-10-12 09:11:15 ----A---- C:\WINDOWS\system32\ncsi.dll
2016-10-12 09:11:14 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-10-12 09:11:14 ----A---- C:\WINDOWS\system32\nlasvc.dll
2016-10-12 09:11:14 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-10-12 09:11:14 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-10-12 09:11:13 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-12 09:11:13 ----A---- C:\WINDOWS\system32\netshell.dll
2016-10-12 09:11:13 ----A---- C:\WINDOWS\system32\bcdedit.exe
2016-10-12 09:11:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2016-10-12 09:11:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-12 09:11:12 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2016-10-12 09:11:12 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2016-10-12 09:11:12 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-12 09:11:12 ----A---- C:\WINDOWS\system32\dsreg.dll
2016-10-12 09:11:12 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2016-10-12 09:11:11 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2016-10-12 09:11:11 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2016-10-12 09:11:11 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-10-12 09:11:11 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2016-10-12 09:11:11 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-12 09:11:11 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-12 09:11:11 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2016-10-12 09:11:10 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-10-12 09:11:03 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-10-12 09:11:02 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-10-12 09:11:02 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-10-12 09:11:00 ----A---- C:\WINDOWS\system32\smartscreen.exe
2016-10-12 09:10:59 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-10-12 09:10:59 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2016-10-12 09:10:59 ----A---- C:\WINDOWS\system32\drivers\MegaSas2i.sys
2016-10-12 09:10:58 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-10-12 09:10:57 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-10-12 09:10:57 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2016-10-12 09:10:56 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2016-10-12 09:10:56 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-10-12 09:10:56 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-10-12 09:10:56 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-10-12 09:10:56 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-10-12 09:10:56 ----A---- C:\WINDOWS\system32\adsmsext.dll
2016-10-12 09:10:54 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-10-12 09:10:54 ----A---- C:\WINDOWS\SYSWOW64\dialclient.dll
2016-10-12 09:10:54 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-12 09:10:54 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-10-12 09:10:52 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-10-12 09:10:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-10-12 09:10:49 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-12 09:10:47 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-10-12 09:10:46 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2016-10-12 09:10:45 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-12 09:10:43 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-10-12 09:10:43 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-10-12 09:10:43 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-12 09:10:43 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-12 09:10:42 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2016-10-12 09:10:42 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2016-10-12 09:10:42 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2016-10-12 09:10:42 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-12 09:10:42 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-10-12 09:10:41 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2016-10-12 09:10:41 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-10-12 09:10:41 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2016-10-12 09:10:41 ----A---- C:\WINDOWS\system32\dialclient.dll
2016-10-12 09:10:40 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2016-10-12 09:10:33 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2016-10-12 09:10:33 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-10-12 09:10:33 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-10-12 09:10:32 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-10-12 09:10:32 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2016-10-12 09:10:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-10-12 09:10:30 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2016-10-12 09:10:30 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2016-10-12 09:10:29 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-10-12 09:10:29 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-10-12 09:10:29 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-10-12 09:10:28 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2016-10-12 09:10:28 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-10-12 09:10:28 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\system32\offreg.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\system32\msi.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-12 09:10:27 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-10-12 09:10:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-10-12 09:10:26 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-12 09:10:26 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-12 09:10:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-10-12 09:10:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-12 09:10:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2016-10-12 09:10:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-12 09:10:25 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-10-12 09:10:25 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-12 09:10:25 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-10-12 09:10:18 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2016-10-12 09:10:18 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-12 09:10:16 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2016-10-12 09:10:16 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-12 09:10:15 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-10-12 09:10:15 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-10-12 09:10:14 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-10-12 09:10:14 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-10-12 09:10:14 ----A---- C:\WINDOWS\system32\ContactApis.dll
2016-10-12 09:10:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2016-10-12 09:10:13 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-10-12 09:10:13 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-10-12 09:10:13 ----A---- C:\WINDOWS\system32\cloudAP.dll
2016-10-12 09:10:12 ----A---- C:\WINDOWS\SYSWOW64\adsmsext.dll
2016-10-12 09:10:12 ----A---- C:\WINDOWS\system32\ChatApis.dll
2016-10-12 09:10:12 ----A---- C:\WINDOWS\system32\EmailApis.dll
2016-10-12 09:10:12 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-10-12 09:10:12 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2016-10-12 09:10:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-12 09:10:11 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-12 09:10:11 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-10-12 09:10:11 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-12 09:10:11 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-10-12 09:10:11 ----A---- C:\WINDOWS\system32\drivers\bthpan.sys

======List of files/folders modified in the last 1 month======

2016-11-08 17:22:41 ----D---- C:\Program Files\trend micro
2016-11-08 17:20:29 ----D---- C:\Program Files (x86)\Steam
2016-11-08 17:20:14 ----D---- C:\WINDOWS\SoftwareDistribution
2016-11-08 17:20:14 ----D---- C:\WINDOWS\INF
2016-11-08 17:20:14 ----D---- C:\WINDOWS\debug
2016-11-08 17:20:14 ----D---- C:\Windows
2016-11-08 17:19:27 ----D---- C:\WINDOWS\Temp
2016-11-08 17:17:45 ----D---- C:\Users\Uživatel\AppData\Roaming\Origin
2016-11-08 17:13:44 ----D---- C:\WINDOWS\system32\NDF
2016-11-08 17:02:45 ----D---- C:\ProgramData\Origin
2016-11-08 16:59:17 ----D---- C:\WINDOWS\system32\sru
2016-11-08 16:59:14 ----D---- C:\WINDOWS\system32\drivers
2016-11-08 10:33:21 ----RD---- C:\WINDOWS\Microsoft.NET
2016-11-08 09:25:54 ----D---- C:\WINDOWS\Prefetch
2016-11-08 09:25:42 ----SHDC---- C:\WINDOWS\Installer
2016-11-08 09:25:41 ----D---- C:\WINDOWS\system32\Tasks
2016-11-08 09:25:31 ----AD---- C:\Program Files (x86)\Origin
2016-11-07 23:36:52 ----D---- C:\WINDOWS\system32\SleepStudy
2016-11-07 22:27:11 ----AD---- C:\Program Files (x86)\World of Warcraft
2016-11-07 20:59:10 ----AD---- C:\Program Files (x86)\Battle.net
2016-11-06 13:57:48 ----D---- C:\WINDOWS\AppReadiness
2016-11-06 09:50:39 ----D---- C:\WINDOWS\LiveKernelReports
2016-11-06 09:50:00 ----D---- C:\WINDOWS\System32
2016-11-05 14:08:21 ----SHD---- C:\System Volume Information
2016-11-05 12:24:33 ----D---- C:\WINDOWS\system32\catroot2
2016-11-05 11:45:30 ----HD---- C:\Program Files\WindowsApps
2016-11-04 22:41:16 ----D---- C:\Users\Uživatel\AppData\Roaming\Skype
2016-11-04 12:17:11 ----D---- C:\WINDOWS\SysWOW64
2016-11-02 10:40:29 ----D---- C:\WINDOWS\system32\config
2016-11-01 17:13:01 ----D---- C:\Users\Uživatel\AppData\Roaming\vlc
2016-10-31 22:16:44 ----HD---- C:\ProgramData
2016-10-30 16:25:03 ----D---- C:\WINDOWS\rescache
2016-10-28 12:40:31 ----D---- C:\WINDOWS\WinSxS
2016-10-28 12:40:31 ----D---- C:\WINDOWS\system32\DriverStore
2016-10-28 10:44:12 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-10-28 10:44:12 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-10-28 10:44:08 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-10-28 10:44:08 ----D---- C:\WINDOWS\system32\wbem
2016-10-28 10:44:07 ----D---- C:\WINDOWS\system32\oobe
2016-10-28 10:44:07 ----D---- C:\WINDOWS\system32\en-US
2016-10-28 10:44:07 ----D---- C:\WINDOWS\system32\cs-CZ
2016-10-28 10:44:07 ----D---- C:\WINDOWS\system32\Boot
2016-10-28 10:44:07 ----D---- C:\WINDOWS\system32\appraiser
2016-10-28 10:44:01 ----RSD---- C:\WINDOWS\Fonts
2016-10-28 10:44:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-10-28 10:44:01 ----D---- C:\WINDOWS\AppPatch
2016-10-28 10:44:01 ----D---- C:\Program Files\Windows Media Player
2016-10-28 10:44:01 ----D---- C:\Program Files (x86)\Windows Media Player
2016-10-28 10:31:26 ----D---- C:\WINDOWS\CbsTemp
2016-10-26 08:50:00 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-25 00:30:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-10-21 16:39:11 ----D---- C:\ProgramData\Skype
2016-10-21 16:19:42 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-10-21 16:19:41 ----D---- C:\WINDOWS\system32\CatRoot
2016-10-20 13:50:15 ----RD---- C:\WINDOWS\assembly
2016-10-19 08:34:01 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-10-19 08:32:25 ----AD---- C:\Program Files\Microsoft Office 15
2016-10-17 19:44:36 ----RD---- C:\Program Files (x86)\Skype
2016-10-17 19:44:36 ----D---- C:\Program Files (x86)\Common Files
2016-10-12 10:44:55 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-10-12 10:44:55 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-10-12 10:44:55 ----D---- C:\WINDOWS\system32\migwiz
2016-10-12 10:44:53 ----D---- C:\WINDOWS\ShellExperiences
2016-10-12 10:44:53 ----D---- C:\Program Files\Windows Photo Viewer
2016-10-12 10:44:53 ----D---- C:\Program Files\Windows Mail
2016-10-12 10:44:53 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-10-12 09:26:25 ----D---- C:\WINDOWS\system32\MRT
2016-10-12 09:19:58 ----AC---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-09-11 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-10-28 293352]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-11-21 632168]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-07-16 45920]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2015-09-14 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2016-06-04 47048]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-09-11 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-09-11 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-09-17 969184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-09-30 513632]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2016-07-07 27552]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-09-11 108816]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-09-11 163416]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 ACPIVPC;@oem31.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-09-14 33560]
R3 bcbtums;@oem27.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2016-07-07 227144]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2016-07-16 7585280]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-08-20 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-08-20 84992]
R3 clwvd6;@oem14.inf,%clwvd.DeviceDesc% Service;CyberLink WebCam Virtual Driver 6.0 Service; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [2013-10-29 41704]
R3 dtlitescsibus;@oem12.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-10-01 30264]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-12 3793872]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-08-21 3591000]
R3 IntcDAud;@oem6.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2000-01-01 454416]
R3 iwdbus;@oem3.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 MEIx64;@oem43.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-07-07 185896]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-06-04 13553096]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-06-14 26560]
R3 nvvad_WaveExtensible;@oem44.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2016-04-14 56384]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 rt640x64;@oem13.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-07-07 936192]
R3 RTSUER;@oem32.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2016-07-07 413912]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2016-07-07 33960]
R3 SynTP;@oem20.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2016-07-07 609280]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-09-11 37656]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BRDriver64_1_3_3_E02B25FC;BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [2016-07-10 78088]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-10-15 967168]
S3 btwampfl;@oem27.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2016-07-07 243512]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2015-12-08 122160]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;@oem2.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 semav6msr64;semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [2015-06-04 21984]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2015-12-08 214832]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-11 197128]
R2 BcmBtRSupport;@oem27.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2016-07-07 2305816]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2016-10-03 3037424]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-06-14 1163712]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2010-11-24 127800]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-11-21 16232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-12 319096]
R2 ImControllerService;System Interface Foundation Service; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2016-10-05 61256]
R2 Intel(R) ME Service;Intel® ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2014-10-10 132896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-10-10 158496]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-10-10 409376]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-06-14 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-06-14 2521024]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-06-03 1352760]
R2 OneSyncSvc_10159950;Hostitel synchronizace_10159950; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2016-11-08 2178576]
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2016-07-07 237736]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1268568]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-06-14 3632576]
R3 PimIndexMaintenanceSvc_10159950;Data kontaktů_10159950; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc_10159950;CDPUserSvc_10159950; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-14 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S2 SystemUsageReportSvc_WILLAMETTE;Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [2016-06-08 117400]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BRSptStub;BitRaider Mini-Support Service Stub Loader; C:\ProgramData\BitRaider\BRSptStub.exe [2016-07-10 363208]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-12 280696]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2016-06-08 416408]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-14 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-05-13 887256]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12 177376]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_10159950;Služba zasílání zpráv_10159950; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2016-11-08 2117128]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 150600]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-07 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[tata22]

Zdravím. Adware cleaner jsem již použil. Naprosto nic nenašel....

[Rudy]

OK. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100¨.

[tata22]

Jsem bezradný. Sice jsem stáhl a vypnul antivir a musel použít Edge. Nicméně mně program píše, že není umístěn na ploše. Mám ho na plochu umístit a znovu spustit. Jenže já ho na ploše vidím. Ne jako zástupce ale přímo program. Nechápu, zkoušel jsem to víckrát. Stáhnout rovnou na plochu i jinam a pak přesunout ale stále stejný problém. Nevím co dělám špatně. Poradíte ?

[Rudy]

Je v podstatě jedno, odkud se FRST spouští. Přesuňte ho do jiného adresáře.

[tata22]

No, mně to jedno je ale programu ne. Ať ho dám kam chci tak vždycky vyskočí okno s příkazovým řádkem a to mně nahlásí tu hlášku, kterou jsem uvedl. Takže nejde spusti odnikud. Nechápu to...

[tata22]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
Ran by Uživatel (administrator) on LENOVO (08-11-2016 22:09:42)
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel (Available Profiles: Uživatel)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Flux Software LLC) C:\Users\Uživatel\AppData\Local\FluxSoftware\Flux\flux.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
() C:\Program Files (x86)\Lenovo EasyCamera\Monitor.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Lenovo) C:\Users\Uživatel\AppData\Local\Apps\2.0\8M2W0OOL.T8O\3XZNCNPC.Z8K\lsb...tion_2d7b41b05b24775e_0001.0006_589ac911618caaca\LSB.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.350_none_43278ee965418581\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079352 2015-09-14] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2015-09-14] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3934720 2016-07-07] (Synaptics Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9099440 2016-10-28] (AVAST Software)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [Lenovo EasyCamera_Monitor] => C:\Program Files (x86)\Lenovo EasyCamera\monitor.exe [257224 2010-08-24] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49976 2014-08-01] (Hewlett-Packard)
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe [30264 2009-08-04] (Hewlett-Packard Company)
HKLM-x32\...\Run: [YouCam Service6] => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [500696 2013-11-26] (CyberLink Corp.)
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3044848 2016-11-08] (Electronic Arts)
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\Run: [f.lux] => C:\Users\Uživatel\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\MountPoints2: {df2aba64-6691-11e5-8258-083e8eaba036} - "D:\setup.exe"
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\MountPoints2: {df2ac63c-6691-11e5-8258-083e8eaba036} - "G:\setup.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177952 2016-06-03] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-11] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-09-06] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-09-06] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-09-06] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{74aad78d-b0e5-45a8-bf7d-604c587e26da}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{ed9f1729-f188-44bb-a9a6-284620b63e15}: [DhcpNameServer] 195.113.0.2 195.113.44.11

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-08-16] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-09-06] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-07-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Java\bin\ssv.dll [2016-09-26] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-09-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Java\bin\jp2ssv.dll [2016-09-26] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-11]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-10-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-10-10] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Java\bin\dtplugin\npDeployJava1.dll [2016-09-26] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Java\bin\plugin2\npjp2.dll [2016-09-26] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-09-15] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-31] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.modnipeklo.cz/
CHR StartupUrls: Default -> "hxxp://search.toggle.com/?lang=en&cid=adfaa7a7","hxxp://www.google.com/","hxxp://www.istartsurf ... kid=sp-006"
CHR Profile: C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default [2016-11-08]
CHR Extension: (Prezentace Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-14]
CHR Extension: (Dokumenty Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-14]
CHR Extension: (Disk Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-01-10]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-02-10]
CHR Extension: (YouTube) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-09-11]
CHR Extension: (Tabulky Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Avast Online Security) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-10-31]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2015-09-14]
CHR Extension: (New XKit) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\inobiceghmpkaklcknpniboilbjmlald [2016-01-10]
CHR Extension: (Clearly) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\iooicodkiihhpojmmeghjclgihfjdjhj [2015-09-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Tumblr Savior) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefddkjnflmjbclpnnoegglmmdfkidip [2016-08-30]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-09-06]
CHR Extension: (Gmail) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-14]
CHR Extension: (Chrome Media Router) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-28]
CHR Profile: C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\System Profile [2016-11-08]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-11] (AVAST Software)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2305816 2016-07-07] (Broadcom Corporation.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2016-07-10] (BitRaider, LLC)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3037424 2016-10-03] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
S3 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2013-11-21] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2016-05-12] (Intel Corporation)
R2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [61256 2016-10-05] (Lenovo Group Limited)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [132896 2014-10-10] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-10-10] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2117128 2016-11-08] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2178576 2016-11-08] (Electronic Arts)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736 2016-07-07] (Synaptics Incorporated)
S2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S3 vmicguestinterface; C:\WINDOWS\System32\icsvc.dll [305152 2016-09-15] (Microsoft Corporation)
S3 vmicheartbeat; C:\WINDOWS\System32\icsvc.dll [305152 2016-09-15] (Microsoft Corporation)
S3 vmickvpexchange; C:\WINDOWS\System32\icsvc.dll [305152 2016-09-15] (Microsoft Corporation)
S3 vmicshutdown; C:\WINDOWS\System32\icsvc.dll [305152 2016-09-15] (Microsoft Corporation)
S3 vmictimesync; C:\WINDOWS\System32\icsvc.dll [305152 2016-09-15] (Microsoft Corporation)
S3 vmicvmsession; C:\WINDOWS\System32\icsvc.dll [305152 2016-09-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-09-11] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-09-11] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-09-11] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-09-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-11] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-09-17] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-09-30] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-09-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-28] (AVAST Software)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [227144 2016-07-07] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [7585280 2016-07-16] (Broadcom Corporation)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2016-07-10] (BitRaider)
R3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-10-01] (Disc Soft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-07-07] (REALiX(tm))
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [936192 2016-07-07] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [413912 2016-07-07] (Realsil Semiconductor Corporation)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33960 2016-07-07] (Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-08 22:09 - 2016-11-08 22:10 - 00023872 _____ C:\Users\Uživatel\Desktop\FRST.txt
2016-11-08 22:08 - 2016-11-08 22:09 - 00000000 ____D C:\FRST
2016-11-08 22:08 - 2016-11-08 22:08 - 02410496 _____ (Farbar) C:\Users\Uživatel\Desktop\FRST64.exe
2016-11-08 21:45 - 2016-11-08 21:45 - 00015327 _____ C:\Users\Uživatel\Desktop\LM.bat
2016-11-08 21:30 - 2016-11-08 21:31 - 00112640 _____ (forum.viry.cz) C:\Users\Uživatel\Desktop\FRSTLauncher.exe
2016-11-08 21:29 - 2016-11-08 21:29 - 00112640 _____ (forum.viry.cz) C:\Users\Uživatel\Downloads\Nepotvrzeno 816728.crdownload
2016-11-08 21:28 - 2016-11-08 21:28 - 00112640 _____ (forum.viry.cz) C:\Users\Uživatel\Downloads\Nepotvrzeno 535782.crdownload
2016-11-08 21:22 - 2016-11-08 21:22 - 00000000 ___HD C:\OneDriveTemp
2016-11-08 18:37 - 2016-11-08 18:38 - 00868219 _____ C:\Users\Uživatel\Downloads\Char_Kindle.mobi
2016-11-08 17:27 - 2016-11-08 17:28 - 00000000 ____D C:\AdwCleaner
2016-11-08 17:26 - 2016-11-08 17:27 - 03910208 _____ C:\Users\Uživatel\Desktop\adwcleaner_6.030.exe
2016-11-08 17:21 - 2016-11-08 17:22 - 01222144 _____ C:\Users\Uživatel\Desktop\RSITx64.exe
2016-11-04 20:00 - 2016-11-04 20:00 - 00000000 ____D C:\Users\Uživatel\AppData\LocalLow\Burrito Studio
2016-11-04 19:42 - 2016-11-04 19:42 - 00000222 _____ C:\Users\Uživatel\Desktop\Highlands.url
2016-11-03 08:17 - 2016-11-03 08:49 - 00055409 _____ C:\Users\Uživatel\Downloads\Sešit12.xlsx
2016-11-03 08:17 - 2016-11-03 08:48 - 00031813 _____ C:\Users\Uživatel\Downloads\tenkrat-ve-skole.xlsx
2016-11-03 08:17 - 2016-11-03 08:17 - 00037270 _____ C:\Users\Uživatel\Downloads\ZSZU.hodina.2016-10-20.pdf
2016-11-03 08:17 - 2016-11-03 08:17 - 00028687 _____ C:\Users\Uživatel\Downloads\tenkrat-ve-skole (1).xlsx
2016-11-02 11:00 - 2016-11-02 11:00 - 00208947 _____ C:\Users\Uživatel\Downloads\A Christmas Hex- Winter Wonderland Collection.azw
2016-10-31 10:51 - 2016-10-31 11:00 - 04245126 _____ C:\Users\Uživatel\Downloads\Gay fantasy knihy.pptx
2016-10-28 11:44 - 2016-10-28 11:44 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Skyrim Special Edition
2016-10-28 10:06 - 2016-10-15 05:51 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-28 10:06 - 2016-10-15 05:51 - 00894088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-28 10:06 - 2016-10-15 05:48 - 07817568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-28 10:06 - 2016-10-15 05:48 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-28 10:06 - 2016-10-15 05:47 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-10-28 10:06 - 2016-10-15 05:26 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-28 10:06 - 2016-10-15 05:26 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-28 10:06 - 2016-10-15 05:26 - 04129928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-28 10:06 - 2016-10-15 05:26 - 01990648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-28 10:06 - 2016-10-15 05:26 - 01472536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-28 10:06 - 2016-10-15 05:26 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-10-28 10:06 - 2016-10-15 05:26 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-10-28 10:06 - 2016-10-15 05:26 - 00811416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-10-28 10:06 - 2016-10-15 05:26 - 00691080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-10-28 10:06 - 2016-10-15 05:22 - 01608896 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-10-28 10:06 - 2016-10-15 05:22 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-28 10:06 - 2016-10-15 05:22 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-10-28 10:06 - 2016-10-15 05:22 - 00628040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-28 10:06 - 2016-10-15 05:18 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2016-10-28 10:06 - 2016-10-15 05:18 - 00576400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-10-28 10:06 - 2016-10-15 05:18 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2016-10-28 10:06 - 2016-10-15 05:15 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-10-28 10:06 - 2016-10-15 05:15 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-10-28 10:06 - 2016-10-15 05:11 - 01424488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-10-28 10:06 - 2016-10-15 05:11 - 01263848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-10-28 10:06 - 2016-10-15 05:01 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-28 10:06 - 2016-10-15 04:57 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-28 10:06 - 2016-10-15 04:56 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-10-28 10:06 - 2016-10-15 04:54 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-10-28 10:06 - 2016-10-15 04:54 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-10-28 10:06 - 2016-10-15 04:54 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-10-28 10:06 - 2016-10-15 04:54 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-10-28 10:06 - 2016-10-15 04:53 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-10-28 10:06 - 2016-10-15 04:53 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-10-28 10:06 - 2016-10-15 04:53 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-28 10:06 - 2016-10-15 04:52 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-28 10:06 - 2016-10-15 04:52 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-10-28 10:06 - 2016-10-15 04:50 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-28 10:06 - 2016-10-15 04:50 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-28 10:06 - 2016-10-15 04:49 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-28 10:06 - 2016-10-15 04:48 - 03778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-28 10:06 - 2016-10-15 04:46 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 10:06 - 2016-10-15 04:45 - 00406016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-28 10:06 - 2016-10-15 04:44 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-10-28 10:06 - 2016-10-15 04:44 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 10:06 - 2016-10-15 04:43 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-10-28 10:06 - 2016-10-15 04:42 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-28 10:06 - 2016-10-15 04:42 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 10:06 - 2016-10-15 04:42 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-10-28 10:06 - 2016-10-15 04:42 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-10-28 10:06 - 2016-10-15 04:41 - 12174848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-10-28 10:06 - 2016-10-15 04:41 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-10-28 10:06 - 2016-10-15 04:40 - 13081600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-28 10:06 - 2016-10-15 04:39 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-28 10:06 - 2016-10-15 04:39 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-10-28 10:06 - 2016-10-15 04:39 - 00982528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-28 10:06 - 2016-10-15 04:38 - 07468032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-10-28 10:06 - 2016-10-15 04:38 - 00913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-28 10:06 - 2016-10-15 04:37 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-28 10:06 - 2016-10-15 04:37 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-28 10:06 - 2016-10-15 04:36 - 03617792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-28 10:06 - 2016-10-15 04:36 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-28 10:06 - 2016-10-15 04:36 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-10-28 10:06 - 2016-10-15 04:35 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-28 10:06 - 2016-10-15 04:34 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-10-28 10:06 - 2016-10-15 04:31 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-10-28 10:06 - 2016-08-27 06:12 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-28 10:05 - 2016-10-15 06:11 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 00595296 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 00322912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 00283488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-28 10:05 - 2016-10-15 05:51 - 00232800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-28 10:05 - 2016-10-15 05:51 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-28 10:05 - 2016-10-15 05:48 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-28 10:05 - 2016-10-15 05:48 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-28 10:05 - 2016-10-15 05:48 - 00773712 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-10-28 10:05 - 2016-10-15 05:43 - 01356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-28 10:05 - 2016-10-15 05:41 - 05622088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-28 10:05 - 2016-10-15 05:38 - 00500064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-10-28 10:05 - 2016-10-15 05:37 - 00063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-28 10:05 - 2016-10-15 05:34 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-10-28 10:05 - 2016-10-15 05:33 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2016-10-28 10:05 - 2016-10-15 05:32 - 01570680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-10-28 10:05 - 2016-10-15 05:31 - 02827864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-10-28 10:05 - 2016-10-15 05:31 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-28 10:05 - 2016-10-15 05:30 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-10-28 10:05 - 2016-10-15 05:30 - 00682816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-10-28 10:05 - 2016-10-15 05:30 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-10-28 10:05 - 2016-10-15 05:30 - 00341936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-28 10:05 - 2016-10-15 05:30 - 00238056 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-10-28 10:05 - 2016-10-15 05:29 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-28 10:05 - 2016-10-15 05:29 - 01267504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-28 10:05 - 2016-10-15 05:29 - 00908640 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-28 10:05 - 2016-10-15 05:29 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-10-28 10:05 - 2016-10-15 05:26 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-28 10:05 - 2016-10-15 05:26 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-10-28 10:05 - 2016-10-15 05:25 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-28 10:05 - 2016-10-15 05:25 - 00742704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-28 10:05 - 2016-10-15 05:21 - 00292872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-28 10:05 - 2016-10-15 05:19 - 02256592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-10-28 10:05 - 2016-10-15 05:15 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-10-28 10:05 - 2016-10-15 05:14 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-10-28 10:05 - 2016-10-15 05:11 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-10-28 10:05 - 2016-10-15 05:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2016-10-28 10:05 - 2016-10-15 05:06 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-10-28 10:05 - 2016-10-15 05:05 - 07216640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-28 10:05 - 2016-10-15 05:00 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-10-28 10:05 - 2016-10-15 05:00 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-10-28 10:05 - 2016-10-15 05:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2016-10-28 10:05 - 2016-10-15 04:59 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-28 10:05 - 2016-10-15 04:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-10-28 10:05 - 2016-10-15 04:59 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-28 10:05 - 2016-10-15 04:58 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-10-28 10:05 - 2016-10-15 04:58 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-10-28 10:05 - 2016-10-15 04:58 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2016-10-28 10:05 - 2016-10-15 04:57 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-28 10:05 - 2016-10-15 04:57 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2016-10-28 10:05 - 2016-10-15 04:57 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2016-10-28 10:05 - 2016-10-15 04:56 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-10-28 10:05 - 2016-10-15 04:56 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2016-10-28 10:05 - 2016-10-15 04:56 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-28 10:05 - 2016-10-15 04:56 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-10-28 10:05 - 2016-10-15 04:56 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-28 10:05 - 2016-10-15 04:56 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-28 10:05 - 2016-10-15 04:56 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-28 10:05 - 2016-10-15 04:55 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-10-28 10:05 - 2016-10-15 04:55 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-10-28 10:05 - 2016-10-15 04:55 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-10-28 10:05 - 2016-10-15 04:55 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-10-28 10:05 - 2016-10-15 04:55 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-28 10:05 - 2016-10-15 04:55 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-10-28 10:05 - 2016-10-15 04:55 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFi.dll
2016-10-28 10:05 - 2016-10-15 04:55 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-28 10:05 - 2016-10-15 04:54 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2016-10-28 10:05 - 2016-10-15 04:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-28 10:05 - 2016-10-15 04:54 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-10-28 10:05 - 2016-10-15 04:54 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingFolder.dll
2016-10-28 10:05 - 2016-10-15 04:54 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoplay.dll
2016-10-28 10:05 - 2016-10-15 04:54 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2016-10-28 10:05 - 2016-10-15 04:53 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-10-28 10:05 - 2016-10-15 04:53 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-10-28 10:05 - 2016-10-15 04:53 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-28 10:05 - 2016-10-15 04:53 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-10-28 10:05 - 2016-10-15 04:53 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-10-28 10:05 - 2016-10-15 04:52 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-10-28 10:05 - 2016-10-15 04:51 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-10-28 10:05 - 2016-10-15 04:51 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-28 10:05 - 2016-10-15 04:50 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-28 10:05 - 2016-10-15 04:50 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-10-28 10:05 - 2016-10-15 04:50 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-10-28 10:05 - 2016-10-15 04:50 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2016-10-28 10:05 - 2016-10-15 04:50 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-10-28 10:05 - 2016-10-15 04:50 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-10-28 10:05 - 2016-10-15 04:50 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-28 10:05 - 2016-10-15 04:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-10-28 10:05 - 2016-10-15 04:49 - 01913344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-28 10:05 - 2016-10-15 04:49 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-10-28 10:05 - 2016-10-15 04:49 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-10-28 10:05 - 2016-10-15 04:49 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-10-28 10:05 - 2016-10-15 04:49 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-10-28 10:05 - 2016-10-15 04:49 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-28 10:05 - 2016-10-15 04:49 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-10-28 10:05 - 2016-10-15 04:49 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-28 10:05 - 2016-10-15 04:48 - 01554944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-28 10:05 - 2016-10-15 04:48 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-10-28 10:05 - 2016-10-15 04:48 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-28 10:05 - 2016-10-15 04:47 - 07792640 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-28 10:05 - 2016-10-15 04:47 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-10-28 10:05 - 2016-10-15 04:47 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-10-28 10:05 - 2016-10-15 04:47 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 10:05 - 2016-10-15 04:47 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-10-28 10:05 - 2016-10-15 04:47 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-10-28 10:05 - 2016-10-15 04:46 - 03287552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-28 10:05 - 2016-10-15 04:46 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 10:05 - 2016-10-15 04:46 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
2016-10-28 10:05 - 2016-10-15 04:45 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-10-28 10:05 - 2016-10-15 04:45 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 10:05 - 2016-10-15 04:45 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-10-28 10:05 - 2016-10-15 04:44 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-10-28 10:05 - 2016-10-15 04:44 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-10-28 10:05 - 2016-10-15 04:43 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-10-28 10:05 - 2016-10-15 04:43 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-10-28 10:05 - 2016-10-15 04:43 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-10-28 10:05 - 2016-10-15 04:42 - 12349440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-10-28 10:05 - 2016-10-15 04:42 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-10-28 10:05 - 2016-10-15 04:42 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-28 10:05 - 2016-10-15 04:42 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-10-28 10:05 - 2016-10-15 04:41 - 07654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-28 10:05 - 2016-10-15 04:41 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-10-28 10:05 - 2016-10-15 04:41 - 00940032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-10-28 10:05 - 2016-10-15 04:41 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-10-28 10:05 - 2016-10-15 04:41 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-10-28 10:05 - 2016-10-15 04:41 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chartv.dll
2016-10-28 10:05 - 2016-10-15 04:39 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-10-28 10:05 - 2016-10-15 04:38 - 13441024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-28 10:05 - 2016-10-15 04:38 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-10-28 10:05 - 2016-10-15 04:38 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-10-28 10:05 - 2016-10-15 04:38 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-10-28 10:05 - 2016-10-15 04:38 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-10-28 10:05 - 2016-10-15 04:38 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-10-28 10:05 - 2016-10-15 04:37 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-10-28 10:05 - 2016-10-15 04:37 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-10-28 10:05 - 2016-10-15 04:37 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-10-28 10:05 - 2016-10-15 04:37 - 01980416 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-28 10:05 - 2016-10-15 04:37 - 01029632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-28 10:05 - 2016-10-15 04:37 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-10-28 10:05 - 2016-10-15 04:37 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 02512384 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-28 10:05 - 2016-10-15 04:36 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-28 10:05 - 2016-10-15 04:36 - 00629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-10-28 10:05 - 2016-10-15 04:36 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmifw.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 03054080 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 02999808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-10-28 10:05 - 2016-10-15 04:35 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-10-28 10:05 - 2016-10-15 04:35 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-10-28 10:05 - 2016-10-15 04:34 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-28 10:05 - 2016-10-15 04:34 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-28 10:05 - 2016-10-15 04:34 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-28 10:05 - 2016-10-15 04:34 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-28 10:05 - 2016-10-15 04:32 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-28 10:05 - 2016-09-10 14:21 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-10-28 10:05 - 2016-08-06 05:17 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-28 10:04 - 2016-10-15 05:38 - 00409952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-10-28 10:04 - 2016-10-15 05:32 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-10-28 10:04 - 2016-10-15 05:31 - 02750384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-28 10:04 - 2016-10-15 05:31 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-28 10:04 - 2016-10-15 05:31 - 00658272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-28 10:04 - 2016-10-15 05:30 - 00557408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-28 10:04 - 2016-10-15 05:29 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-28 10:04 - 2016-10-15 05:26 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-28 10:04 - 2016-10-15 05:26 - 00160096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-28 10:04 - 2016-10-15 05:21 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-28 10:04 - 2016-10-15 05:21 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-28 10:04 - 2016-10-15 05:21 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-10-28 10:04 - 2016-10-15 05:20 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-10-28 10:04 - 2016-10-15 05:19 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2016-10-28 10:04 - 2016-10-15 05:18 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-10-28 10:04 - 2016-10-15 05:18 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-10-28 10:04 - 2016-10-15 05:18 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-10-28 10:04 - 2016-10-15 05:15 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-10-28 10:04 - 2016-10-15 05:15 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-10-28 10:04 - 2016-10-15 05:15 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-10-28 10:04 - 2016-10-15 05:15 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-10-28 10:04 - 2016-10-15 05:15 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2016-10-28 10:04 - 2016-10-15 05:11 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-10-28 10:04 - 2016-10-15 05:02 - 22568960 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-28 10:04 - 2016-10-15 05:00 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-28 10:04 - 2016-10-15 04:59 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-10-28 10:04 - 2016-10-15 04:57 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-10-28 10:04 - 2016-10-15 04:56 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2016-10-28 10:04 - 2016-10-15 04:56 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-28 10:04 - 2016-10-15 04:56 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-28 10:04 - 2016-10-15 04:55 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-28 10:04 - 2016-10-15 04:54 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2016-10-28 10:04 - 2016-10-15 04:54 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-10-28 10:04 - 2016-10-15 04:54 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-28 10:04 - 2016-10-15 04:53 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-10-28 10:04 - 2016-10-15 04:52 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-28 10:04 - 2016-10-15 04:52 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-10-28 10:04 - 2016-10-15 04:51 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-10-28 10:04 - 2016-10-15 04:51 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-10-28 10:04 - 2016-10-15 04:50 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-10-28 10:04 - 2016-10-15 04:49 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-10-28 10:04 - 2016-10-15 04:48 - 23680000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-28 10:04 - 2016-10-15 04:47 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-10-28 10:04 - 2016-10-15 04:46 - 19418112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-10-28 10:04 - 2016-10-15 04:46 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-10-28 10:04 - 2016-10-15 04:45 - 01790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-10-28 10:04 - 2016-10-15 04:44 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-10-28 10:04 - 2016-10-15 04:44 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-10-28 10:04 - 2016-10-15 04:42 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-10-28 10:04 - 2016-10-15 04:42 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-28 10:04 - 2016-10-15 04:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2016-10-28 10:04 - 2016-10-15 04:41 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-10-28 10:04 - 2016-10-15 04:40 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-28 10:04 - 2016-10-15 04:39 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-28 10:04 - 2016-10-15 04:39 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-10-28 10:04 - 2016-10-15 04:39 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-28 10:04 - 2016-10-15 04:37 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-10-28 10:04 - 2016-10-15 04:37 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-10-28 10:04 - 2016-10-15 04:37 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-10-28 10:04 - 2016-10-15 04:37 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-10-28 10:04 - 2016-10-15 04:36 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-10-28 10:04 - 2016-10-15 04:36 - 01637888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-28 10:04 - 2016-10-15 04:36 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-10-28 10:04 - 2016-10-15 04:36 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-28 10:04 - 2016-10-15 04:36 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-28 10:04 - 2016-10-15 04:35 - 02670592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-28 10:04 - 2016-10-15 04:35 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-10-28 10:04 - 2016-10-15 04:35 - 01512960 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-10-28 10:04 - 2016-10-15 04:35 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-10-28 10:04 - 2016-10-15 04:34 - 02476544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-27 20:19 - 2016-10-27 20:19 - 00000222 _____ C:\Users\Uživatel\Desktop\The Elder Scrolls V Skyrim Special Edition.url
2016-10-27 08:04 - 2016-10-27 08:04 - 00048657 _____ C:\Users\Uživatel\Downloads\Kopie - ROZVRH ZS 2016_2017_4.xlsx
2016-10-20 13:02 - 2016-10-21 13:07 - 02365296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WudfUpdate_01011.dll
2016-10-19 19:30 - 2016-10-19 20:17 - 00057322 _____ C:\Users\Uživatel\Desktop\Sešit1.xlsx
2016-10-14 11:52 - 2016-10-14 11:52 - 00566624 _____ C:\Users\Uživatel\Downloads\Hexmaker (Hexworld Book 2).azw3
2016-10-12 20:18 - 2016-10-12 20:18 - 00018577 _____ C:\Users\Uživatel\Desktop\úkol.xlsx
2016-10-12 17:49 - 2016-10-12 20:18 - 00016068 _____ C:\Users\Uživatel\Downloads\tenkrat-ve-skole.ods
2016-10-12 17:49 - 2016-10-12 17:49 - 00046720 _____ C:\Users\Uživatel\Downloads\ZSZU.hodina.2016-10-06.pdf
2016-10-12 09:11 - 2016-10-05 11:17 - 01322848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-12 09:11 - 2016-10-05 11:12 - 02446696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-10-12 09:11 - 2016-10-05 10:36 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-12 09:11 - 2016-10-05 10:35 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-12 09:11 - 2016-10-05 10:35 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-12 09:11 - 2016-10-05 10:33 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-12 09:11 - 2016-10-05 10:33 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-10-12 09:11 - 2016-10-05 10:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-10-12 09:11 - 2016-10-05 10:31 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-10-12 09:11 - 2016-10-05 10:31 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-12 09:11 - 2016-10-05 10:30 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-10-12 09:11 - 2016-10-05 10:29 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-10-12 09:11 - 2016-10-05 10:28 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2016-10-12 09:11 - 2016-10-05 10:26 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2016-10-12 09:11 - 2016-10-05 10:26 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2016-10-12 09:11 - 2016-10-05 10:25 - 01589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-12 09:11 - 2016-10-05 10:25 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2016-10-12 09:11 - 2016-10-05 10:25 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-10-12 09:11 - 2016-10-05 10:24 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2016-10-12 09:11 - 2016-10-05 10:23 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Wallet.dll
2016-10-12 09:11 - 2016-10-05 10:20 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-12 09:11 - 2016-10-05 10:19 - 02390016 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2016-10-12 09:11 - 2016-10-05 10:18 - 00759296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-12 09:11 - 2016-10-05 10:17 - 08126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-12 09:11 - 2016-10-05 10:17 - 02914304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-12 09:11 - 2016-10-05 10:16 - 04747776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-12 09:11 - 2016-10-05 10:15 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-10-12 09:11 - 2016-10-05 10:11 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-10-12 09:11 - 2016-10-05 10:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-10-12 09:11 - 2016-10-05 10:09 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-10-12 09:11 - 2016-10-05 10:08 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-10-12 09:11 - 2016-10-05 10:07 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-10-12 09:10 - 2016-10-05 11:35 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-10-12 09:10 - 2016-10-05 11:33 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-12 09:10 - 2016-10-05 11:31 - 02213248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-10-12 09:10 - 2016-10-05 11:22 - 01181536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-10-12 09:10 - 2016-10-05 11:16 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-10-12 09:10 - 2016-10-05 11:13 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-12 09:10 - 2016-10-05 11:13 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-12 09:10 - 2016-10-05 11:12 - 01112928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-10-12 09:10 - 2016-10-05 11:09 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-12 09:10 - 2016-10-05 11:09 - 00064352 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-10-12 09:10 - 2016-10-05 11:08 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-12 09:10 - 2016-10-05 11:03 - 01705976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-10-12 09:10 - 2016-10-05 10:51 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-10-12 09:10 - 2016-10-05 10:50 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2016-10-12 09:10 - 2016-10-05 10:49 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-10-12 09:10 - 2016-10-05 10:48 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-10-12 09:10 - 2016-10-05 10:46 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-10-12 09:10 - 2016-10-05 10:46 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-10-12 09:10 - 2016-10-05 10:38 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-12 09:10 - 2016-10-05 10:38 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-12 09:10 - 2016-10-05 10:36 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-10-12 09:10 - 2016-10-05 10:36 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-10-12 09:10 - 2016-10-05 10:35 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-10-12 09:10 - 2016-10-05 10:35 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-12 09:10 - 2016-10-05 10:34 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-12 09:10 - 2016-10-05 10:33 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-12 09:10 - 2016-10-05 10:32 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-10-12 09:10 - 2016-10-05 10:32 - 00379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-12 09:10 - 2016-10-05 10:32 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-12 09:10 - 2016-10-05 10:31 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-10-12 09:10 - 2016-10-05 10:31 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-10-12 09:10 - 2016-10-05 10:31 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-12 09:10 - 2016-10-05 10:31 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-12 09:10 - 2016-10-05 10:31 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-10-12 09:10 - 2016-10-05 10:29 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-10-12 09:10 - 2016-10-05 10:28 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-10-12 09:10 - 2016-10-05 10:28 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-12 09:10 - 2016-10-05 10:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-10-12 09:10 - 2016-10-05 10:28 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2016-10-12 09:10 - 2016-10-05 10:27 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-12 09:10 - 2016-10-05 10:27 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-10-12 09:10 - 2016-10-05 10:27 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-12 09:10 - 2016-10-05 10:26 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-12 09:10 - 2016-10-05 10:26 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2016-10-12 09:10 - 2016-10-05 10:25 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-10-12 09:10 - 2016-10-05 10:25 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-10-12 09:10 - 2016-10-05 10:24 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-12 09:10 - 2016-10-05 10:23 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-12 09:10 - 2016-10-05 10:23 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-10-12 09:10 - 2016-10-05 10:23 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-10-12 09:10 - 2016-10-05 10:23 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-10-12 09:10 - 2016-10-05 10:23 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-10-12 09:10 - 2016-10-05 10:22 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-12 09:10 - 2016-10-05 10:21 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-10-12 09:10 - 2016-10-05 10:21 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-10-12 09:10 - 2016-10-05 10:21 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-10-12 09:10 - 2016-10-05 10:20 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-12 09:10 - 2016-10-05 10:20 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-10-12 09:10 - 2016-10-05 10:18 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-12 09:10 - 2016-10-05 10:18 - 00983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-10-12 09:10 - 2016-10-05 10:18 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-10-12 09:10 - 2016-10-05 10:17 - 04136960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-12 09:10 - 2016-10-05 10:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2016-10-12 09:10 - 2016-10-05 10:16 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-10-12 09:10 - 2016-10-05 10:16 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-10-12 09:10 - 2016-10-05 10:16 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-12 09:10 - 2016-10-05 10:16 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-10-12 09:10 - 2016-10-05 10:15 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-12 09:10 - 2016-10-05 10:15 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-10-12 09:10 - 2016-10-05 10:15 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-10-12 09:10 - 2016-10-05 10:15 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2016-10-12 09:10 - 2016-10-05 10:14 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-10-12 09:10 - 2016-10-05 10:14 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-10-12 09:10 - 2016-10-05 10:14 - 01013760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-10-12 09:10 - 2016-10-05 10:13 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-12 09:10 - 2016-10-05 10:13 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2016-10-12 09:10 - 2016-10-05 10:12 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-12 09:10 - 2016-10-05 10:12 - 00998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-10-12 09:10 - 2016-10-05 10:12 - 00924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-12 09:10 - 2016-10-05 10:11 - 03496960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-12 09:10 - 2016-10-05 10:11 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-10-12 09:10 - 2016-10-05 10:09 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-10-12 09:10 - 2016-10-05 10:09 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-10-12 09:10 - 2016-10-05 10:08 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-10-12 09:10 - 2016-10-05 10:08 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-10-12 09:10 - 2016-10-05 10:07 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-10-12 09:10 - 2016-10-05 10:07 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-10-12 09:10 - 2016-10-05 10:07 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-10-12 09:10 - 2016-10-05 10:07 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2016-10-12 09:10 - 2016-10-05 10:06 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-10-12 09:10 - 2016-10-05 10:06 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-10-12 09:10 - 2016-10-05 10:05 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-10-12 09:10 - 2016-10-05 10:05 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-10-12 09:10 - 2016-10-05 01:01 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-11 16:02 - 2016-10-11 16:02 - 00000000 ____D C:\Users\Uživatel\Desktop\3_modul
2016-10-11 08:55 - 2016-10-11 09:13 - 580039376 _____ C:\Users\Uživatel\Downloads\3_modul.zip
2016-10-10 15:56 - 2016-10-10 15:56 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-08 22:08 - 2015-09-14 17:35 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Origin
2016-11-08 21:55 - 2016-09-10 03:08 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-08 21:45 - 2016-07-06 19:01 - 00029696 _____ C:\Users\Uživatel\AppData\Local\MSGBOX.EXE
2016-11-08 21:40 - 2016-07-07 19:41 - 00000000 ____D C:\Users\Pavla
2016-11-08 21:24 - 2016-07-16 23:25 - 00580854 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-08 21:24 - 2016-07-16 23:25 - 00122528 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-08 21:24 - 2016-04-27 07:54 - 01702576 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-08 21:24 - 2015-09-14 17:34 - 00000000 ____D C:\ProgramData\Origin
2016-11-08 21:22 - 2016-01-17 18:29 - 00000000 ___RD C:\Users\Uživatel\OneDrive
2016-11-08 21:22 - 2015-10-20 11:41 - 00000000 ____D C:\Users\Uživatel\Documents\YouCam
2016-11-08 21:20 - 2015-09-30 16:19 - 00000000 ____D C:\Program Files (x86)\Steam
2016-11-08 21:19 - 2015-09-14 09:16 - 00000000 __SHD C:\Users\Uživatel\IntelGraphicsProfiles
2016-11-08 21:17 - 2016-09-10 06:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-08 21:16 - 2016-09-10 03:17 - 00000000 ____D C:\Users\Uživatel
2016-11-08 21:16 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-11-08 20:54 - 2016-09-09 16:37 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Battle.net
2016-11-08 20:09 - 2016-09-09 16:38 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2016-11-08 20:00 - 2016-09-09 16:36 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-11-08 17:30 - 2015-09-17 16:04 - 00000000 ____D C:\Users\Pavla\knihy
2016-11-08 17:22 - 2016-07-06 17:00 - 00000000 ____D C:\Program Files\trend micro
2016-11-08 17:20 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2016-11-08 17:19 - 2016-09-11 16:44 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-08 17:13 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-08 09:25 - 2016-09-10 06:38 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-11-08 09:25 - 2015-09-14 17:33 - 00000000 ____D C:\Program Files (x86)\Origin
2016-11-06 13:57 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-06 10:40 - 2015-09-14 08:51 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Packages
2016-11-06 10:30 - 2016-09-11 17:20 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Deployment
2016-11-06 09:50 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-05 11:45 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-04 22:41 - 2016-01-17 18:32 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Skype
2016-11-04 12:17 - 2015-09-15 21:01 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-03 08:14 - 2015-09-14 15:43 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-03 08:14 - 2015-09-14 15:43 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-01 17:13 - 2015-09-16 14:22 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\vlc
2016-10-30 18:24 - 2015-09-14 15:42 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Google
2016-10-30 16:25 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-10-28 11:44 - 2015-10-07 20:00 - 00000000 ____D C:\Users\Uživatel\Documents\My Games
2016-10-28 11:41 - 2016-04-27 07:56 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-28 11:28 - 2015-09-14 15:42 - 00293352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-10-28 11:17 - 2016-09-10 03:08 - 00347400 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-28 10:44 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-28 10:44 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-10-28 10:44 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-28 10:44 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-28 10:43 - 2016-07-16 12:47 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-10-28 10:31 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-25 00:30 - 2016-07-16 12:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-25 00:30 - 2016-07-16 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-24 18:24 - 2015-12-28 20:22 - 00001274 _____ C:\Users\Public\Desktop\Jade Empire.lnk
2016-10-21 16:39 - 2016-01-17 18:32 - 00000000 ____D C:\ProgramData\Skype
2016-10-19 08:34 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-10-19 08:32 - 2015-09-14 16:01 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-10-17 19:44 - 2016-01-17 18:32 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-12 18:02 - 2015-09-14 20:26 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Microsoft Help
2016-10-12 10:44 - 2016-07-16 12:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-12 10:44 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-10-12 10:44 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-10-12 10:44 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-12 10:44 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-12 09:26 - 2015-09-14 11:02 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-12 09:19 - 2015-09-14 11:02 - 143495576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories =======

2016-07-06 19:01 - 2016-11-08 21:45 - 0029696 _____ () C:\Users\Uživatel\AppData\Local\MSGBOX.EXE
2016-09-10 03:10 - 2016-09-10 03:10 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-10-09 17:53 - 2015-10-09 18:00 - 0000349 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-11-01 11:45

==================== End of FRST.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\MountPoints2: {df2aba64-6691-11e5-8258-083e8eaba036} - "D:\setup.exe"
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\MountPoints2: {df2ac63c-6691-11e5-8258-083e8eaba036} - "G:\setup.exe"
C:\ProgramData\DP45977C.lfl
Task: {A3DF4658-4F1B-4201-A61A-6AD7B2D6BBE2} - \WPD\SqmUpload_S-1-5-21-3250568189-2878621874-2660440074-1001 -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[tata22]

Fix result of Farbar Recovery Scan Tool (x64) Version: 04-11-2016
Ran by Uživatel (11-11-2016 17:50:43) Run:1
Running from C:\Users\Uživatel\Desktop
Loaded Profiles: Uživatel (Available Profiles: Uživatel)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\MountPoints2: {df2aba64-6691-11e5-8258-083e8eaba036} - "D:\setup.exe"
HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\...\MountPoints2: {df2ac63c-6691-11e5-8258-083e8eaba036} - "G:\setup.exe"
C:\ProgramData\DP45977C.lfl
Task: {A3DF4658-4F1B-4201-A61A-6AD7B2D6BBE2} - \WPD\SqmUpload_S-1-5-21-3250568189-2878621874-2660440074-1001 -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
End
*****************

"HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{df2aba64-6691-11e5-8258-083e8eaba036}" => key removed successfully
HKCR\CLSID\{df2aba64-6691-11e5-8258-083e8eaba036} => key not found.
"HKU\S-1-5-21-3250568189-2878621874-2660440074-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{df2ac63c-6691-11e5-8258-083e8eaba036}" => key removed successfully
HKCR\CLSID\{df2ac63c-6691-11e5-8258-083e8eaba036} => key not found.
Could not move "C:\ProgramData\DP45977C.lfl" => Scheduled to move on reboot.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A3DF4658-4F1B-4201-A61A-6AD7B2D6BBE2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3DF4658-4F1B-4201-A61A-6AD7B2D6BBE2}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-3250568189-2878621874-2660440074-1001" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 11-11-2016 17:53:32)

C:\ProgramData\DP45977C.lfl => Is moved successfully

==== End of Fixlog 17:53:33 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[tata22]

No, trochu rychlejší to rozhodně je ale pořád proti mému PC nebo synovu NTB je viditelný rozdíl. Vždycky to nabíhá tak cca 5 minut. Mně W10 naskočí během několika sekund, synovi tak do 30s...

[Rudy]

Spusťte přík. řádek a napište:

msconfig

a odentrujte.

V otevřeném okně na záložkách "Po spuštění" a "Služby" odstraňte zatržítka u všech položek, které nemusí automaticky startovat. V praxi jsou to všechny ne-microsoftí, kromě antiviru a ovladačů. Nastavení uložte a restartujte PC.

[tata22]

něco jsem povypínal a trochu to pomohlo ale do ideálu to má daleko. Snesitelnější už to ale je. Cca 1 minuta. Takže jsem to o hodně zlepšili. Napadá Vás ještě něco ?

[Rudy]

Jj. Defragmentovat disk.