Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

prosim o provereni

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

prosim o provereni

#1 Příspěvek od zail »

Dobry den psledni dobou se mi nejak pomalu nacita internetove strnaky, prosim o provereni
Dekuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by lukas_000 at 2017-03-25 23:19:47
Microsoft Windows 10 Home
System drive C: has 156 GB (69%) free of 226 GB
Total RAM: 32710 MB (85% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:19:48, on 25.03.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe
C:\Program Files (x86)\ASUS\System Level Up Driver\SysLevelUp.exe
C:\Program Files (x86)\ASUS\System Level Up Driver\AsSysLevelUpSrc.exe
C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\ASUS_Manager_Lighting.exe
C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe
C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe
C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe
C:\Program Files (x86)\ASUS\AEGIS\AEGIS_AlertService.exe
C:\Program Files (x86)\ASUS\AEGIS\AEGIS_SysMode.exe
C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\CheckCD_RomLighting.exe
C:\Program Files (x86)\ASUS\AEGIS\AsToastHelper.exe
E:\MSI Afterburner OSD\MSI Afterburner\MSIAfterburner.exe
E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSS.exe
E:\MSI Afterburner OSD\RivaTuner Statistics Server\EncoderServer.exe
E:\steam\Steam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe
E:\steam\bin\cef\cef.win7\steamwebhelper.exe
E:\gog galaxy\GalaxyClient\GalaxyClient.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Curse.exe
C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe
C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe
C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe
C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe
C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe
E:\avast\AvastUI.exe
C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
E:\kies\Kies\KiesTrayAgent.exe
C:\ProgramData\Razer\SwitchBlade\DeathStalker\Razer\1068AAE3-6299-4086-A7F6-0600F5F1D1E5\RzHome.exe
C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
C:\Program Files (x86)\Razer\SwitchBlade\RzAppManager.exe
C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe
E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe
C:\ProgramData\Razer\SwitchBlade\Apps\Razer\91845076-CD47-435F-A442-CEB373A3ADE8\RzNumpad.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
E:\lol\RADS\system\rads_user_kernel.exe
E:\lol\RADS\projects\lol_launcher\releases\0.0.1.40\deploy\LoLLauncher.exe
E:\lol\RADS\projects\lol_patcher\releases\0.0.0.80\deploy\LoLPatcher.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
E:\lol\RADS\projects\lol_air_client\releases\0.0.1.245\deploy\LolClient.exe
C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Overlay\v7.1.6288.5257\Coherent2\Win32\host\CoherentUI_Host.exe
C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Overlay\v7.1.6288.5257\Coherent2\Win32\host\CoherentUI_Host.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\DllHost.exe
C:\Program Files\trend micro\lukas_000.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com/?pc=ASJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ASUSWSLoader.exe
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [RzSBHelper] C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe
O4 - HKLM\..\Run: [AvastUI.exe] "E:\avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] E:\kies\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Kraken71ChromaHelper] C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe /start
O4 - HKCU\..\Run: [Steam] "E:\steam\steam.exe" -silent
O4 - HKCU\..\Run: [GalaxyClient] E:\gog galaxy\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_822640D12963A0CFAF5BB81B94632257] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\deamon lite\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILFE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-312 313 315 Series"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\lukas_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_2\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\lukas_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_2\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Curse.lnk = lukas_000\AppData\Roaming\Curse Client\Bin\Curse.exe
O4 - Global Startup: RazerFPSStartup.lnk = C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - E:\avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - E:\avast\AvastSvc.exe
O23 - Service: @oem48.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - E:\deamon lite\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\WINDOWS\system32\EscSvc64.exe (file missing)
O23 - Service: EPSON V3 Service4(06) (EPSON_PM_RPCV4_06) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: GalaxyClientService - GOG.com - E:\gog galaxy\GalaxyClient\GalaxyClientService.exe
O23 - Service: GalaxyCommunication - GOG.com - C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing)
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - E:\nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\SysWOW64\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Razer Chroma SDK Service - Razer Inc. - C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Razer Overlay Subsystem Emergency Service (RzOvlMon) - Razer, Inc. - C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - E:\smart switch\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - E:\Nová složka\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 18145 bytes

======Listing Processes======









winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
dashost.exe {5415f5df-63d1-4d33-9ffc1e769bd94946}
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-96348bd6-dbe2-46eb-a1e1-17a8165492c1 -SystemEventPortName:HostProcess-5c7af2b3-c28f-452c-bf02-5a99d9c77b07 -IoCancelEventPortName:HostProcess-57dd5c32-a941-4a0e-b951-2f5b9dcfaf98 -NonStateChangingEventPortName:HostProcess-858fe5bf-7426-423b-8d8f-2ef29b8066a6 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:45e70de3-b9af-4e42-a345-9ed8f4d94239 -DeviceGroupId:WpdFsGroup
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted

C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE"
C:\WINDOWS\system32\EscSvc64.exe
C:\Windows\system32\IProsetMonitor.exe
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\BtwRSupportService.exe
"C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe"
"C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
C:\WINDOWS\SysWOW64\IoctlSvc.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"

"E:\smart switch\USB Drivers\27_ssconn\conn\ss_conn_service.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"E:\Nová složka\TeamViewer_Service.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
sihost.exe
"C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe"
"C:\Program Files (x86)\ASUS\System Level Up Driver\SysLevelUp.exe"
"C:\Program Files (x86)\ASUS\System Level Up Driver\AsSysLevelUpSrc.exe"
"C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\ASUS_Manager_Lighting.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe"
"C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe"
"C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe"
"C:\Program Files (x86)\ASUS\AEGIS\AEGIS_AlertService.exe"
"C:\Program Files (x86)\ASUS\AEGIS\AEGIS_SysMode.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\CheckCD_RomLighting.exe"
"C:\Program Files (x86)\ASUS\AEGIS\AsToastHelper.exe"
"E:\MSI Afterburner OSD\MSI Afterburner\MSIAfterburner.exe" /s
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSS.exe"
"E:\MSI Afterburner OSD\RivaTuner Statistics Server\EncoderServer.exe" /i
"E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSSHooksLoader64.exe" /i
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX4
"E:\steam\Steam.exe" -silent
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\lukas_000\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=56.0.2924.87 --initial-client-data=0x258,0x25c,0x260,0x254,0x264,0x63237598,0x632375bc,0x632375a4
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=7320 --on-initialized-event-handle=880 --parent-handle=884 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/ReturnLessThan8OnMobile/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/AutoImportDisabled/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Enabled2/InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingLaunched/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_52/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/group_01/WebFontsInterventionV2/Default/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,19,20,23,40,71 --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7866 --gpu-driver-date=2-9-2017 --service-request-channel-token=5803A50E3E93E1BB88CCDD322B2C151B --mojo-platform-channel-handle=1544 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe"
"C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/ReturnLessThan8OnMobile/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/AutoImportDisabled/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingLaunched/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_52/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/group_01/WebFontsInterventionV2/Default/ --primordial-pipe-token=8C0E455BA1E8B602CCFDDE7FBA41D0FE --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=8C0E455BA1E8B602CCFDDE7FBA41D0FE --renderer-client-id=4 --mojo-platform-channel-handle=2900 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/ReturnLessThan8OnMobile/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/AutoImportDisabled/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingLaunched/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_52/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/group_01/WebFontsInterventionV2/Default/ --primordial-pipe-token=532C1D399D0E2BA6EB2EED265672E18F --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=532C1D399D0E2BA6EB2EED265672E18F --renderer-client-id=5 --mojo-platform-channel-handle=2860 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/ReturnLessThan8OnMobile/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/AutoImportDisabled/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingLaunched/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_52/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/group_01/WebFontsInterventionV2/Default/ --primordial-pipe-token=0B2B205B4F85B8F1ECD0A9F5C6B48962 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=0B2B205B4F85B8F1ECD0A9F5C6B48962 --renderer-client-id=6 --mojo-platform-channel-handle=2932 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/ReturnLessThan8OnMobile/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/AutoImportDisabled/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingLaunched/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_52/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/group_01/WebFontsInterventionV2/Default/ --primordial-pipe-token=BD92F26F08D6EAFFBE80EBE3D9FA6DA0 --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=BD92F26F08D6EAFFBE80EBE3D9FA6DA0 --renderer-client-id=7 --mojo-platform-channel-handle=2584 /prefetch:1
"C:\Windows\System32\spool\drivers\x64\3\E_IATILFE.EXE" /EPT "EPLTarget\P0000000000000000" /M "XP-312 313 315 Series"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --disable-gpu-compositing --no-sandbox --primordial-pipe-token=B53D624923466E9878F92179E0566549 --lang=en-US --lang=en-US --log-file="C:\Users\lukas_000\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\debug.log" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --service-request-channel-token=B53D624923466E9878F92179E0566549 --renderer-client-id=2 --mojo-platform-channel-handle=1912 /prefetch:1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"E:\deamon lite\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
C:\WINDOWS\system32\AUDIODG.EXE 0x448
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe"
E:\steam\bin\cef\cef.win7\steamwebhelper.exe "-cachedir=C:\Users\lukas_000\AppData\Local\Steam\htmlcache" "-steampid=7880" "-buildid=1490228413" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --disable-spell-checking --disable-out-of-process-pac --disable-smooth-scrolling --enable-direct-write
"E:\gog galaxy\GalaxyClient\GalaxyClient.exe" /runWithoutUpdating
"C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Curse.exe" /startup
"C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe"
"C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe" --hostPort=49900 --contentPort=49900 --wsPort=49901 --windowWidth=1000 --windowHeight=660 --windowTop=190 --windowLeft=460 --windowMaximized=False --hostPath="C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Curse.exe" --launchMode=Minimized --enable-logging --disable-smooth-scrolling --dataPath="C:\Users\lukas_000\AppData\Roaming\Curse Client" --locale=cs-CZ
"C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe" --type=gpu-process --channel="10088.0.942720999\1754693489" --mojo-application-channel-token=B91F9ACE369D2E36126BD6B0DD18FA1A --enable-logging --no-sandbox --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,14,18,31,56,70 --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7866 --gpu-driver-date=2-9-2017 --enable-logging --mojo-platform-channel-handle=1396 /prefetch:2
"C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe" --reporter-url=http://127.0.0.1:49900/ --application-name=Curse "--crashes-directory=C:\Users\LUKAS_~1\AppData\Local\Temp\Curse Crashes" --v=1
"C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\CurseUI.exe" --type=renderer --disable-smooth-scrolling --enable-logging --no-sandbox --primordial-pipe-token=A8D616AD1FC89F1FEAE56D6D90B9291E --lang=cs --app-user-model-id=Curse --node-integration=true --background-color=#252525 --enable-blink-features=AudioOutputDevices --hidden-page --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --mojo-channel-token=D961A37290DF2BAE17FB47BA4CD31E86 --mojo-application-channel-token=A8D616AD1FC89F1FEAE56D6D90B9291E --channel="10088.1.1831517539\2143957307" --mojo-platform-channel-handle=2096 /prefetch:1
AvastUI.exe /nogui
"C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe"
"fontdrvhost.exe"
"E:\kies\Kies\KiesTrayAgent.exe"
"C:\ProgramData\Razer\SwitchBlade\DeathStalker\Razer\1068AAE3-6299-4086-A7F6-0600F5F1D1E5\RzHome.exe" -offline
"C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe" -sync_complete
"C:\Program Files (x86)\Razer\SwitchBlade\RzAppManager.exe" -Embedding
"C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe" /start
"E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe" --type=gpu-process --channel="9900.0.501265772\1705177347" --no-sandbox --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=info --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,13,25,54,69 --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7866 --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=info --mojo-platform-channel-handle=2060 /prefetch:2
"C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe"
"C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe" --type=gpu-process --channel="10924.0.307803245\504938487" --no-sandbox --lang=en-US --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7866 --lang=en-US /prefetch:822062411
"E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe" --type=renderer --enable-smooth-scrolling --js-flags=--expose-gc --no-sandbox --primordial-pipe-token=DF9519C72F858884A8FABDF636858856 --lang=en-US --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=info --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="9900.1.1935248607\1130396418" --mojo-platform-channel-handle=2444 /prefetch:1
"C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\RzCefRenderProcess.exe" --type=gpu-process --channel="10024.0.375218355\729178840" --no-sandbox --lang=en-US --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x13c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=21.21.13.7866 --lang=en-US /prefetch:822062411
"E:\gog galaxy\GalaxyClient\GalaxyClient Helper.exe" --type=renderer --enable-smooth-scrolling --js-flags=--expose-gc --no-sandbox --primordial-pipe-token=D6BAA08854273B213AA7D545C06923A0 --lang=en-US --lang=en-US --log-file="C:\ProgramData\GOG.com\Galaxy\logs\cef.log" --log-severity=info --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="9900.2.1497045259\2137045987" --mojo-platform-channel-handle=2660 /prefetch:1
"C:\ProgramData\Razer\SwitchBlade\Apps\Razer\91845076-CD47-435F-A442-CEB373A3ADE8\RzNumpad.exe" -skin:DeathStalker
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/ReturnLessThan8OnMobile/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/AutoImportDisabled/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/*EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingLaunched/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_52/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/group_01/*WebFontsInterventionV2/Default/ --primordial-pipe-token=861DB1AB89F9B25E6E072B685AE285AB --lang=cs --extension-process --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=861DB1AB89F9B25E6E072B685AE285AB --renderer-client-id=9 --mojo-platform-channel-handle=5512 /prefetch:1
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"E:\lol\RADS\system\rads_user_kernel.exe" updateandrun lol_launcher LoLLauncher.exe
LoLLauncher.exe
E:/lol/RADS/projects/lol_patcher/releases/0.0.0.80/deploy/LoLPatcher.exe ""
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/ReturnLessThan8OnMobile/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/AutoImportDisabled/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/*EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/*SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingLaunched/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_52/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/group_01/*WebFontsInterventionV2/Default/ --primordial-pipe-token=D138561F335DCC93559DE04B60C667B9 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=D138561F335DCC93559DE04B60C667B9 --renderer-client-id=17 --mojo-platform-channel-handle=6448 /prefetch:1
E:/lol/RADS/projects/lol_air_client/releases/0.0.1.245/deploy//LolClient.exe "-runtime" ".\\" "-nodebug" "META-INF\AIR\application.xml" ".\\" "--" "8393"
"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer
"C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Overlay\v7.1.6288.5257\Coherent2\Win32\host\CoherentUI_Host.exe" --coherent-options=host-2d1bb932-9162-4065-88f1-ab211973a6bd
"C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Overlay\v7.1.6288.5257\Coherent2\Win32\host\CoherentUI_Host.exe" --type=renderer --coherent-options=87A542DB-A17A-4D62-8431-B016D2B3DA3A /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/ReturnLessThan8OnMobile/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/AutoImportDisabled/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/*EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/*SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingLaunched/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_52/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_09/*UMA-Uniformity-Trial-50-Percent/group_01/*WebFontsInterventionV2/Default/ --primordial-pipe-token=4680DDD6FBF0A2A8274094165C4E25A6 --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=4680DDD6FBF0A2A8274094165C4E25A6 --renderer-client-id=22 --mojo-platform-channel-handle=6428 /prefetch:1
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\WINDOWS\system32\NOTEPAD.EXE" C:\rsit\info.txt
/S
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 636 640 648 8192 644
C:\WINDOWS\SysWOW64\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"D:\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Invitation {58468637-6593-4861-9723-86097D1ACE97}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{58468637-6593-4861-9723-86097D1ACE97}" /F:"Invitation"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Invitation {AFB05FD3-6932-4FDE-8BC9-E535FC17820C}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{AFB05FD3-6932-4FDE-8BC9-E535FC17820C}" /F:"Invitation"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Invitation {FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}" /F:"Invitation"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Update {58468637-6593-4861-9723-86097D1ACE97}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{58468637-6593-4861-9723-86097D1ACE97}" /F:"Update"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Update {AFB05FD3-6932-4FDE-8BC9-E535FC17820C}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{AFB05FD3-6932-4FDE-8BC9-E535FC17820C}" /F:"Update"
C:\WINDOWS\tasks\EPSON XP-312 313 315 Series Update {FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE /EXE:"{FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}" /F:"Update"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13 229064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-01-31 2351920]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-04-29 7575920]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-04-15 1385840]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-04-11 36352]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-02-23 1880512]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-06-29 3936936]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=E:\steam\steam.exe [2017-03-23 3019552]
"GalaxyClient"=E:\gog galaxy\GalaxyClient\GalaxyClient.exe [2017-03-16 4027968]
"GoogleChromeAutoLaunch_822640D12963A0CFAF5BB81B94632257"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2017-02-01 945496]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2008-01-22 152872]
"DAEMON Tools Lite Automount"=E:\deamon lite\DAEMON Tools Lite\DTAgent.exe [2016-06-08 4295360]
"EPLTarget\P0000000000000000"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATILFE.EXE [2013-01-24 297024]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-03-03 9364696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\lukas_000\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_2\amd64"=C:\WINDOWS\system32\cmd.exe [2016-07-16 232960]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2014-10-06 3216032]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\ASUSWSLoader.exe [2014-01-15 63296]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2017-03-02 596640]
"RzSBHelper"=C:\Program Files (x86)\Razer\SwitchBlade\RzSBHelper.exe [2015-09-23 84992]
"AvastUI.exe"=E:\avast\AvLaunch.exe [2017-03-03 205512]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2016-01-20 1087184]
"KiesTrayAgent"=E:\kies\Kies\KiesTrayAgent.exe [2016-08-25 318128]
"Kraken71ChromaHelper"=C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [2017-02-14 1600096]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
RazerFPSStartup.lnk - C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\RzFPS.exe

C:\Users\lukas_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Curse.lnk - C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Curse.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"VIDC.RTV1"=rtvcvfw64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======
Nahoru
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: prosim o provereni

#2 Příspěvek od zail »

2017-03-25 23:15:32 ----D---- C:\rsit
2017-03-25 23:11:30 ----D---- C:\ProgramData\SWCUTemp
2017-03-25 09:37:05 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-03-15 20:39:08 ----RD---- C:\Program Files (x86)\Skype
2017-03-15 16:51:50 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-03-15 16:51:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-15 16:51:50 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-03-15 16:51:50 ----A---- C:\WINDOWS\SYSWOW64\tapi32.dll
2017-03-15 16:51:50 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-03-15 16:51:50 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2017-03-15 16:51:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-03-15 16:51:49 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-03-15 16:51:49 ----A---- C:\WINDOWS\SYSWOW64\Pimstore.dll
2017-03-15 16:51:49 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-03-15 16:51:49 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2017-03-15 16:51:49 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2017-03-15 16:51:49 ----A---- C:\WINDOWS\SYSWOW64\DavSyncProvider.dll
2017-03-15 16:51:49 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2017-03-15 16:51:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-03-15 16:51:48 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-03-15 16:51:48 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\regedit.exe
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2017-03-15 16:51:47 ----A---- C:\WINDOWS\SYSWOW64\azroleui.dll
2017-03-15 16:51:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2017-03-15 16:51:46 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-03-15 16:51:46 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2017-03-15 16:51:46 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-03-15 16:51:46 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-03-15 16:51:45 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2017-03-15 16:51:45 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-03-15 16:51:45 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-03-15 16:51:45 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2017-03-15 16:51:45 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-03-15 16:51:45 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\wlanui.dll
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-03-15 16:51:44 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\PCPTpm12.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\msutb.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\msctfui.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\mscandui.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2017-03-15 16:51:43 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\MCCSEngineShared.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-03-15 16:51:42 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\cemapi.dll
2017-03-15 16:51:41 ----A---- C:\WINDOWS\SYSWOW64\accountaccessor.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\ProximityCommon.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\msctfp.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2017-03-15 16:51:40 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2017-03-15 16:51:39 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-03-15 16:51:38 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2017-03-15 16:51:37 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-03-15 16:51:36 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-03-15 16:51:35 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\netiougc.exe
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-03-15 16:51:34 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\mtxclu.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-03-15 16:51:33 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\tcpipcfg.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\msdtcuiu.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2017-03-15 16:51:32 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\XInputUap.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-03-15 16:51:31 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\GamePanelExternalHook.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\ddrawex.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2017-03-15 16:51:30 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-03-15 16:51:27 ----A---- C:\WINDOWS\system32\tquery.dll
2017-03-15 16:51:27 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-03-15 16:51:26 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-03-15 16:51:26 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2017-03-15 16:51:26 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2017-03-15 16:51:26 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-03-15 16:51:26 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2017-03-15 16:51:26 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-03-15 16:51:26 ----A---- C:\WINDOWS\system32\wmpmde.dll
2017-03-15 16:51:26 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-03-15 16:51:26 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-03-15 16:51:25 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-03-15 16:51:25 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-03-15 16:51:25 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-03-15 16:51:24 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-03-15 16:51:23 ----A---- C:\WINDOWS\system32\XblGameSaveExt.dll
2017-03-15 16:51:23 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-15 16:51:22 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2017-03-15 16:51:21 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\wwanmm.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\wlanui.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\Windows.Gaming.UI.GameBar.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\mssvp.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\mssphtb.dll
2017-03-15 16:51:21 ----A---- C:\WINDOWS\system32\mssph.dll
2017-03-15 16:51:20 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSetup.exe
2017-03-15 16:51:20 ----A---- C:\WINDOWS\system32\wwanconn.dll
2017-03-15 16:51:20 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-03-15 16:51:20 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-03-15 16:51:20 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-03-15 16:51:20 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-03-15 16:51:20 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-03-15 16:51:20 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-03-15 16:51:20 ----A---- C:\WINDOWS\system32\mssitlb.dll
2017-03-15 16:51:19 ----A---- C:\WINDOWS\system32\wmp.dll
2017-03-15 16:51:18 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-03-15 16:51:18 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-03-15 16:51:18 ----A---- C:\WINDOWS\system32\shell32.dll
2017-03-15 16:51:17 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2017-03-15 16:51:17 ----A---- C:\WINDOWS\system32\mos.dll
2017-03-15 16:51:17 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-15 16:51:17 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-03-15 16:51:17 ----A---- C:\WINDOWS\system32\BingMaps.dll
2017-03-15 16:51:16 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-03-15 16:51:16 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-15 16:51:16 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-15 16:51:16 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-03-15 16:51:16 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-15 16:51:16 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-03-15 16:51:16 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-15 16:51:16 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-03-15 16:51:15 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\Wpc.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\MapsStore.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\MapRouter.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\ContactApis.dll
2017-03-15 16:51:15 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\mmc.exe
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\localspl.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-03-15 16:51:14 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\WpcMon.exe
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\wlansvc.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2017-03-15 16:51:13 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\usocore.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\Pimstore.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\ntshrui.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\mf.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-03-15 16:51:12 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\wlanapi.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\UserDataService.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\rasgcw.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\moshost.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\mfds.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\InputService.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\ChatApis.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\AuthHost.exe
2017-03-15 16:51:11 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\wfdprov.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\RelPost.exe
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\RADCUI.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\MCCSEngineShared.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\internetmail.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\FrameServer.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-15 16:51:10 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\sdengin2.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\puiapi.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\netshell.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\ExSMime.dll
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2017-03-15 16:51:09 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\wpninprc.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\VCardParser.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\tapi32.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\sdshext.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\netiougc.exe
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\DuCsps.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\DavSyncProvider.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\cemapi.dll
2017-03-15 16:51:08 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2017-03-15 16:51:07 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-03-15 16:51:07 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-03-15 16:51:06 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-15 16:51:05 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-03-15 16:51:05 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-03-15 16:51:05 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-03-15 16:51:04 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-03-15 16:51:04 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-03-15 16:51:03 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-03-15 16:51:03 ----A---- C:\WINDOWS\system32\wininet.dll
2017-03-15 16:51:03 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-03-15 16:51:03 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2017-03-15 16:51:02 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-03-15 16:51:02 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-03-15 16:51:02 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-03-15 16:51:02 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-03-15 16:51:02 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-03-15 16:51:02 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2017-03-15 16:51:01 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\system32\dxgi.dll
2017-03-15 16:51:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\winmde.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\schannel.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2017-03-15 16:51:00 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\werconcpl.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\vpnike.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\uDWM.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-03-15 16:50:59 ----A---- C:\WINDOWS\HelpPane.exe
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\SettingSync.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\quartz.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2017-03-15 16:50:58 ----A---- C:\WINDOWS\system32\DMRServer.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\wlidprov.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\evr.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-03-15 16:50:57 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-03-15 16:50:56 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\Tabbtn.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\MFPlay.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-15 16:50:55 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\icm32.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-03-15 16:50:54 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\tbauth.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\fhcfg.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2017-03-15 16:50:53 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-03-15 16:50:52 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2017-03-15 16:50:52 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-03-15 16:50:52 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2017-03-15 16:50:52 ----A---- C:\WINDOWS\system32\ddrawex.dll
2017-03-15 16:50:52 ----A---- C:\WINDOWS\system32\ddraw.dll
2017-03-15 16:50:47 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-15 16:50:46 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2017-03-15 16:50:46 ----A---- C:\WINDOWS\system32\twinui.dll
2017-03-15 16:50:46 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-03-15 16:50:46 ----A---- C:\WINDOWS\system32\aepic.dll
2017-03-15 16:50:46 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-03-15 16:50:45 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-15 16:50:45 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-03-15 16:50:45 ----A---- C:\WINDOWS\system32\mispace.dll
2017-03-15 16:50:45 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-15 16:50:45 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-03-15 16:50:45 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-03-15 16:50:45 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-15 16:50:45 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-03-15 16:50:45 ----A---- C:\WINDOWS\explorer.exe
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\msctf.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\devinv.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\CspCellularSettings.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2017-03-15 16:50:44 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\winload.exe
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\invagent.dll
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-03-15 16:50:43 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2017-03-15 16:50:42 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-03-15 16:50:42 ----A---- C:\WINDOWS\system32\winresume.exe
2017-03-15 16:50:42 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-03-15 16:50:42 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-03-15 16:50:42 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-03-15 16:50:42 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-03-15 16:50:42 ----A---- C:\WINDOWS\system32\clusapi.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\wer.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\twinapi.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\resutils.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-03-15 16:50:41 ----A---- C:\WINDOWS\system32\gameux.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\wintrust.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\themecpl.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\authui.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2017-03-15 16:50:40 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\stobject.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\reseteng.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\policymanager.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\ci.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\bootux.dll
2017-03-15 16:50:39 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\vssapi.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\PCPTpm12.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\icsvcext.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\DXP.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\dui70.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\combase.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2017-03-15 16:50:38 ----A---- C:\WINDOWS\system32\basecsp.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\systemreset.exe
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\sud.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\netiohlp.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\input.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\icfupgd.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\gpapi.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\drivers\vmbkmclr.sys
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\certprop.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-03-15 16:50:37 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\tabcal.exe
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\scksp.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\hgcpl.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-15 16:50:36 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\XInputUap.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\wups.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\werui.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\MultiDigiMon.exe
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\msutb.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\mscandui.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\BluetoothDesktopHandlers.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-03-15 16:50:35 ----A---- C:\WINDOWS\regedit.exe
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\vds.exe
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\mspaint.exe
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\msctfui.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\msctfp.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\GamePanelExternalHook.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\cdp.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-03-15 16:50:34 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-03-15 16:50:32 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-03-15 16:50:32 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-04 13:18:14 ----D---- C:\ProgramData\VS Revo Group
2017-03-04 13:18:13 ----A---- C:\WINDOWS\system32\drivers\revoflt.sys
2017-03-03 21:49:53 ----A---- C:\WINDOWS\system32\drivers\aswbuniva.sys
2017-03-03 21:49:53 ----A---- C:\WINDOWS\system32\drivers\aswbloga.sys
2017-03-03 21:49:53 ----A---- C:\WINDOWS\system32\drivers\aswbidsha.sys
2017-03-03 21:49:53 ----A---- C:\WINDOWS\system32\drivers\aswbidsdrivera.sys
2017-03-03 21:36:40 ----AD---- C:\Program Files\CCleaner
2017-03-03 17:11:57 ----D---- C:\Users\lukas_000\AppData\Roaming\Citra
2017-03-03 16:42:13 ----D---- C:\Program Files\McAfee
2017-03-03 16:42:10 ----D---- C:\ProgramData\BOINC
2017-03-03 16:42:03 ----D---- C:\WINDOWS\Downloaded Installations
2017-02-28 16:35:49 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2017-02-28 16:35:49 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2017-02-28 16:35:49 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll

======List of files/folders modified in the last 1 month======

2017-03-25 23:19:47 ----D---- C:\Program Files\trend micro
2017-03-25 23:18:39 ----D---- C:\WINDOWS\Temp
2017-03-25 23:16:23 ----D---- C:\WINDOWS\System32
2017-03-25 23:16:23 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-25 23:15:38 ----D---- C:\WINDOWS\Prefetch
2017-03-25 23:11:30 ----HD---- C:\ProgramData
2017-03-25 23:11:12 ----AD---- C:\Users\lukas_000\AppData\Roaming\Curse Client
2017-03-25 23:11:03 ----D---- C:\ProgramData\NVIDIA
2017-03-25 23:10:16 ----D---- C:\WINDOWS\system32\drivers
2017-03-25 23:09:57 ----D---- C:\WINDOWS\system32\sru
2017-03-25 23:09:57 ----D---- C:\WINDOWS\system32\catroot2
2017-03-25 23:09:49 ----D---- C:\WINDOWS\system32\Tasks
2017-03-25 23:05:29 ----D---- C:\WINDOWS\system32\SleepStudy
2017-03-25 22:56:01 ----D---- C:\WINDOWS\system32\FxsTmp
2017-03-25 21:25:47 ----D---- C:\WINDOWS\AppReadiness
2017-03-25 21:25:44 ----HD---- C:\Program Files\WindowsApps
2017-03-25 21:25:31 ----SHDC---- C:\WINDOWS\Installer
2017-03-25 21:25:30 ----SHD---- C:\Config.Msi
2017-03-25 21:25:20 ----SHD---- C:\System Volume Information
2017-03-25 21:23:43 ----D---- C:\Windows
2017-03-25 13:18:25 ----RD---- C:\WINDOWS\Microsoft.NET
2017-03-25 09:37:15 ----AD---- C:\WINDOWS\SysWOW64
2017-03-24 19:22:39 ----D---- C:\Users\lukas_000\AppData\Roaming\TS3Client
2017-03-22 15:57:11 ----RSD---- C:\WINDOWS\assembly
2017-03-22 15:57:10 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-03-22 15:56:49 ----AD---- C:\Program Files\Microsoft Office 15
2017-03-21 15:54:40 ----D---- C:\WINDOWS\system32\config
2017-03-20 09:17:23 ----D---- C:\WINDOWS\rescache
2017-03-17 21:15:34 ----D---- C:\WINDOWS\WinSxS
2017-03-17 21:15:34 ----D---- C:\WINDOWS\system32\DriverStore
2017-03-17 21:15:34 ----D---- C:\WINDOWS\INF
2017-03-17 21:08:09 ----D---- C:\WINDOWS\debug
2017-03-16 20:54:51 ----D---- C:\WINDOWS\CbsTemp
2017-03-16 20:54:50 ----D---- C:\WINDOWS\system32\appraiser
2017-03-16 18:13:31 ----D---- C:\Users\lukas_000\AppData\Roaming\TeamViewer
2017-03-16 18:13:29 ----D---- C:\WINDOWS\Minidump
2017-03-16 16:16:46 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-03-16 16:16:46 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-03-16 16:16:46 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-03-16 16:16:46 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-03-16 16:16:46 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-03-16 16:16:46 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-03-16 16:16:44 ----SD---- C:\WINDOWS\system32\F12
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\wbem
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\setup
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\oobe
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\migration
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\en-US
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\cs-CZ
2017-03-16 16:16:44 ----D---- C:\WINDOWS\system32\Boot
2017-03-16 16:16:43 ----RD---- C:\WINDOWS\PrintDialog
2017-03-16 16:16:43 ----D---- C:\WINDOWS\ShellExperiences
2017-03-16 16:16:42 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-03-16 16:16:42 ----RD---- C:\Program Files\Windows Defender
2017-03-16 16:16:42 ----D---- C:\WINDOWS\bcastdvr
2017-03-16 16:16:42 ----D---- C:\WINDOWS\AppPatch
2017-03-16 16:16:42 ----D---- C:\Program Files\Windows Photo Viewer
2017-03-16 16:16:42 ----D---- C:\Program Files\Windows Mail
2017-03-16 16:16:42 ----D---- C:\Program Files\Internet Explorer
2017-03-16 16:16:42 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-03-16 16:16:42 ----D---- C:\Program Files (x86)\Windows Mail
2017-03-16 16:16:42 ----D---- C:\Program Files (x86)\Windows Defender
2017-03-16 16:16:42 ----D---- C:\Program Files (x86)\Internet Explorer
2017-03-16 14:52:43 ----D---- C:\WINDOWS\system32\MRT
2017-03-16 14:51:27 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-03-16 06:29:56 ----D---- C:\WINDOWS\LiveKernelReports
2017-03-15 20:39:10 ----D---- C:\ProgramData\Skype
2017-03-15 20:39:09 ----D---- C:\Program Files (x86)\Common Files
2017-03-15 20:39:08 ----D---- C:\Program Files (x86)
2017-03-15 20:39:05 ----D---- C:\ProgramData\Package Cache
2017-03-15 20:26:35 ----D---- C:\Users\lukas_000\AppData\Roaming\Skype
2017-03-11 21:05:44 ----D---- C:\Users\lukas_000\AppData\Roaming\vlc
2017-03-10 23:21:56 ----D---- C:\ProgramData\AVAST Software
2017-03-10 06:17:56 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-03-09 23:54:15 ----D---- C:\WINDOWS\system32\CatRoot
2017-03-09 18:52:54 ----D---- C:\ProgramData\NVIDIA Corporation
2017-03-09 18:52:41 ----D---- C:\Program Files\NVIDIA Corporation
2017-03-09 18:52:41 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-03-07 21:44:40 ----D---- C:\WINDOWS\system32\NDF
2017-03-04 13:51:23 ----D---- C:\WINDOWS\Logs
2017-03-04 13:30:45 ----D---- C:\temp
2017-03-04 13:29:55 ----D---- C:\ProgramData\McAfee
2017-03-04 10:34:33 ----D---- C:\WINDOWS\SoftwareDistribution
2017-03-04 08:09:22 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2017-03-03 21:39:54 ----D---- C:\Users\lukas_000\AppData\Roaming\DAEMON Tools Lite
2017-03-03 21:39:50 ----DC---- C:\WINDOWS\Panther
2017-03-03 21:39:50 ----D---- C:\WINDOWS\ModemLogs
2017-03-03 21:36:40 ----RD---- C:\Program Files
2017-02-28 16:35:54 ----D---- C:\Users\lukas_000\AppData\Roaming\Riot Games
2017-02-28 16:35:46 ----D---- C:\WINDOWS\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 assdv2;assdv2; C:\WINDOWS\system32\drivers\assdv2.sys [2013-12-05 21816]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-03-03 189768]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-03-03 334600]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-03-03 48528]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-03-03 75704]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-03-15 337592]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-04-03 645480]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 AsIO;AsIO; C:\WINDOWS\SysWow64\drivers\AsIO.sys [2014-06-18 15232]
R1 AsUpIO;AsUpIO; C:\WINDOWS\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-03-03 309272]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-03-03 32088]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-03-03 100640]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-03-03 993608]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-03-25 548928]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R1 netfilter2;netfilter2; C:\WINDOWS\system32\drivers\netfilter2.sys [2015-01-14 51904]
R1 RzFilter;RzFilter; \??\C:\WINDOWS\system32\drivers\RzFilter.sys [2014-04-18 74432]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-03-03 126600]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-03-03 162528]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 rzpmgrk;rzpmgrk; \??\C:\WINDOWS\system32\drivers\rzpmgrk.sys [2016-09-17 44144]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2015-12-14 130880]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 bcbtums;@oem48.inf,%BCBTUMS.SvcDesc%;Bluetooth RAM Firmware Download USB Filter; C:\WINDOWS\system32\drivers\bcbtums.sys [2015-03-27 173312]
R3 BthA2DP;@wdma_bt.inf,%BthA2DP.SvcDesc%;Bluetooth stereo; C:\WINDOWS\system32\drivers\BthA2DP.sys [2016-09-15 168448]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-08-20 114176]
R3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\System32\drivers\BthHfAud.sys [2016-07-16 37376]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-08-20 84992]
R3 dtlitescsibus;@oem28.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-06-10 30264]
R3 dtliteusbbus;@oem20.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-06-10 47672]
R3 e1dexpress;@oem2.inf,%e1dExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver D; C:\WINDOWS\system32\DRIVERS\e1d62x64.sys [2016-05-10 511952]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-04-29 3950552]
R3 MEIx64;@oem137.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2014-09-30 129312]
R3 NVHDA;@oem8.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-01-24 217528]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4i.inf_amd64_e4be2de41ed84e49\nvlddmkm.sys [2017-02-10 14516664]
R3 nvvad_WaveExtensible;@oem158.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-01-06 47672]
R3 nvvhci;@oem160.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-02-23 57792]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
R3 RSUSBSTOR;@oem120.inf,%RSUSBSTOR.SvcDesc%;RtsUStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUStor.sys [2014-06-24 272600]
R3 RTCore64;RTCore64; \??\E:\MSI Afterburner OSD\MSI Afterburner\RTCore64.sys [2015-12-09 13512]
R3 RzDxgk;RzDxgk; \??\C:\WINDOWS\system32\drivers\RzDxgk.sys [2014-04-18 129472]
R3 rzendpt;@oem136.inf,%rzendpt.SvcDesc%;rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [2016-10-30 52240]
R3 rzhnet;@oem138.inf,%rzhnet.SvcDesc%;Razer Inc. External Display Driver; C:\WINDOWS\System32\Drivers\rzhnet.sys [2016-10-30 29712]
R3 rzudd;@oem156.inf,%Razer.SvcDesc%;RazerEx Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2016-10-30 204824]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-03-03 38296]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-11-11 967168]
S3 btwampfl;@oem48.inf,%btwampfl.ServiceName%;btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [2015-03-27 188160]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 dg_ssudbus;@oem78.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-02-23 27584]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2016-12-16 40984]
S3 rzjstk;@oem139.inf,%rzjoystick%;Razer Virtual Joystick Driver; C:\WINDOWS\System32\drivers\rzjstk.sys [2016-10-30 36376]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;@oem75.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2014-06-18 920736]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2014-05-14 586880]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.1.265\AsusWSWinService.exe [2014-01-15 71680]
R2 avast! Antivirus;Avast Antivirus; E:\avast\AvastSvc.exe [2017-03-03 262736]
R2 BcmBtRSupport;@oem48.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Management Service; C:\WINDOWS\system32\BtwRSupportService.exe [2015-03-27 2251992]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_729a2;CDPUserSvc_729a2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2017-01-17 3042032]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 EPSON_PM_RPCV4_06;EPSON V3 Service4(06); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [2013-04-15 152640]
R2 EpsonScanSvc;Epson Scanner Service; C:\WINDOWS\system32\EscSvc64.exe [2012-05-16 144560]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-24 1858048]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-04-11 16232]
R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [2014-03-12 260360]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-03-20 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-03-20 398296]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23 462784]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-02-10 462784]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-02-23 425408]
R2 OneSyncSvc_729a2;Hostitel synchronizace_729a2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\syswow64\PnkBstrA.exe [2016-04-23 76888]
R2 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2016-09-24 189264]
R2 Razer Chroma SDK Service;Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [2017-02-15 69768]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 RzOvlMon;Razer Overlay Subsystem Emergency Service; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [2014-04-18 32960]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; E:\smart switch\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2016-07-22 754784]
R3 aswbIDSAgent;aswbIDSAgent; E:\avast\x64\aswidsagenta.exe [2017-03-03 7147320]
R3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\deamon lite\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-06-08 1458368]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]
R3 PimIndexMaintenanceSvc_729a2;Data kontaktů_729a2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-23 1590560]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-02-27 317400]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 GalaxyClientService;GalaxyClientService; E:\gog galaxy\GalaxyClient\GalaxyClientService.exe [2017-03-16 284736]
S3 GalaxyCommunication;GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [2016-11-11 6625856]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03 107848]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-02-01 887232]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_729a2;Služba zasílání zpráv_729a2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NBService;NBService; E:\nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\syswow64\GameMon.des [2016-10-20 7801944]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23 462784]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2014-01-23 150600]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-04 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119670
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o provereni

#3 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: prosim o provereni

#4 Příspěvek od zail »

# AdwCleaner v6.044 - Log vytvořen 26/03/2017 v 13:03:20
# Aktualizováno dne 28/02/2017 z Malwarebytes
# Databáze : 2017-03-23.2 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : lukas_000 - ZAIL
# Spuštěno z : C:\Users\lukas_000\Desktop\adwcleaner_6.044.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

[-] Služba smazána: netfilter2


***** [ Složky ] *****

[-] Složka smazána: C:\ProgramData\Trymedia


***** [ Soubory ] *****

[-] Soubor smazán: C:\WINDOWS\SysNative\drivers\netfilter2.sys


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****

[-] Klíč smazán: HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\Software\PRODUCTSETUP
[-] Klíč smazán: HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\Software\csastats
[#] Klíč smazán po restartu: HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: HKCU\Software\csastats
[#] Klíč smazán po restartu: [x64] HKCU\Software\PRODUCTSETUP
[#] Klíč smazán po restartu: [x64] HKCU\Software\csastats
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1075 Bajty] - [20/09/2015 18:44:36]
C:\AdwCleaner\AdwCleaner[C2].txt - [1835 Bajty] - [26/03/2017 13:03:20]
C:\AdwCleaner\AdwCleaner[S1].txt - [981 Bajty] - [20/09/2015 18:43:44]
C:\AdwCleaner\AdwCleaner[S2].txt - [2176 Bajty] - [26/03/2017 12:59:44]

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [2053 Bajty] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119670
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o provereni

#5 Příspěvek od Rudy »

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: prosim o provereni

#6 Příspěvek od zail »

Bohuzel tuto je nedostupne stranka nenalezena

Stažení FRSTLauncheru
Odkaz ke stažení: http://viry.xf.cz/pro_usery/FRSTLauncher.exe
FRSTLauncher opět uložíme na Plochu
Pokud dostáváme od antiviru hlášení, že se jedná o neznámou\škodlivou aplikaci, tak hlášku ignorujeme. Případně na chvíli deaktivujeme rezidentní štít antiviru. Jedná se o falešný poplach a detekci.
Nahoru
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: prosim o provereni

#7 Příspěvek od zail »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by lukas_000 (26-03-2017 16:09:45)
Running from C:\Users\lukas_000\Desktop
Windows 10 Home Version 1607 (X64) (2016-08-04 07:06:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1977854332-2955089687-2052700524-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1977854332-2955089687-2052700524-503 - Limited - Disabled)
Guest (S-1-5-21-1977854332-2955089687-2052700524-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1977854332-2955089687-2052700524-1003 - Limited - Enabled)
lukas_000 (S-1-5-21-1977854332-2955089687-2052700524-1001 - Administrator - Enabled) => C:\Users\lukas_000

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
AEGIS (HKLM-x32\...\{FBCB3370-DA75-4896-B05A-3B80586B9F36}) (Version: 1.04.02 - ASUSTeK Computer Inc.)
Aktualizace NVIDIA 23.23.30.0 (Version: 23.23.30.0 - NVIDIA Corporation) Hidden
Ansel (Version: 378.66 - NVIDIA Corporation) Hidden
ASUS Command - Ai Booting (HKLM-x32\...\{2DCE446C-D090-4458-8782-8F16DF94351E}) (Version: 2.01.15 - ASUSTeK Computer Inc.)
ASUS Command - Ai Charger II (HKLM-x32\...\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}) (Version: 2.00.13 - ASUSTeK Computer Inc.)
ASUS Command - Backup & Recovery (HKLM-x32\...\{34D67DE5-2ECF-4E6B-A243-2C16E2792787}) (Version: 2.01.12 - ASUSTeK Computer Inc.)
ASUS Command - Family Safety (HKLM-x32\...\{016AFF97-4E18-4560-B8E5-B684BB124E32}) (Version: 2.00.06 - ASUSTeK Computer Inc.)
ASUS Command - Lighting (HKLM-x32\...\{2711E58B-6090-4C1B-9E06-529E4D37DA77}) (Version: 2.01.06 - ASUSTeK Computer Inc.)
ASUS Command - PC Cleanup (HKLM-x32\...\{E22A19AE-7DDB-4959-B1DB-A0996294352A}) (Version: 2.01.12 - ASUSTeK Computer Inc.)
ASUS Command - Power Manager (HKLM-x32\...\{DD248BEE-E925-4720-A775-9A42276BB6EA}) (Version: 2.02.04 - ASUSTeK Computer Inc.)
ASUS Command - Update (HKLM-x32\...\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}) (Version: 2.02.07 - ASUSTeK Computer Inc.)
ASUS Command (HKLM-x32\...\{F5E5AD85-4A90-4604-A887-464D3818D8FD}) (Version: 2.09.02 - ASUSTeK Computer Inc.)
ASUS Music Maker (HKLM-x32\...\MAGIX_{AB515018-7F9D-4047-B0C0-F26BAC30F3E1}) (Version: 18.0.4.1 - MAGIX AG)
ASUS Music Maker (Version: 18.0.4.1 - MAGIX AG) Hidden
ASUS ROG GAMING MOUSE GX900 (HKLM-x32\...\{0AD3CB15-7DAA-4A0D-AD49-2BB8485C95A3}) (Version: 1.1.0 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 17.2.2288 - AVAST Software)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version: - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.5501 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.4307 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.4307 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0191 - Disc Soft Ltd)
Dishonored RHCP (HKLM\...\Steam App 217980) (Version: - )
DivX-Setup (HKLM\...\DivX Setup) (Version: 3.0.0.68 - DivX, LLC)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
eManual (HKLM-x32\...\{0C84E634-EB68-4A54-B21E-A05EC87A4CC5}) (Version: 1.00.07 - ASUSTeK Computer Inc.)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{B4F0E794-11F5-4971-85EC-6D7F2E4DAC68}) (Version: 4.4.3 - SEIKO EPSON CORPORATION)
EPSON XP-312 313 315 Series Printer Uninstall (HKLM\...\EPSON XP-312 313 315 Series) (Version: - SEIKO EPSON Corporation)
Evolve Stage 2 (HKLM\...\Steam App 273350) (Version: - Turtle Rock Studios)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
Fotogaléria (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Galeria fotografii (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
GameFirst IV (HKLM-x32\...\GameFirst IV 1.5.13) (Version: 1.5.13 - ASUS)
GameFirst IV (x32 Version: 1.5.13 - ASUS) Hidden
GetDataBack for FAT (HKLM-x32\...\{2EEEC858-21F8-419B-8FE2-820621BFFCD7}) (Version: 4.32.000 - Runtime Software)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Chipset Device Software (x32 Version: 10.0.14 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
League of Legends (x32 Version: 4.2.1 - Riot Games) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 15.0.4911.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nero 7 Premium (HKLM-x32\...\{98EFD8F0-08DE-48DB-B922-A2EBAB711029}) (Version: 7.03.1151 - Nero AG)
NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.21 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.3.16.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.3 (HKLM-x32\...\{7308600A-5231-459C-A3E2-A637F842CACA}) (Version: 4.13.9783 - Apache Software Foundation)
Ovládací panel NVIDIA 378.66 (Version: 378.66 - NVIDIA Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Razer Core (HKLM-x32\...\Razer Core) (Version: 1.0.1.66 - Razer Inc)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.14.2 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.17.302 - Razer Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.30179 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7236 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.8 - VS Revo Group, Ltd.)
RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16084.2 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.4.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Seznam DVD 2011 (HKLM-x32\...\Seznam DVD 2011_is1) (Version: - Filmová databáze s.r.o.)
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17022.20 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.1.17022.20 - Samsung Electronics Co., Ltd.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.14.1 - Synaptics Incorporated)
System Level Up Driver (HKLM-x32\...\{ABB5B6B0-68E6-4F87-8F1D-A9A2A3A77355}) (Version: 2.03.03 - ASUSTeK Computer Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
Uplay (HKLM-x32\...\Uplay) (Version: 17.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.1.265 - ASUS Cloud Corporation)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom)
Widevine Media Optimizer Chrome 6.0.0 (HKLM-x32\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Фотогалерия (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
사진 갤러리 (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1977854332-2955089687-2052700524-1001_Classes\CLSID\{9b283e45-fd54-4d68-af35-5ad8fc59a700}\InprocServer32 -> C:\WINDOWS\system32\dfshim.dll (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {001408B7-7D19-4BF4-A517-F882C7467FD6} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe [2013-11-28] ()
Task: {10A5EF8C-700B-408C-8896-98BB2401F62A} - System32\Tasks\ASUS\ASUS AiCharger_II TrayIcon => C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe [2014-03-20] (ASUSTeK)
Task: {18BA1590-92CC-40EF-8315-4A175C070132} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23] (NVIDIA Corporation)
Task: {19C278D4-31A2-4608-A3C2-E6EDD24F2C92} - System32\Tasks\EPSON XP-312 313 315 Series Update {AFB05FD3-6932-4FDE-8BC9-E535FC17820C} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {1ABA4028-D67F-4B49-AFD4-D6716AE09CFE} - System32\Tasks\ASUS\SystemLevelUp Driver => C:\Program Files (x86)\ASUS\System Level Up Driver\SysLevelUp.exe [2014-05-15] ()
Task: {2820E152-2D40-4D3B-8276-FC505607937D} - System32\Tasks\EPSON XP-312 313 315 Series Update {FFB85F48-54C4-4A85-8D28-9B64ECF0BC71} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {2BEA8E83-AAE3-463F-AD36-E63A23BA09E3} - System32\Tasks\Avast Emergency Update => E:\avast\AvEmUpdate.exe [2017-03-03] (AVAST Software)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe
Task: {45F8D0D0-7317-40F6-BF0F-BB999E29C778} - System32\Tasks\MSIAfterburner => E:\MSI Afterburner OSD\MSI Afterburner\MSIAfterburner.exe [2015-12-09] ()
Task: {47FCE013-8C4E-4D67-8E5B-11696FB5428C} - System32\Tasks\ASUS\AsSysLevelUpSrc => C:\Program Files (x86)\ASUS\System Level Up Driver\AsSysLevelUpSrc.exe [2014-06-18] (ASUSTeK Computer Inc.)
Task: {4D592FEF-CC54-4D03-A34D-D580186879CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03] (Google Inc.)
Task: {4D7A9C94-7BC9-4DD3-B139-9F0FDF5677E4} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-03-16] (Microsoft Corporation)
Task: {55B9B0D9-121F-4492-BB99-6483E0D11183} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {56BD0124-5414-4308-B441-1FE40D1EE33E} - System32\Tasks\ASUS\ASUS_M Lighting Execute => C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\ASUS_Manager_Lighting.exe [2013-07-22] (ASUSTeK)
Task: {58E5293F-08D6-4A9A-9DD3-BAA15537F8E0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {5955936E-7BD8-4B6E-A87C-9B87F20992D5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-23] (NVIDIA Corporation)
Task: {5F062C67-E526-44F1-9A43-AF600D293E80} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation)
Task: {6144A03D-B723-4BD5-9F83-3911CBA9109B} - System32\Tasks\ASUS\lighting_asus => C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\CheckBreatheLighting.exe [2014-04-01] ()
Task: {644167F5-5345-47CC-865C-BEFE797CCB62} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {65293B48-59D2-4BC3-99B5-C4EB6B0ADE1D} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {659934EE-3826-4498-B83D-A615EA0DBD83} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {67907F83-37EC-48D7-8707-BD1A1196CF99} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation)
Task: {681DB442-8091-4F00-B6F9-F3BE333061E5} - System32\Tasks\EPSON XP-312 313 315 Series Invitation {FFB85F48-54C4-4A85-8D28-9B64ECF0BC71} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {6AD07929-9592-4D59-B202-1DC07F551CAE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {6FA87E97-0BCF-457A-B89A-928D5CC44DD4} - System32\Tasks\EPSON XP-312 313 315 Series Update {58468637-6593-4861-9723-86097D1ACE97} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {750E894F-8A3A-473C-AF41-12ADBF72BD00} - System32\Tasks\ASUS\ASUS Manager - PC Cleanup - SecureDeleteBackground => C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe [2014-06-04] ()
Task: {7650EE4C-72C3-47BD-B5B8-96C15FCBAC35} - System32\Tasks\ASUS\Power_Manager_background => C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe [2014-02-21] (ASUSTeK)
Task: {81CAE846-613E-4644-B550-7E037E3C3697} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {8267DE15-B3F4-41AA-9CDD-3181DC553056} - System32\Tasks\ASUS\ASUS AiCharger_Desktop Execute => C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe [2013-04-03] (ASUSTek Computer Inc.)
Task: {85E5B9C8-12C5-40D5-8FA2-7F196B52472F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {9E51B9DF-5BA7-445B-AC96-CA2ABCB550F3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
Task: {9F39BB39-352A-4956-8801-D03150285826} - System32\Tasks\ASUS\ASUS Manager BackgroundWindow => C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe [2013-08-24] ()
Task: {9FA1E9DF-D71C-4728-9690-646030A528CD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03] (Google Inc.)
Task: {A377FCF1-328B-4586-9EE3-EE559E4D331C} - System32\Tasks\ASUS\ASUS Manager HotKey Service => C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe [2014-03-20] (ASUSTeK Computer Inc.)
Task: {A5D637BA-6F37-4B8F-ABD0-78D93F933F10} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {A8750717-C28B-4341-B614-6D0C9D97EB2F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {A99503B3-5829-47A6-AD07-C0E44991B15A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-02-16] (AVAST Software)
Task: {A9B30A67-F1E2-4D54-9EB1-83769A1A4B83} - System32\Tasks\ASUS\ASUS Updater => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSFourceUpdater.exe [2014-02-27] ()
Task: {AAB71870-3D10-42C3-8746-A2205D96B5DF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-23] (NVIDIA Corporation)
Task: {AB52C4FB-3EED-499E-B616-74788D3BA3B6} - System32\Tasks\EPSON XP-312 313 315 Series Invitation {AFB05FD3-6932-4FDE-8BC9-E535FC17820C} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {ADFFA981-CF7A-4089-B4F6-B9BD36B28179} - System32\Tasks\ASUS\System Level Up Helper => C:\Program Files (x86)\ASUS\AEGIS\AsSysLevelUpSrc.exe [2014-06-26] (ASUSTeK Computer Inc.)
Task: {B9326B3B-EEAB-4B66-AB32-499461CF8551} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {BE980589-283A-44A5-9ABC-7103D1A1136F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation)
Task: {C226351F-DD8F-4A41-B436-917015CF250B} - System32\Tasks\ASUS\AEGIS Alert Helper => C:\Program Files (x86)\ASUS\AEGIS\AEGIS_AlertService.exe [2014-06-18] (ASUSTeK Computer Inc.)
Task: {C9270462-DAEC-411B-A342-31D46A0E6817} - System32\Tasks\ASUS\AEGIS SysInfo Helper => C:\Program Files (x86)\ASUS\AEGIS\AEGIS_SysMode.exe [2014-06-18] (ASUSTeK Computer Inc.)
Task: {CD476AB9-1BEE-4F5D-977C-C32CAAC29872} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {D989720F-34B7-46C5-B314-CB1F3DAEFF43} - System32\Tasks\ASUS\ASUS_M Lighting CD_Rom Execute => C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\CheckCD_RomLighting.exe [2014-06-05] ()
Task: {DA8A42C1-03D6-4B6F-994F-3EA7DE9F2A61} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {DBDEA4E6-7808-4689-A85E-D2494C01B371} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {DFBA5696-13A3-441B-B743-534E3A68FF44} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation)
Task: {E017770F-9D6C-4791-BF02-10600008768A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {E17AF2A5-192E-4B93-B8D0-3B187F0EDAA4} - System32\Tasks\EPSON XP-312 313 315 Series Invitation {58468637-6593-4861-9723-86097D1ACE97} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {E6050A09-31AD-43EB-B885-F9792675E2FF} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {ECD47405-04E1-4C2C-9D1D-A176FE2F0F53} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation)
Task: {F21E5935-D0CA-4735-99B2-0FABE6DA58B6} - System32\Tasks\avastBCLRestart_chrome.exe => Chrome.exe
Task: {F591F426-FCA0-44C0-9971-54086E8DBC66} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {F6017C74-66EA-4AF3-A56D-A191FA7373D7} - System32\Tasks\ASUS\AEGIS Toast Helper => C:\Program Files (x86)\ASUS\AEGIS\AsToastHelper.exe [2014-06-26] (ASUSTeK Computer Inc.)
Task: {FAFDC992-2C8D-401A-89E1-ADAE24DA5405} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {FEF8856A-950C-49E4-B6B5-CF19EC37D404} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\EPSON XP-312 313 315 Series Invitation {58468637-6593-4861-9723-86097D1ACE97}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-312 313 315 Series Invitation {AFB05FD3-6932-4FDE-8BC9-E535FC17820C}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-312 313 315 Series Invitation {FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE
Task: C:\WINDOWS\Tasks\EPSON XP-312 313 315 Series Update {58468637-6593-4861-9723-86097D1ACE97}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE :/EXE:{58468637-6593-4861-9723-86097D1ACE97} /F:Update WORKGROUP\ZAIL$ ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-312 313 315 Series Update {AFB05FD3-6932-4FDE-8BC9-E535FC17820C}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE :/EXE:{AFB05FD3-6932-4FDE-8BC9-E535FC17820C} /F:Update WORKGROUP\ZAIL$ ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON XP-312 313 315 Series Update {FFB85F48-54C4-4A85-8D28-9B64ECF0BC71}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLFE.EXE :/EXE:{FFB85F48-54C4-4A85-8D28-9B64ECF0BC71} /F:Update WORKGROUP\ZAIL$ ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-15 17:50 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-01-24 16:57 - 2017-02-10 00:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-12-03 00:09 - 2014-05-14 10:13 - 00586880 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
2016-12-23 20:16 - 2017-02-23 20:35 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-23 20:16 - 2017-02-23 20:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-07-03 22:43 - 2017-01-17 04:25 - 00117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-12-24 13:09 - 2016-04-23 15:17 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2014-10-06 12:38 - 2012-04-24 12:43 - 00390632 ____R () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2016-09-25 00:20 - 2016-09-25 00:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-10-06 12:25 - 2014-06-18 05:06 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2015-11-23 18:44 - 2015-11-23 18:44 - 00403456 _____ () E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSSHooks64.dll
2017-03-15 17:50 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2014-12-03 00:09 - 2014-05-15 02:13 - 03078016 _____ () C:\Program Files (x86)\ASUS\System Level Up Driver\SysLevelUp.exe
2014-12-03 00:13 - 2014-06-04 00:59 - 00930448 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
2015-12-09 09:59 - 2015-12-09 09:59 - 00580296 _____ () E:\MSI Afterburner OSD\MSI Afterburner\MSIAfterburner.exe
2014-12-03 00:13 - 2014-06-05 03:13 - 00023320 _____ () C:\Program Files (x86)\ASUS\ASUS Manager\Lighting\CheckCD_RomLighting.exe
2016-09-14 12:26 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 17:50 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 17:50 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 17:50 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 17:50 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-15 17:50 - 2017-03-04 08:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-15 17:51 - 2017-03-04 08:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-03-13 14:22 - 2017-03-13 14:23 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-03-13 14:22 - 2017-03-13 14:23 - 00182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-03-13 14:22 - 2017-03-13 14:23 - 41048064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-03-13 14:22 - 2017-03-13 14:23 - 02236896 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\roottools.dll
2015-12-02 11:19 - 2015-12-02 11:19 - 00205000 _____ () E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSS.exe
2015-11-23 18:43 - 2015-11-23 18:43 - 00026112 _____ () E:\MSI Afterburner OSD\RivaTuner Statistics Server\EncoderServer.exe
2015-11-23 18:44 - 2015-11-23 18:44 - 00088576 _____ () E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2016-12-16 22:03 - 2016-12-16 22:03 - 00054488 _____ () C:\Program Files\CCleaner\branding.dll
2017-03-03 20:09 - 2017-03-03 20:09 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2017-01-09 08:06 - 2017-01-09 08:06 - 00298448 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2016-11-08 15:36 - 2017-02-28 17:35 - 01294336 _____ () E:\lol\RADS\system\rads_user_kernel.exe
2017-03-23 20:01 - 2017-03-23 20:01 - 02829440 _____ () E:\lol\RADS\projects\lol_launcher\releases\0.0.1.40\deploy\LoLLauncher.exe
2017-03-23 20:01 - 2017-03-23 20:01 - 05245056 _____ () E:\lol\RADS\projects\lol_patcher\releases\0.0.0.80\deploy\LoLPatcher.exe
2017-03-02 17:09 - 2017-03-02 17:09 - 00074752 _____ () E:\lol\RADS\projects\lol_air_client\releases\0.0.1.245\deploy\LolClient.exe
2014-10-06 12:25 - 2017-03-26 13:04 - 00034816 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2014-10-06 12:25 - 2014-06-18 05:06 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2015-07-03 22:18 - 2017-02-23 20:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-12-23 20:16 - 2017-02-23 20:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-23 20:16 - 2017-02-23 20:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00356864 _____ () E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTSSHooks.dll
2016-12-27 17:32 - 2017-03-26 13:05 - 00619616 _____ () C:\Users\lukas_000\AppData\Local\Temp\0Kraken71ChromaDevProps.dll
2014-12-03 00:09 - 2014-05-15 02:13 - 00179712 _____ () C:\Program Files (x86)\ASUS\System Level Up Driver\ASUSSERVICE.DLL
2014-12-03 00:09 - 2014-05-15 02:13 - 00609280 _____ () C:\Program Files (x86)\ASUS\System Level Up Driver\DeskTopToastDll.dll
2014-12-03 00:09 - 2014-05-15 02:13 - 00475136 _____ () C:\Program Files (x86)\ASUS\System Level Up Driver\HookKey32.dll
2014-12-03 00:09 - 2014-06-18 08:28 - 00011264 _____ () C:\Program Files (x86)\ASUS\System Level Up Driver\SysTranslations\AsMultiLang.dll
2015-12-07 18:43 - 2015-12-07 18:43 - 00071680 _____ () E:\MSI Afterburner OSD\MSI Afterburner\RTMUI.dll
2015-12-07 18:44 - 2015-12-07 18:44 - 00225792 _____ () E:\MSI Afterburner OSD\MSI Afterburner\RTCore.dll
2015-12-07 18:43 - 2015-12-07 18:43 - 00357888 _____ () E:\MSI Afterburner OSD\MSI Afterburner\RTUI.dll
2015-12-07 18:43 - 2015-12-07 18:43 - 00057856 _____ () E:\MSI Afterburner OSD\MSI Afterburner\RTFC.dll
2015-12-07 18:44 - 2015-12-07 18:44 - 00657408 _____ () E:\MSI Afterburner OSD\MSI Afterburner\RTHAL.dll
2014-10-06 12:25 - 2014-06-18 21:06 - 00062232 _____ () C:\Program Files (x86)\ASUS\AEGIS\cpuutil.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00056832 _____ () E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTFC.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00353792 _____ () E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTUI.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00071680 _____ () E:\MSI Afterburner OSD\RivaTuner Statistics Server\RTMUI.dll
2017-03-23 16:39 - 2017-03-10 02:13 - 00674592 _____ () E:\steam\SDL2.dll
2016-10-14 20:45 - 2016-09-01 03:02 - 04969248 _____ () E:\steam\v8.dll
2017-03-23 16:39 - 2017-03-23 02:52 - 02465056 _____ () E:\steam\video.dll
2016-10-14 20:45 - 2016-09-01 03:02 - 01563936 _____ () E:\steam\icui18n.dll
2016-10-14 20:45 - 2016-09-01 03:02 - 01195296 _____ () E:\steam\icuuc.dll
2016-10-14 20:45 - 2016-01-27 09:49 - 02549760 _____ () E:\steam\libavcodec-56.dll
2016-10-14 20:45 - 2016-01-27 09:49 - 00491008 _____ () E:\steam\libavformat-56.dll
2016-10-14 20:45 - 2016-01-27 09:49 - 00332800 _____ () E:\steam\libavresample-2.dll
2016-10-14 20:45 - 2016-01-27 09:49 - 00442880 _____ () E:\steam\libavutil-54.dll
2016-10-14 20:45 - 2016-01-27 09:49 - 00485888 _____ () E:\steam\libswscale-3.dll
2017-03-23 16:39 - 2017-03-23 02:52 - 00839456 _____ () E:\steam\bin\chromehtml.DLL
2016-10-14 20:45 - 2016-07-05 00:17 - 00266560 _____ () E:\steam\openvr_api.dll
2017-03-03 22:49 - 2017-03-03 22:49 - 00170216 _____ () E:\avast\JsonRpcServer.dll
2017-02-06 21:23 - 2017-02-01 11:01 - 01870168 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-06 21:23 - 2017-02-01 11:01 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll
2016-12-23 20:16 - 2017-02-23 20:34 - 65708992 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-12-23 20:16 - 2017-02-23 16:30 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-12-23 20:16 - 2017-02-23 16:30 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-12-23 20:16 - 2017-02-23 16:30 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-12-23 20:16 - 2017-02-23 16:30 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-12-23 20:16 - 2017-02-23 16:30 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-12-23 20:16 - 2017-02-23 16:30 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2012-08-25 06:43 - 2012-08-25 06:43 - 00014336 _____ () C:\ProgramData\Razer\SwitchBlade\Apps\Razer\65BFE244-2354-4E41-ADC9-CCF6BE3B5F75\RzFPS\FPSClient.dll
2016-09-19 14:47 - 2016-09-19 14:47 - 53018112 _____ () E:\gog galaxy\GalaxyClient\libcef.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00507968 _____ () E:\gog galaxy\GalaxyClient\PocoUtil.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 01076800 _____ () E:\gog galaxy\GalaxyClient\PocoNet.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 01854528 _____ () E:\gog galaxy\GalaxyClient\PocoData.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00393280 _____ () E:\gog galaxy\GalaxyClient\PocoDataSQLite.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 01589312 _____ () E:\gog galaxy\GalaxyClient\PocoFoundation.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00307776 _____ () E:\gog galaxy\GalaxyClient\PocoNetSSL.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00330816 _____ () E:\gog galaxy\GalaxyClient\PocoJSON.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00104000 _____ () E:\gog galaxy\GalaxyClient\zlib.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00520768 _____ () E:\gog galaxy\GalaxyClient\PocoXML.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00272448 _____ () E:\gog galaxy\GalaxyClient\PocoZip.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00680000 _____ () E:\gog galaxy\GalaxyClient\sqlite.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00425536 _____ () E:\gog galaxy\GalaxyClient\pcre.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00157760 _____ () E:\gog galaxy\GalaxyClient\PocoCrypto.dll
2017-03-16 19:05 - 2017-03-16 19:05 - 00152128 _____ () E:\gog galaxy\GalaxyClient\expat.dll
2017-02-20 10:10 - 2017-02-20 10:10 - 00143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2017-01-15 13:44 - 2016-10-08 09:13 - 50656768 _____ () C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\cef\libcef.dll
2016-04-05 17:57 - 2016-04-05 17:57 - 00393608 _____ () C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\opus.dll
2017-02-09 03:15 - 2017-03-21 16:49 - 00534408 _____ () C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Curse.Presto.Interface.dll
2017-03-10 16:12 - 2017-01-30 23:41 - 68875552 _____ () E:\steam\bin\cef\cef.win7\libcef.dll
2017-03-23 16:39 - 2017-03-23 02:52 - 00383776 _____ () E:\steam\steam.dll
2017-01-11 00:04 - 2017-01-11 00:04 - 01949064 _____ () C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\ffmpeg.dll
2017-01-11 00:04 - 2017-01-11 00:04 - 02269064 _____ () C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\libglesv2.dll
2017-01-11 00:04 - 2017-01-11 00:04 - 00086920 _____ () C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Electron\libegl.dll
2016-09-19 14:47 - 2016-09-19 14:47 - 01738752 _____ () E:\gog galaxy\GalaxyClient\libglesv2.dll
2016-09-19 14:47 - 2016-09-19 14:47 - 00078848 _____ () E:\gog galaxy\GalaxyClient\libegl.dll
2017-01-02 16:07 - 2017-01-02 16:07 - 48936448 _____ () E:\avast\libcef.dll
2017-03-03 22:49 - 2017-03-03 22:49 - 00290352 _____ () E:\avast\gaming_mode_ui.dll
2017-03-03 22:49 - 2017-03-03 22:49 - 00655056 _____ () E:\avast\ffl2.dll
2013-10-22 10:24 - 2013-10-22 10:24 - 24978944 _____ () C:\ProgramData\Razer\SwitchBlade\Resources\CEF1\libcef.dll
2013-10-22 10:24 - 2013-10-22 10:24 - 00736256 _____ () C:\ProgramData\Razer\SwitchBlade\Resources\CEF1\libglesv2.dll
2013-10-22 10:24 - 2013-10-22 10:24 - 00130048 _____ () C:\ProgramData\Razer\SwitchBlade\Resources\CEF1\libegl.dll
2017-01-15 13:44 - 2016-10-08 09:13 - 50656768 _____ () C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2017-01-15 13:44 - 2016-10-08 09:13 - 01874944 _____ () C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2017-01-15 13:44 - 2016-10-08 09:13 - 00075264 _____ () C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2017-01-15 13:44 - 2016-10-08 09:13 - 01874944 _____ () C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\cef\libglesv2.dll
2017-01-15 13:44 - 2016-10-08 09:13 - 00075264 _____ () C:\Users\lukas_000\AppData\Local\razer\InGameEngine\cache\RzSynapse\cef\libegl.dll
2014-03-20 21:43 - 2014-03-20 21:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2017-03-23 20:01 - 2017-03-23 20:01 - 00605312 _____ () E:\lol\RADS\projects\lol_patcher\releases\0.0.0.80\deploy\RiotLauncher.dll
2017-03-21 16:49 - 2017-03-21 16:49 - 00843144 _____ () C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Overlay\v7.1.6288.5257\CurseNativeOverlay32.dll
2017-03-02 14:24 - 2017-03-02 14:24 - 04887216 _____ () E:\lol\RADS\projects\lol_air_client\releases\0.0.1.245\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
2017-03-02 14:23 - 2017-03-02 14:23 - 19397808 _____ () E:\lol\RADS\projects\lol_air_client\releases\0.0.1.245\deploy\Adobe AIR\Versions\1.0\Resources\NPSWF32.dll
2017-03-21 16:49 - 2016-04-05 17:57 - 00868232 _____ () C:\Users\lukas_000\AppData\Roaming\Curse Client\Bin\Overlay\v7.1.6288.5257\Coherent2\Win32\host\ffmpegsumo.dll
2017-03-15 17:50 - 2017-03-04 09:19 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lukas_000\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{FAA702E9-33F1-4D12-B051-CA0F0CCC13C6}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{A06AE569-02FE-4EFA-BEA9-DFC59C9B20D7}] => (Allow) LPort=1487
FirewallRules: [{1E468403-7BA2-4F0D-9ED7-3FE2D04E49C1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1910AFD6-DC54-48A2-BA70-B9D16752B373}] => (Allow) LPort=2869
FirewallRules: [{E61C0010-BF31-4A01-8E48-08EE9F8B9E74}] => (Allow) LPort=1900
FirewallRules: [{DCB00E53-53E4-4A47-A3BC-DBBC37683F68}] => (Allow) E:\battlenet\Battle.net\Battle.net.exe
FirewallRules: [{FB0CECCE-F594-4408-8913-84F77F8E5C42}] => (Allow) E:\battlenet\Battle.net\Battle.net.exe
FirewallRules: [{03B68BA1-4559-4026-996B-D24B736CA62D}] => (Allow) E:\heartstoone\Hearthstone\Hearthstone.exe
FirewallRules: [{9A7D7271-7AC8-4CF7-8F83-3E3DAC60A7F1}] => (Allow) E:\heartstoone\Hearthstone\Hearthstone.exe
FirewallRules: [{A30E15F1-6050-417D-A93F-BCF097247029}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{53B54902-D24C-413F-9404-66A2406E8CD2}] => (Allow) E:\steam\Steam.exe
FirewallRules: [{57F5717A-8FE7-482E-8D16-071F1227864E}] => (Allow) E:\steam\Steam.exe
FirewallRules: [TCP Query User{0CEE847B-7230-478B-86D0-BFA0E57800DA}E:\utorrent\utorrent.exe] => (Allow) E:\utorrent\utorrent.exe
FirewallRules: [UDP Query User{4684D79A-58D3-4B04-AFCB-6D5CCD8AE398}E:\utorrent\utorrent.exe] => (Allow) E:\utorrent\utorrent.exe
FirewallRules: [{6857FC5B-39C4-4CBE-AA72-28F648FC0E7A}] => (Allow) E:\winamp\winamp.exe
FirewallRules: [{C26E5D99-AAF7-4A53-914B-FAACA868B460}] => (Allow) E:\winamp\winamp.exe
FirewallRules: [{0C827287-F745-430D-A45F-46C6C69B7CB8}] => (Allow) E:\steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{F6AE7F4C-23D7-4131-869A-4D8DEA19A273}] => (Allow) E:\steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{7C135CDB-1D60-4822-B6A1-5B28C004374B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{DC3570B1-7368-45F9-A84A-46B7BAD8E075}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4D6E4FCD-58CF-469B-9D9C-46708D06A399}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1D1E203B-1F7B-49E6-88F8-60774E92DD59}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{52940D21-89FA-469F-BA52-4F2B74733B5F}J:\easysetupassistant\easysetupassistant.exe] => (Allow) J:\easysetupassistant\easysetupassistant.exe
FirewallRules: [UDP Query User{A4DB45FA-8C44-43CE-BDD6-A0D8022BCC81}J:\easysetupassistant\easysetupassistant.exe] => (Allow) J:\easysetupassistant\easysetupassistant.exe
FirewallRules: [{9063A408-60A0-46EF-B6DE-946D99618D7E}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{2821BF8A-8939-4B1A-B903-5999FA0C7D6B}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [TCP Query User{15B3BC21-F7EE-4161-BC57-CA8B7CD23FDE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{4E8C2F6F-A242-4E76-B2E9-178A929D6B84}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{F4BEF90A-724D-4648-814D-6311199C4EEC}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe
FirewallRules: [{01759B84-D6CC-43AF-9BF8-53B150C26D7C}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrA.exe
FirewallRules: [{570CFA27-3AB9-44FC-910B-A957FE87E6FB}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe
FirewallRules: [{37B7F9FA-9656-4E1D-8CC2-492BF4647B1F}] => (Allow) C:\WINDOWS\SysWOW64\PnkBstrB.exe
FirewallRules: [{30F50442-74C5-4B84-A155-CC0A89E227E0}] => (Allow) C:\WINDOWS\SysWOW64\muzapp.exe
FirewallRules: [{00AE60AA-F6AA-49D6-AD08-FCB9AC218607}] => (Allow) C:\WINDOWS\SysWOW64\muzapp.exe
FirewallRules: [{93B33993-25CA-4FE9-98E1-3DA5BD5BE975}] => (Allow) E:\steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{C4904301-7410-480F-A7C7-AF89DC30792E}] => (Allow) E:\steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [TCP Query User{4BBA8B8F-A63C-4CB3-A311-8F7AB8079E8B}E:\utorrent\utorrent.exe] => (Allow) E:\utorrent\utorrent.exe
FirewallRules: [UDP Query User{F7D712F1-7F4B-4643-81F9-14B17C3D8938}E:\utorrent\utorrent.exe] => (Allow) E:\utorrent\utorrent.exe
FirewallRules: [TCP Query User{404B223C-B0DA-4CC7-B6E3-E8C621F18349}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{6914DC0B-8AB5-4D51-B737-763980E52C5D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{1674712D-D83F-4241-B34A-16DE2E39B1B2}] => (Allow) E:\steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{C932A57E-7C65-4CFE-ACD1-68777568AD99}] => (Allow) E:\steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{714DA29E-9656-4659-AB0F-F6C6F4DD8873}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [TCP Query User{0D1A5B58-61BE-451E-8E05-EAAF0AC4BE0E}E:\heartstoone\hearthstone\hearthstone.exe] => (Allow) E:\heartstoone\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{10CC2139-7012-4DE6-90BB-69E7ABC3B268}E:\heartstoone\hearthstone\hearthstone.exe] => (Allow) E:\heartstoone\hearthstone\hearthstone.exe
FirewallRules: [{F50DD6F0-DE6B-4292-8F77-D7A6C0BA26D8}] => (Allow) E:\Nová složka\TeamViewer.exe
FirewallRules: [{E65F755D-E240-4621-99D4-9D9A686B1E50}] => (Allow) E:\Nová složka\TeamViewer.exe
FirewallRules: [{C242CBBC-7BB0-4C99-BBDD-8E144533150A}] => (Allow) E:\Nová složka\TeamViewer_Service.exe
FirewallRules: [{59BEB269-4CF1-4B7B-9210-8BCE356F5BBC}] => (Allow) E:\Nová složka\TeamViewer_Service.exe
FirewallRules: [{7C63B061-988B-4231-8C7E-FA1DD9799B28}] => (Allow) E:\steam\steamapps\common\Dishonored RHCP\Binaries\Win32\Dishonored.exe
FirewallRules: [{2E3D29E5-2ACF-4F71-9820-7863BD86245F}] => (Allow) E:\steam\steamapps\common\Dishonored RHCP\Binaries\Win32\Dishonored.exe
FirewallRules: [{B40D617D-9740-449B-85C2-6A047945458D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

15-03-2017 21:38:43 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
24-03-2017 19:01:14 Naplánovaný kontrolní bod
25-03-2017 22:25:14 Installed Smart Switch

==================== Faulty Device Manager Devices =============

Name: Razer DeathStalker Ultimate
Description: Razer DeathStalker Ultimate
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Razer
Service: rzjstk
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/26/2017 02:04:58 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu WmiApRpl v knihovně DLL C:\WINDOWS\system32\wbem\wmiaprpl.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (03/26/2017 02:04:58 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.

Error: (03/26/2017 02:04:58 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (03/26/2017 02:04:58 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu MSDTC v knihovně DLL C:\WINDOWS\system32\msdtcuiu.DLL se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (03/26/2017 02:04:57 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu Lsa v knihovně DLL C:\Windows\System32\Secur32.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (03/26/2017 02:04:57 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu ESENT v knihovně DLL C:\WINDOWS\system32\esentprf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (03/26/2017 01:06:33 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: ZAIL)
Description: 7.488: Službě systému souborů EFS se nepodařilo zřídit uživatele pro EDP. Kód chyby: 0x80070005.

Error: (03/26/2017 01:04:25 PM) (Source: RzOvlMon) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/26/2017 01:04:25 PM) (Source: RzOvlMon) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/26/2017 01:04:25 PM) (Source: RzOvlMon) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (03/26/2017 01:07:33 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {784E29F4-5EBE-4279-9948-1E8FE941646D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/26/2017 01:04:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/26/2017 01:04:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/26/2017 01:04:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/26/2017 01:04:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/26/2017 01:03:40 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.

Error: (03/26/2017 01:03:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba FABS - Helping agent for MAGIX media database byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (03/26/2017 01:03:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Rapid Storage Technology byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (03/26/2017 01:03:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (03/26/2017 01:03:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


CodeIntegrity:
===================================
Date: 2017-03-03 17:07:34.740
Description: Code Integrity determined that a process (\Device\HarddiskVolume8\avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume8\3dsemu\Uninstal.exe that did not meet the Microsoft signing level requirements.

Date: 2017-02-28 16:24:41.768
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2016-09-07 01:03:53.380
Description: Code Integrity determined that a process (\Device\HarddiskVolume8\avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume8\text to speach wow\WoW Quest Text Reader\unins000.exe that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Percentage of memory in use: 21%
Total physical RAM: 32709.81 MB
Available physical RAM: 25795.89 MB
Total Virtual: 37573.81 MB
Available Virtual: 29290.13 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:221 GB) (Free:151.61 GB) NTFS
Drive d: () (Fixed) (Total:931.56 GB) (Free:807.15 GB) NTFS
Drive e: (programy) (Fixed) (Total:931.33 GB) (Free:767.73 GB) NTFS
Drive f: (INTENSO) (Fixed) (Total:931.51 GB) (Free:425.7 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 559F06E3)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 852ABC3F)

Partition: GPT.

========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: 1FCB34AB)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
Nahoru
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: prosim o provereni

#8 Příspěvek od zail »

a zde ten aditional
Přílohy
Addition.rar
(16.06 KiB) Staženo 93 x
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119670
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o provereni

#9 Příspěvek od Rudy »

Bohužel jste dal Additional sem i do přílohy. Ještě potřebuji vidět samotný FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: prosim o provereni

#10 Příspěvek od zail »

omlouva se zde frst3
Přílohy
FRST3.rar
(21.22 KiB) Staženo 71 x
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119670
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o provereni

#11 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
HKLM-x32\...\Run: [] => [X]
SearchScopes: HKU\S-1-5-21-1977854332-2955089687-2052700524-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1977854332-2955089687-2052700524-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - E:\avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\WINDOWS\system32\ApnDatabase.xml
C:\ProgramData\DP45977C.lfl
Task: {55B9B0D9-121F-4492-BB99-6483E0D11183} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {58E5293F-08D6-4A9A-9DD3-BAA15537F8E0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {644167F5-5345-47CC-865C-BEFE797CCB62} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {659934EE-3826-4498-B83D-A615EA0DBD83} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {6AD07929-9592-4D59-B202-1DC07F551CAE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
ask: {81CAE846-613E-4644-B550-7E037E3C3697} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A8750717-C28B-4341-B614-6D0C9D97EB2F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B9326B3B-EEAB-4B66-AB32-499461CF8551} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {DA8A42C1-03D6-4B6F-994F-3EA7DE9F2A61} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {E017770F-9D6C-4791-BF02-10600008768A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {E6050A09-31AD-43EB-B885-F9792675E2FF} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {F591F426-FCA0-44C0-9971-54086E8DBC66} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {FAFDC992-2C8D-401A-89E1-ADAE24DA5405} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: prosim o provereni

#12 Příspěvek od zail »

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by lukas_000 (26-03-2017 18:03:10) Run:1
Running from C:\Users\lukas_000\Desktop
Loaded Profiles: lukas_000 (Available Profiles: lukas_000)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
HKLM-x32\...\Run: [] => [X]
SearchScopes: HKU\S-1-5-21-1977854332-2955089687-2052700524-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1977854332-2955089687-2052700524-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - E:\avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\WINDOWS\system32\ApnDatabase.xml
C:\ProgramData\DP45977C.lfl
Task: {55B9B0D9-121F-4492-BB99-6483E0D11183} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {58E5293F-08D6-4A9A-9DD3-BAA15537F8E0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {644167F5-5345-47CC-865C-BEFE797CCB62} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {659934EE-3826-4498-B83D-A615EA0DBD83} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {6AD07929-9592-4D59-B202-1DC07F551CAE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
ask: {81CAE846-613E-4644-B550-7E037E3C3697} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A8750717-C28B-4341-B614-6D0C9D97EB2F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B9326B3B-EEAB-4B66-AB32-499461CF8551} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {DA8A42C1-03D6-4B6F-994F-3EA7DE9F2A61} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {E017770F-9D6C-4791-BF02-10600008768A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {E6050A09-31AD-43EB-B885-F9792675E2FF} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {F591F426-FCA0-44C0-9971-54086E8DBC66} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {FAFDC992-2C8D-401A-89E1-ADAE24DA5405} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

EmptyTemp:
End

*****************

C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe => moved successfully
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe => moved successfully
C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe => moved successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-1977854332-2955089687-2052700524-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => key removed successfully
C:\WINDOWS\system32\ApnDatabase.xml => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{55B9B0D9-121F-4492-BB99-6483E0D11183} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{55B9B0D9-121F-4492-BB99-6483E0D11183} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{58E5293F-08D6-4A9A-9DD3-BAA15537F8E0} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58E5293F-08D6-4A9A-9DD3-BAA15537F8E0} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{644167F5-5345-47CC-865C-BEFE797CCB62} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{644167F5-5345-47CC-865C-BEFE797CCB62} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{659934EE-3826-4498-B83D-A615EA0DBD83} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{659934EE-3826-4498-B83D-A615EA0DBD83} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6AD07929-9592-4D59-B202-1DC07F551CAE} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AD07929-9592-4D59-B202-1DC07F551CAE} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key removed successfully
ask: {81CAE846-613E-4644-B550-7E037E3C3697} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION => Error: No automatic fix found for this entry.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A8750717-C28B-4341-B614-6D0C9D97EB2F} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8750717-C28B-4341-B614-6D0C9D97EB2F} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B9326B3B-EEAB-4B66-AB32-499461CF8551} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9326B3B-EEAB-4B66-AB32-499461CF8551} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DA8A42C1-03D6-4B6F-994F-3EA7DE9F2A61} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA8A42C1-03D6-4B6F-994F-3EA7DE9F2A61} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E017770F-9D6C-4791-BF02-10600008768A} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E017770F-9D6C-4791-BF02-10600008768A} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E6050A09-31AD-43EB-B885-F9792675E2FF} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6050A09-31AD-43EB-B885-F9792675E2FF} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F591F426-FCA0-44C0-9971-54086E8DBC66} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F591F426-FCA0-44C0-9971-54086E8DBC66} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FAFDC992-2C8D-401A-89E1-ADAE24DA5405} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FAFDC992-2C8D-401A-89E1-ADAE24DA5405} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => key removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 192100389 B
Java, Flash, Steam htmlcache => 448392034 B
Windows/system/drivers => 78581578 B
Edge => 607 B
Chrome => 671449843 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 5714 B
NetworkService => 9351168 B
lukas_000 => 165874986 B

RecycleBin => 0 B
EmptyTemp: => 1.5 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:03:25 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119670
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o provereni

#13 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
zail
Návštěvník
Návštěvník
Příspěvky: 118
Registrován: 19 pro 2005 15:28

Re: prosim o provereni

#14 Příspěvek od zail »

vypada ze to je ok

Dekuji, co tam bylo za chybu
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119670
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: prosim o provereni

#15 Příspěvek od Rudy »

Několik AdWarů a asi 1,5GB zbytečností. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“