VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosim pc je pomalé

https://forum.viry.cz:443/viewtopic.php?t=143025

Stránka 1 z 2

prosim pc je pomalé

Napsal: 15 úno 2015 12:42
od dart500
info.txt logfile of random's system information tool 1.10 2015-02-15 12:35:40

======MBR======

0x0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000B93FF529000000000200EEFFFFFF01000000FFFFFFFF00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055AA

======Uninstall list======

-->13CD074C1C36484CBE52F07F283AA5BE
-->C:\ProgramData\{FA77A43D-F6ED-4924-87B5-517C061388C6}\WeatherBugSetup.exe
Adobe Reader XI (11.0.10) - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AB0000000001}
Adobe Refresh Manager-->MsiExec.exe /I{AC76BA86-0804-1033-1959-001802114130}
Common Desktop Agent-->MsiExec.exe /X{031A0E14-0413-4C97-9772-2639B782F46F}
FORM studio-->"C:\Program Files (x86)\KASTNER software\FORM studio CZ\unins000.exe"
Google Chrome Backup 1.7.0.114-->"C:\Program Files (x86)\Google Chrome Backup\unins000.exe"
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
HP Wireless Button Driver-->MsiExec.exe /X{30B2D1D8-0A07-4B71-9553-0710C5D31E35}
HTC Driver Installer-->MsiExec.exe /X{4CEEE5D0-F905-4688-B9F9-ECC710507796}
Intel(R) Processor Graphics-->C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe -uninstall
Intel(R) Sideband Fabric Device Driver-->C:\Program Files (x86)\Intel\Intel(R) MBI Driver\Uninstall\setup.exe -uninstall
Intel(R) Trusted Execution Engine Driver-->MsiExec.exe /I{6307E820-0317-4DCE-AAE0-7B6CAD867055}
Intel(R) Trusted Execution Engine-->"C:\ProgramData\Intel\Package Cache\{176E2755-0A17-42C6-88E2-192AB2131278}\Setup.exe" -uninstall
Intel(R) Trusted Execution Engine-->MsiExec.exe /I{2D6248C0-4693-4CAB-9922-F05E4015F62A}
IPTInstaller-->MsiExec.exe /I{08208143-777D-4A06-BB54-71BF0AD1BB70}
Kingo ROOT version 1.2.6.2134-->"C:\Program Files (x86)\Kingo ROOT\unins000.exe"
Mac Blu-ray Player-->"C:\Program Files (x86)\MacGo\Mac Blu-ray Player\uninst.exe"
Malwarebytes Anti-Malware verze 2.0.3.1025-->"C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2007-->MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (Czech) 2007-->MsiExec.exe /X{90120000-002A-0405-1000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Mozilla Firefox 34.0.5 (x86 cs)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
PAD Product Tool(Developer Edition) 1.04-->MsiExec.exe /I{18745E12-6FC9-4719-83BD-CFC7D4A9EFD1}
PdaNet+ for Android 4.15-->"C:\Program Files (x86)\PdaNet for Android\unins000.exe"
PDF Architect 2 Create Module-->MsiExec.exe /I{3D0D9604-0173-488D-9694-2638C44D7579}
PDF Architect 2 Edit Module-->MsiExec.exe /X{8B0A956F-9BE6-495B-AF80-7B5B42061D79}
PDF Architect 2 View Module-->MsiExec.exe /I{D691E998-CF53-4F6C-AC20-E4284660E0E7}
PDF Architect 2-->C:\ProgramData\PDF Architect 2\Installation\PDFArchitect2Installer.exe /uninstall
PDFCreator-->C:\Program Files\PDFCreator\unins000.exe
PokerStars-->"C:\Program Files (x86)\PokerStars\PokerStarsUninstall.exe" /u:PokerStars
Realtek Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}\setup.exe" -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
ROOT´óʦ-->"C:\Program Files (x86)\VROOT\unins000.exe"
Samsung Easy Document Creator-->"C:\Program Files (x86)\Samsung\Easy Document Creator\uninstall.exe"
Samsung Easy Printer Manager-->C:\Program Files (x86)\Samsung\Easy Printer Manager\uninst.exe /app_ipn:"C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe" /oem:Samsung /oem_ac:EPM /oem_aims:no
Samsung M2070 Series-->"C:\Program Files (x86)\Samsung\Samsung M2070 Series\Setup\Setup.exe" /R
Samsung Printer Diagnostics-->"C:\Program Files (x86)\Samsung\Samsung Printer Diagnostics\SEInstall\setup.exe" /R
Samsung Printer Live Update-->C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller\uninstall.exe
Samsung Scan Process Machine-->C:\Program Files (x86)\Common Files\Scan Process Machine\uninstall.exe
Skype™ 7.0-->MsiExec.exe /X{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
SNS Upload for Easy Document Creator-->MsiExec.exe /I{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}
TradeManager 2014 Beta1-->C:\Program Files (x86)\TradeManager\Uninstall.exe
VLC media player-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
WinRAR 5.11 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe

======System event log======

Computer Name: gagin
Event Code: 1014
Message: Překlad názvu asap.maddoktor2.com nebyl v požadované době dokončen. Žádný z nakonfigurovaných serverů DNS neodpověděl.
Record Number: 2432
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20141123215338.410336-000
Event Type: Upozornění
User: NT AUTHORITY\NETWORK SERVICE

Computer Name: gagin
Event Code: 104
Message: Byl vymazán soubor protokolu Windows PowerShell.
Record Number: 2431
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141123215009.195438-000
Event Type: Informace
User: gagin\gaginek

Computer Name: gagin
Event Code: 104
Message: Byl vymazán soubor protokolu Key Management Service.
Record Number: 2430
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141123215009.039354-000
Event Type: Informace
User: gagin\gaginek

Computer Name: gagin
Event Code: 104
Message: Byl vymazán soubor protokolu Internet Explorer.
Record Number: 2429
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141123215008.867356-000
Event Type: Informace
User: gagin\gaginek

Computer Name: gagin
Event Code: 104
Message: Byl vymazán soubor protokolu System.
Record Number: 2428
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141123215008.679973-000
Event Type: Informace
User: gagin\gaginek

=====Application event log=====

Computer Name: gagin
Event Code: 1530
Message: Systém Windows zjistil, že soubor registru je stále používán jinými aplikacemi nebo službami. Soubor bude nyní uvolněn. Aplikace nebo služby, které soubor registru používají, nemusejí potom fungovat správně. Není nutná žádná akce uživatele.

PODROBNOSTI –
2 user registry handles leaked from \Registry\User\S-1-5-21-1588643819-783570154-1389909823-1001:
Process 884 (\Device\HarddiskVolume5\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1588643819-783570154-1389909823-1001
Process 984 (\Device\HarddiskVolume5\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-1588643819-783570154-1389909823-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall

Record Number: 1943
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20141123222747.047159-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: gagin
Event Code: 6000
Message: Odběratel oznámení přihlašování do systému Windows <SessionEnv> nemohl zpracovat událost upozornění.
Record Number: 1942
Source Name: Microsoft-Windows-Winlogon
Time Written: 20141123222747.000000-000
Event Type: Informace
User:

Computer Name: gagin
Event Code: 0
Message:
Record Number: 1941
Source Name: gupdate
Time Written: 20141123221322.000000-000
Event Type: Informace
User:

Computer Name: gagin
Event Code: 1000
Message: Performance counters for the WmiApRpl (WmiApRpl) service were loaded successfully. The Record Data in the data section contains the new index values assigned to this service.
Record Number: 1940
Source Name: Microsoft-Windows-LoadPerf
Time Written: 20141123220939.614411-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: gagin
Event Code: 1001
Message: Performance counters for the WmiApRpl (WmiApRpl) service were removed successfully. The Record Data contains the new values of the system Last Counter and Last Help registry entries.
Record Number: 1939
Source Name: Microsoft-Windows-LoadPerf
Time Written: 20141123220939.382453-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Security event log=====

Computer Name: gagin
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-90-2
Název účtu: DWM-2
Doména účtu: Window Manager
ID přihlášení: 0x766E29

Oprávnění: SeAssignPrimaryTokenPrivilege
SeAuditPrivilege
SeImpersonatePrivilege
Record Number: 11361
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141123222746.250248-000
Event Type: Úspěšný audit
User:

Computer Name: gagin
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: GAGIN$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Typ přihlášení: 2

Úroveň zosobnění: Zosobnění

Nové přihlášení:
ID zabezpečení: S-1-5-90-2
Název účtu: DWM-2
Doména účtu: Window Manager
ID přihlášení: 0x766E3D
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0xae4
Název procesu: C:\Windows\System32\winlogon.exe

Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 11360
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141123222746.250248-000
Event Type: Úspěšný audit
User:

Computer Name: gagin
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: GAGIN$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Typ přihlášení: 2

Úroveň zosobnění: Zosobnění

Nové přihlášení:
ID zabezpečení: S-1-5-90-2
Název účtu: DWM-2
Doména účtu: Window Manager
ID přihlášení: 0x766E29
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0xae4
Název procesu: C:\Windows\System32\winlogon.exe

Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 11359
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141123222746.250248-000
Event Type: Úspěšný audit
User:

Computer Name: gagin
Event Code: 4648
Message: Došlo k pokusu o přihlášení pomocí explicitních přihlašovacích údajů.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: GAGIN$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Účet, jehož přihlašovací údaje byly použity:
Název účtu: DWM-2
Doména účtu: Window Manager
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Cílový server:
Název cílového serveru: localhost
Další informace: localhost

Informace o procesu:
ID procesu: 0xae4
Název procesu: C:\Windows\System32\winlogon.exe

Informace o síti:
Síťová adresa: -
Port: -

Tato událost je generována, pokud se proces pokusí přihlásit k účtu explicitním zadáním přihlašovacích údajů tohoto účtu. K tomu nejčastěji dochází v dávkových konfiguracích, například naplánovaných úlohách, nebo při použití příkazu RUNAS.
Record Number: 11358
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141123222746.250248-000
Event Type: Úspěšný audit
User:

Computer Name: gagin
Event Code: 1102
Message: Protokol auditu byl vymazán.
Předmět:
ID zabezpečení: S-1-5-21-1588643819-783570154-1389909823-1001
Název účtu: gaginek
Název domény: gagin
ID přihlášení: 0x12051
Record Number: 11357
Source Name: Microsoft-Windows-Eventlog
Time Written: 20141123215008.383075-000
Event Type: Úspěšný audit
User:

======Environment variables======

"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 55 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=3708

-----------------EOF-----------------

Re: prosim pc je pomalé

Napsal: 15 úno 2015 12:44
od Rudy
Zdravím!
Musíte sem vložit obsah souboru log.txt. Z tohoto nic nevyčtu.

Re: prosim pc je pomalé

Napsal: 03 říj 2015 13:16
od dart500
Logfile of random's system information tool 1.10 (written by random/random)
Run by gagin at 2015-10-03 14:14:11
Microsoft Windows 10 Pro
System drive C: has 31 GB (20%) free of 155 GB
Total RAM: 4094 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:14:27, on 3.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\aliwssv.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TradeManager\AliIM.exe
C:\Windows\SysWOW64\CtHelper.exe
C:\Program Files (x86)\TradeManager\AliApp.exe
C:\Program Files (x86)\TradeManager\AliApp.exe
C:\Users\gagin\AppData\Roaming\TaobaoProtect\TaobaoProtect.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\ProgramData\alipay\Alipaybsm.exe
C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Roaming\uTorrent\uTorrent.exe
C:\Users\gagin\AppData\Roaming\uTorrent\updates\3.4.5_41162\utorrentie.exe
C:\Users\gagin\AppData\Roaming\uTorrent\updates\3.4.5_41162\utorrentie.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\gagin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKCU\..\Run: [Google Update] "C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\gagin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [aliim] "C:\Program Files (x86)\TradeManager\AliIM.exe" /autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.alipay.com
O15 - Trusted Zone: http://*.alisoft.com
O15 - Trusted Zone: http://*.taobao.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Microsoft Device Health Machine Service (DeviceHealth) - Unknown owner - C:\Program Files (x86)\Microsoft Device Health\DhMachineSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Alipay payment client security service (pcas) - Alipay.com Inc. - C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Alipay security business service (secbizsrv) - Alipay.com Inc. - C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TBSecSvc - Alibaba (China) Co., LTD. All rights reserved. - C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: wwbizsrv - Alibaba Group - C:\Program Files (x86)\Alibaba\wwbizsrv\wwbizsrv.exe

--
End of file - 8500 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Microsoft Device Health\DhMachineSvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe"
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe"
"C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Alibaba\wwbizsrv\wwbizsrv.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding


C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\aliwssv.exe" /W
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\TradeManager\AliIM.exe" /autorun
"C:\Windows\System32\CtHelper.exe"
"C:\Program Files (x86)\TradeManager\AliApp.exe" --type=renderer --aef-process-id=tmclient --dump-version=1.00.01E --disable-gpu --no-sandbox --lang=en-US --disable-webgl --disable-pepper-3d --disable-accelerated-compositing --channel="1040.0.884629615\387297815" /prefetch:673131151
"C:\Program Files (x86)\TradeManager\AliApp.exe" --type=renderer --aef-process-id=tmplugin --dump-version=1.00.01E --disable-gpu --no-sandbox --lang=en-US --disable-webgl --disable-pepper-3d --disable-accelerated-compositing --channel="1040.1.1753904809\841604625" /prefetch:673131151
C:\Users\gagin\AppData\Roaming\TaobaoProtect\TaobaoProtect.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5316.0.1308800844\1595784442" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x0193 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4181 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5316.1.483553265\2135320613" --font-cache-shared-handle=2192 /prefetch:673131151
"C:\ProgramData\alipay\Alipaybsm.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\splwow64.exe 8192
"C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE" /n /dde
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5316.123.916862433\47170512" --font-cache-shared-handle=4400 /prefetch:673131151
"C:\Users\gagin\AppData\Roaming\uTorrent\uTorrent.exe" "C:\Users\gagin\Downloads\[CzT]CashForSexTape_WebRip_720pLQ_.torrent" /SHELLASSOC
"C:\Users\gagin\AppData\Roaming\uTorrent\updates\3.4.5_41162\utorrentie.exe" uTorrent_2768_00B06630_991952241 µTorrent4823DF041B09 uTorrent
"C:\Users\gagin\AppData\Roaming\uTorrent\updates\3.4.5_41162\utorrentie.exe" uTorrent_2768_00B067E8_1224295705 µTorrent4823DF041B09 uTorrent
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5316.151.1171488402\1724049494" --font-cache-shared-handle=8416 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5316.153.245800593\1020697579" --font-cache-shared-handle=9236 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5316.156.1420628215\389923524" --font-cache-shared-handle=7636 /prefetch:673131151
C:\Windows\System32\DataExchangeHost.exe -Embedding
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledConnectionRacing/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5316.161.297819484\39824076" --font-cache-shared-handle=8068 /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe20_ Global\UsGthrCtrlFltPipeMssGthrPipe20 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 628 636 8192 632

"C:\Users\gagin\Downloads\RSITx64.exe"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-722712101-1838267521-1311700174-1000Core.job - C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-722712101-1838267521-1311700174-1000UA.job - C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\微软设备健康助手自动更新.job - C:\Program Files (x86)\Microsoft Device Health\DhUpdate.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AsioReg"=REGSVR32.EXE /S CTASIO.DLL []
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-10-01 1794888]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-10-01 16174328]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-10-01 5595336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-30 144200]
"OneDrive"=C:\Users\gagin\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-30 405584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-09-04 55357464]
"aliim"=C:\Program Files (x86)\TradeManager\AliIM.exe [2015-09-07 594232]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AsioThk32Reg"=REGSVR32.EXE /S CTASIO.DLL []
"CTHelper"=CTHELPER.EXE []
"CTxfiHlp"=CTXFIHLP.EXE []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-10-02 09:35:11 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-01 20:22:20 ----D---- C:\Users\gagin\AppData\Roaming\ProductData
2015-10-01 20:17:56 ----D---- C:\AdwCleaner
2015-10-01 18:57:30 ----D---- C:\WINDOWS\SYSWOW64\cvirte
2015-10-01 18:57:30 ----D---- C:\Program Files (x86)\National Instruments
2015-10-01 18:57:30 ----D---- C:\Program Files (x86)\MTK_SN_Write_tool
2015-10-01 14:40:33 ----D---- C:\rsit
2015-10-01 14:40:33 ----D---- C:\Program Files\trend micro
2015-10-01 14:24:07 ----D---- C:\ProgramData\SP_MDT_Logs
2015-10-01 13:49:32 ----A---- C:\WINDOWS\ntbtlog.txt
2015-10-01 12:47:19 ----D---- C:\Program Files (x86)\Microsoft Device Health
2015-10-01 12:46:29 ----D---- C:\WINDOWS\SYSWOW64\itruscert
2015-10-01 11:02:42 ----D---- C:\Users\gagin\AppData\Roaming\Alibaba
2015-10-01 10:58:10 ----D---- C:\ProgramData\boost_interprocess
2015-10-01 10:56:52 ----D---- C:\ProgramData\alipay
2015-10-01 10:56:28 ----D---- C:\WINDOWS\SYSWOW64\aliedit
2015-10-01 10:56:28 ----D---- C:\Users\gagin\AppData\Roaming\TaobaoProtect
2015-10-01 10:56:28 ----D---- C:\Program Files (x86)\TaobaoProtect
2015-10-01 10:56:28 ----D---- C:\Program Files (x86)\Alibaba
2015-10-01 10:56:18 ----D---- C:\Program Files (x86)\alipay
2015-10-01 10:56:17 ----D---- C:\Program Files (x86)\TradeManager
2015-10-01 10:26:43 ----RD---- C:\Program Files (x86)\Skype
2015-10-01 10:22:32 ----D---- C:\Users\gagin\AppData\Roaming\WinRAR
2015-10-01 10:22:20 ----D---- C:\Program Files\WinRAR
2015-10-01 10:17:48 ----D---- C:\ProgramData\ESET
2015-10-01 10:17:48 ----D---- C:\Program Files\ESET
2015-10-01 09:59:28 ----D---- C:\Users\gagin\AppData\Roaming\Apple Computer
2015-10-01 09:59:27 ----D---- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-10-01 09:58:42 ----D---- C:\Users\gagin\AppData\Roaming\Opera Software
2015-10-01 09:57:52 ----A---- C:\WINDOWS\SYSWOW64\drivers\HWiNFO64A.SYS
2015-10-01 09:57:51 ----D---- C:\Program Files (x86)\Opera
2015-10-01 09:57:41 ----D---- C:\Program Files (x86)\IObit
2015-10-01 09:51:22 ----D---- C:\Program Files (x86)\Lenovo
2015-10-01 09:51:17 ----D---- C:\WINDOWS\Downloaded Installations
2015-10-01 09:49:21 ----D---- C:\Program Files (x86)\uTorrent
2015-10-01 09:48:37 ----D---- C:\Users\gagin\AppData\Roaming\uTorrent
2015-10-01 09:40:11 ----D---- C:\Users\gagin\AppData\Roaming\Macromedia
2015-10-01 09:35:27 ----D---- C:\Users\gagin\AppData\Roaming\Skype
2015-10-01 09:35:17 ----D---- C:\ProgramData\Skype
2015-10-01 09:32:32 ----D---- C:\Users\gagin\AppData\Roaming\IObit
2015-10-01 09:32:32 ----D---- C:\ProgramData\IObit
2015-10-01 09:30:24 ----D---- C:\Program Files (x86)\Microsoft Works
2015-10-01 09:29:56 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2015-10-01 09:29:37 ----D---- C:\WINDOWS\PCHEALTH
2015-10-01 09:28:00 ----D---- C:\Program Files\Microsoft Office
2015-10-01 09:27:17 ----D---- C:\Program Files (x86)\Microsoft Office
2015-10-01 09:27:16 ----D---- C:\ProgramData\Microsoft Help
2015-10-01 09:27:02 ----RHD---- C:\MSOCache
2015-10-01 07:53:37 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2015-10-01 07:51:44 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-10-01 07:51:41 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-10-01 07:51:38 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-10-01 07:51:38 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvdispgenco6434181.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvdispco6434181.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-10-01 07:51:34 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-10-01 07:51:34 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-10-01 07:51:33 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2015-10-01 07:51:33 ----A---- C:\WINDOWS\system32\nvapi64.dll
2015-10-01 07:50:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-01 07:50:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-01 07:49:59 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-01 07:49:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-10-01 07:49:58 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-10-01 07:49:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-10-01 07:49:53 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-10-01 07:49:52 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-01 07:49:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-01 07:49:47 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-10-01 07:49:47 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-01 07:49:46 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-10-01 07:49:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 07:49:45 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-01 07:49:44 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 07:49:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-10-01 07:49:41 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-01 07:49:40 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-10-01 07:49:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-10-01 07:49:38 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-01 07:49:38 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-01 07:49:37 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\mfps.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Speech.Pal.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 07:49:22 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\LocationPeIP.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\nlasvc.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\LocationPeCell.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-01 07:48:54 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-10-01 07:48:54 ----D---- C:\Program Files\Realtek
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2015-10-01 07:48:39 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-01 07:48:35 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\SYSWOW64\MBAPO32.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBWrp64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBppld64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBPPCn64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBAPO64.dll
2015-10-01 07:48:33 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-10-01 07:48:32 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-01 07:48:30 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-10-01 07:48:29 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-01 07:48:28 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2015-10-01 07:48:28 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2015-10-01 07:41:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-10-01 07:41:04 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-10-01 07:41:04 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-10-01 07:39:58 ----A---- C:\WINDOWS\system32\nvdispgenco6434174.dll
2015-10-01 07:39:58 ----A---- C:\WINDOWS\system32\nvdispco6434174.dll
2015-09-30 22:58:11 ----DC---- C:\WINDOWS\Panther
2015-09-30 22:55:04 ----D---- C:\Windows.old
2015-09-30 22:53:18 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-09-30 22:53:17 ----D---- C:\Program Files\Reference Assemblies
2015-09-30 22:53:17 ----D---- C:\Program Files\MSBuild
2015-09-30 22:53:17 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-09-30 22:53:17 ----D---- C:\Program Files (x86)\MSBuild
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-30 22:52:28 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-30 22:52:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-09-30 22:52:27 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-09-30 22:16:24 ----D---- C:\Users\gagin\AppData\Roaming\Adobe
2015-09-30 22:12:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-30 22:10:29 ----SHD---- C:\Recovery
2015-09-30 22:09:12 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-09-30 22:04:56 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-09-30 22:03:57 ----SD---- C:\Users\gagin\AppData\Roaming\Microsoft
2015-09-30 22:01:21 ----D---- C:\ProgramData\NVIDIA
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-09-30 22:00:50 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-30 22:00:37 ----D---- C:\Program Files\NVIDIA Corporation
2015-09-30 22:00:22 ----D---- C:\WINDOWS\SYSWOW64\data
2015-09-30 22:00:19 ----D---- C:\WINDOWS\system32\data
2015-09-30 21:59:32 ----D---- C:\WINDOWS\Prefetch
2015-09-30 21:58:54 ----ASH---- C:\swapfile.sys
2015-09-30 21:25:36 ----HD---- C:\$Windows.~BT
2015-09-30 21:20:01 ----D---- C:\ESD
2015-09-30 21:13:34 ----HD---- C:\$Windows.~WS
2015-09-30 16:21:57 ----D---- C:\WINDOWS\system32\SPReview
2015-09-30 16:21:48 ----D---- C:\WINDOWS\system32\EventProviders
2015-09-30 16:12:13 ----A---- C:\WINDOWS\SYSWOW64\pmcsnap.dll
2015-09-30 16:12:08 ----A---- C:\WINDOWS\SYSWOW64\PushPrinterConnections.exe
2015-09-30 16:12:08 ----A---- C:\WINDOWS\SYSWOW64\ppcsnap.dll
2015-09-30 16:11:56 ----A---- C:\WINDOWS\system32\PushPrinterConnections.exe
2015-09-30 16:11:12 ----A---- C:\WINDOWS\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-09-30 16:10:47 ----A---- C:\WINDOWS\SYSWOW64\printmanagement.msc
2015-09-30 03:19:06 ----A---- C:\WINDOWS\{00000005-00000000-00000000-00001102-00000004-10071102}.BAK
2015-09-29 22:14:59 ----D---- C:\WINDOWS\system32\MRT
2015-09-29 22:14:55 ----A---- C:\WINDOWS\system32\MRT.exe
2015-09-29 22:04:29 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-09-29 21:53:44 ----A---- C:\WINDOWS\system32\nvuninst.exe
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\cttele.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-09-29 21:47:19 ----D---- C:\Users\gagin\AppData\Roaming\Identities
2015-09-29 21:47:07 ----D---- C:\Users\gagin\AppData\Roaming\Media Center Programs
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Šablony
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Plocha
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Oblíbené položky
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Nabídka Start
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Dokumenty
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Data aplikací
2015-09-29 21:28:47 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-29 21:26:05 ----ASH---- C:\pagefile.sys
2015-09-29 21:26:04 ----SHD---- C:\System Volume Information
2015-09-29 21:26:04 ----ASH---- C:\hiberfil.sys
2015-09-10 07:44:58 ----D---- C:\ProgramData\Microsoft OneDrive
2015-09-10 07:44:25 ----D---- C:\Logs
2015-09-10 07:36:43 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-09-10 07:21:17 ----SHD---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2015-09-10 07:21:17 ----D---- C:\WINDOWS\ShellNew
2015-09-10 07:21:17 ----D---- C:\Program Files\Windows Journal
2015-09-10 07:09:22 ----D---- C:\WINDOWS\OCR
2015-09-10 07:09:15 ----D---- C:\WINDOWS\SKB
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\wmp.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\bcd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\stobject.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\shell32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\calc.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\explorer.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\winresume.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\winload.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\usocore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\twinui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\notepad.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\hal.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\efscore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\notepad.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wininit.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wer.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\tquery.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\InputService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ci.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfi005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfh005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfd005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfc005.dat
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\en
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\cs
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\0409
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\winrm
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\WCN
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\slmgr
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\en
2015-09-10 07:05:24 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-10 07:05:24 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\cs
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\0409
2015-09-10 07:05:22 ----D---- C:\WINDOWS\cs-CZ

======List of files/folders modified in the last 1 month======

2015-10-03 14:11:00 ----D---- C:\WINDOWS\system32\sru
2015-10-03 14:09:56 ----D---- C:\WINDOWS\Temp
2015-10-03 13:40:29 ----D---- C:\WINDOWS\System32
2015-10-03 08:19:05 ----SHD---- C:\WINDOWS\Installer
2015-10-03 08:18:09 ----HD---- C:\Program Files\WindowsApps
2015-10-03 08:17:11 ----D---- C:\WINDOWS\AppReadiness
2015-10-03 04:28:06 ----D---- C:\WINDOWS\SysWOW64
2015-10-03 04:26:50 ----D---- C:\Program Files (x86)\Common Files
2015-10-03 04:21:24 ----A---- C:\WINDOWS\win.ini
2015-10-03 04:20:40 ----D---- C:\WINDOWS\Microsoft.NET
2015-10-02 12:59:23 ----D---- C:\WINDOWS\system32\config
2015-10-02 12:30:11 ----RD---- C:\WINDOWS\assembly
2015-10-02 12:17:39 ----D---- C:\WINDOWS\WinSxS
2015-10-02 09:39:46 ----RSD---- C:\WINDOWS\Fonts
2015-10-01 20:25:14 ----D---- C:\WINDOWS\INF
2015-10-01 20:19:56 ----HD---- C:\ProgramData
2015-10-01 18:57:30 ----RD---- C:\Program Files (x86)
2015-10-01 16:38:16 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-01 15:06:38 ----D---- C:\Windows
2015-10-01 14:40:33 ----RD---- C:\Program Files
2015-10-01 13:57:24 ----D---- C:\WINDOWS\Tasks
2015-10-01 12:47:21 ----D---- C:\WINDOWS\system32\Tasks
2015-10-01 12:43:04 ----D---- C:\WINDOWS\LiveKernelReports
2015-10-01 10:19:12 ----D---- C:\WINDOWS\system32\drivers
2015-10-01 10:06:33 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-01 10:05:36 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-10-01 10:05:36 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-10-01 10:05:33 ----SD---- C:\WINDOWS\system32\F12
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\migration
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\appraiser
2015-10-01 10:05:32 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-01 10:05:28 ----D---- C:\WINDOWS\Provisioning
2015-10-01 10:05:27 ----D---- C:\WINDOWS\L2Schemas
2015-10-01 10:05:27 ----D---- C:\WINDOWS\AppPatch
2015-10-01 09:59:04 ----SHD---- C:\$Recycle.Bin
2015-10-01 09:57:52 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-10-01 09:29:37 ----SD---- C:\ProgramData\Microsoft
2015-10-01 09:29:37 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-10-01 09:28:54 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-01 09:26:46 ----D---- C:\WINDOWS\system32\restore
2015-10-01 08:36:33 ----D---- C:\WINDOWS\Logs
2015-10-01 07:56:04 ----D---- C:\WINDOWS\CbsTemp
2015-10-01 07:54:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-01 07:47:37 ----D---- C:\WINDOWS\system32\catroot2
2015-10-01 07:42:26 ----D---- C:\WINDOWS\appcompat
2015-10-01 07:41:11 ----D---- C:\WINDOWS\system32\WDI
2015-09-30 22:54:39 ----SD---- C:\WINDOWS\system32\Microsoft
2015-09-30 22:53:18 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-09-30 22:53:18 ----D---- C:\WINDOWS\system32\MUI
2015-09-30 22:12:23 ----D---- C:\WINDOWS\rescache
2015-09-30 22:10:30 ----D---- C:\Program Files\Windows NT
2015-09-30 22:10:07 ----D---- C:\WINDOWS\debug
2015-09-30 22:09:43 ----D---- C:\WINDOWS\Registration
2015-09-30 22:09:05 ----D---- C:\WINDOWS\system32\drivers\etc
2015-09-30 22:09:02 ----D---- C:\WINDOWS\system32\LogFiles
2015-09-30 22:09:01 ----RSD---- C:\WINDOWS\Media
2015-09-30 22:05:53 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-09-30 22:05:53 ----D---- C:\WINDOWS\system32\en-US
2015-09-30 22:05:53 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-09-30 22:05:16 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-09-30 22:05:16 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-09-30 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-30 22:05:12 ----D---- C:\WINDOWS\system32\NDF
2015-09-30 22:05:11 ----D---- C:\WINDOWS\system32\IME
2015-09-30 22:05:09 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-30 22:05:03 ----D---- C:\WINDOWS\schemas
2015-09-30 22:05:00 ----D---- C:\WINDOWS\ehome
2015-09-30 22:04:59 ----RD---- C:\Users
2015-09-30 22:04:57 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-09-30 22:04:57 ----D---- C:\Program Files (x86)\Windows Mail
2015-09-30 22:04:56 ----SHD---- C:\Program Files\Windows Sidebar
2015-09-30 22:04:56 ----D---- C:\Program Files\Windows Mail
2015-09-30 22:04:56 ----D---- C:\Program Files\DVD Maker
2015-09-30 22:04:56 ----D---- C:\Program Files\Common Files
2015-09-30 22:04:31 ----D---- C:\WINDOWS\system32\Recovery
2015-09-30 22:02:43 ----D---- C:\WINDOWS\system32\Sysprep
2015-09-30 22:01:16 ----D---- C:\WINDOWS\Help
2015-09-30 17:03:27 ----D---- C:\WINDOWS\SYSWOW64\manifeststore
2015-09-30 17:03:20 ----D---- C:\WINDOWS\system32\manifeststore
2015-09-29 21:26:38 ----D---- C:\WINDOWS\CSC
2015-09-15 05:31:34 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-09-10 07:42:43 ----D---- C:\WINDOWS\system32\wbem
2015-09-10 07:39:54 ----RD---- C:\WINDOWS\PrintDialog
2015-09-10 07:39:45 ----RD---- C:\WINDOWS\MiracastView
2015-09-10 07:39:39 ----RD---- C:\WINDOWS\DevicesFlow
2015-09-10 07:39:24 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\wbem
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-09-10 07:21:20 ----D---- C:\WINDOWS\system32\oobe
2015-09-10 07:21:19 ----D---- C:\WINDOWS\system32\Dism
2015-09-10 07:21:19 ----D---- C:\WINDOWS\system32\Boot
2015-09-10 07:21:18 ----D---- C:\WINDOWS\PolicyDefinitions
2015-09-10 07:21:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-09-10 07:21:18 ----D---- C:\Program Files\Internet Explorer
2015-09-10 07:21:18 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-10 07:21:17 ----D---- C:\WINDOWS\Web
2015-09-10 07:21:17 ----D---- C:\WINDOWS\SystemApps
2015-09-10 07:21:17 ----D---- C:\WINDOWS\security
2015-09-10 07:20:57 ----A---- C:\WINDOWS\SYSWOW64\scrptadm.dll
2015-09-10 07:20:57 ----A---- C:\WINDOWS\SYSWOW64\PeerDist.dll
2015-09-10 07:20:57 ----A---- C:\WINDOWS\system32\umrdp.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\auditpolmsg.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\AuditNativeSnapIn.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\SYSWOW64\InkAnalysis.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\system32\mblctr.exe
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\rsop.msc
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\gpedit.msc
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\cscui.dll
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\bdechangepin.exe
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\auditpolmsg.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\AuditPolicyGPInterop.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\AuditNativeSnapIn.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\system32\SensorsCpl.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\system32\RotMgr.dll
2015-09-10 07:20:52 ----A---- C:\WINDOWS\system32\hwrreg.exe
2015-09-10 07:20:52 ----A---- C:\WINDOWS\system32\hwrcomp.exe
2015-09-10 07:20:51 ----A---- C:\WINDOWS\SYSWOW64\gpscript.exe
2015-09-10 07:20:51 ----A---- C:\WINDOWS\SYSWOW64\gpscript.dll
2015-09-10 07:20:50 ----A---- C:\WINDOWS\SYSWOW64\SrpUxNativeSnapIn.dll
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tskill.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tscon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\rwinsta.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\reset.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qwinsta.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\quser.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\query.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qprocess.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qappsrv.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\msg.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\logoff.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chgusr.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chgport.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chglogon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\change.exe
2015-09-10 07:20:49 ----A---- C:\WINDOWS\SYSWOW64\SensorsCpl.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\SYSWOW64\rdpendp.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\srmlib.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\baaupdate.exe
2015-09-10 07:20:46 ----A---- C:\WINDOWS\system32\PrintBrmUi.exe
2015-09-10 07:20:46 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2015-09-10 07:20:45 ----A---- C:\WINDOWS\system32\SensorsClassExtension.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddputils.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddptrace.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddp_ps.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2015-09-10 07:20:43 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\fvewiz.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\fvecpl.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\BitLockerWizardElev.exe
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\BitLockerWizard.exe
2015-09-10 07:20:38 ----A---- C:\WINDOWS\system32\rdpclip.exe
2015-09-10 07:20:38 ----A---- C:\WINDOWS\system32\BdeSysprep.dll
2015-09-10 07:20:37 ----A---- C:\WINDOWS\SYSWOW64\AppIdPolicyEngineApi.dll
2015-09-10 07:20:32 ----A---- C:\WINDOWS\SYSWOW64\rfxvmt.dll
2015-09-10 07:20:30 ----A---- C:\WINDOWS\system32\PresentationSettings.exe
2015-09-10 07:20:30 ----A---- C:\WINDOWS\system32\appmgr.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmtrace.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmstormod.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmshell.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmscan.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmclient.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srm_ps.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srm.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\scrptadm.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\adrclient.dll
2015-09-10 07:20:28 ----A---- C:\WINDOWS\system32\secpol.msc
2015-09-10 07:20:28 ----A---- C:\WINDOWS\system32\ddpchunk.dll
2015-09-10 07:20:26 ----A---- C:\WINDOWS\system32\rdpinput.exe
2015-09-10 07:20:25 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\SensorPerformanceEvents.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\rdpudd.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\PeerDistSh.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\PeerDistCacheProvider.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\appmgmts.dll
2015-09-10 07:20:24 ----A---- C:\WINDOWS\system32\gpscript.exe
2015-09-10 07:20:24 ----A---- C:\WINDOWS\system32\gpscript.dll
2015-09-10 07:20:23 ----A---- C:\WINDOWS\system32\dfdts.dll
2015-09-10 07:20:21 ----A---- C:\WINDOWS\SYSWOW64\rsop.msc
2015-09-10 07:20:21 ----A---- C:\WINDOWS\SYSWOW64\gpedit.msc
2015-09-10 07:20:19 ----A---- C:\WINDOWS\SYSWOW64\PeerDistSh.dll
2015-09-10 07:20:19 ----A---- C:\WINDOWS\SYSWOW64\appmgmts.dll
2015-09-10 07:20:19 ----A---- C:\WINDOWS\system32\rdpendp.dll
2015-09-10 07:20:18 ----A---- C:\WINDOWS\system32\StikyNot.exe
2015-09-10 07:20:18 ----A---- C:\WINDOWS\system32\SNTSearch.dll
2015-09-10 07:20:17 ----A---- C:\WINDOWS\SYSWOW64\srmlib.dll
2015-09-10 07:20:11 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\printmanagement.msc
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\ppcsnap.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\pmcsnap.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\cscobj.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2015-09-10 07:20:02 ----A---- C:\WINDOWS\SYSWOW64\cscobj.dll
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\fveprompt.exe
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\cscsvc.dll
2015-09-10 07:20:01 ----A---- C:\WINDOWS\system32\SnippingTool.exe
2015-09-10 07:20:01 ----A---- C:\WINDOWS\system32\CscMig.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\InkAnalysis.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\inetppui.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\inetpp.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\SYSWOW64\appmgr.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\embeddedapplauncher.exe
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\DFDWiz.exe
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmtrace.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmstormod.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmshell.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmscan.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmclient.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srm_ps.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srm.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\adrclient.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistSvc.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistHttpTrans.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistCleaner.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistAD.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDist.dll
2015-09-10 07:09:15 ----A---- C:\WINDOWS\system32\prm0005.dll
2015-09-10 07:08:36 ----A---- C:\WINDOWS\system32\jnwmon.dll
2015-09-10 07:05:26 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-09-10 07:05:25 ----SD---- C:\WINDOWS\system32\dsc
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\Com
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\migwiz
2015-09-10 07:05:24 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\Com
2015-09-10 07:05:22 ----D---- C:\WINDOWS\servicing
2015-09-10 07:05:22 ----D---- C:\WINDOWS\IME
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Photo Viewer
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Media Player
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Defender
2015-09-10 07:05:22 ----D---- C:\Program Files\Common Files\System
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Defender

Re: prosim pc je pomalé

Napsal: 03 říj 2015 13:17
od dart500
pokračování zde děkuji

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2014-10-10 241368]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2014-10-10 243440]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2014-10-10 169280]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2015-10-01 26528]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2014-10-10 158968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 COMMONFX.DLL;COMMONFX.DLL; C:\WINDOWS\System32\COMMONFX.DLL [2007-04-12 151296]
R3 ctaud2k;@oem2.inf,%CTAUD2K.SvcDesc%;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2007-04-10 863016]
R3 CTAUDFX.DLL;CTAUDFX.DLL; C:\WINDOWS\System32\CTAUDFX.DLL [2007-04-10 700200]
R3 ctprxy2k;@oem2.inf,%CTPRXY2K.SvcDesc%;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys [2007-04-10 17192]
R3 CTSBLFX.DLL;CTSBLFX.DLL; C:\WINDOWS\System32\CTSBLFX.DLL [2007-04-10 681256]
R3 ctsfm2k;@oem2.inf,%CTSFM2K.SvcDesc%;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\drivers\ctsfm2k.sys [2007-04-10 290600]
R3 emupia;@oem2.inf,%EMUPIA.SvcDesc%;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys [2007-04-10 147752]
R3 ha10kx2k;@oem2.inf,%HA10KX.SvcDesc%;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2007-04-10 1359144]
R3 hap16v2k;@oem2.inf,%HAP16V2K.SvcDesc%;Creative P16V HAL Driver; C:\WINDOWS\system32\drivers\hap16v2k.sys [2007-04-10 259880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-10-01 4585728]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-10-01 12905144]
R3 ossrv;@oem2.inf,%OSSRV.SvcDesc%;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2007-04-10 218408]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-18 587264]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 CT20XUT.DLL;CT20XUT.DLL; C:\WINDOWS\System32\CT20XUT.DLL [2007-04-10 252712]
S3 ctac32k;@oem2.inf,%CTAC32K.SvcDesc%;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys [2007-04-10 580904]
S3 CTEAPSFX.DLL;CTEAPSFX.DLL; C:\WINDOWS\System32\CTEAPSFX.DLL [2007-04-10 219432]
S3 CTEDSPFX.DLL;CTEDSPFX.DLL; C:\WINDOWS\System32\CTEDSPFX.DLL [2007-04-10 321832]
S3 CTEDSPIO.DLL;CTEDSPIO.DLL; C:\WINDOWS\System32\CTEDSPIO.DLL [2007-04-10 190248]
S3 CTEDSPSY.DLL;CTEDSPSY.DLL; C:\WINDOWS\System32\CTEDSPSY.DLL [2007-04-10 363304]
S3 CTERFXFX.DLL;CTERFXFX.DLL; C:\WINDOWS\System32\CTERFXFX.DLL [2007-04-10 142120]
S3 CTEXFIFX.DLL;CTEXFIFX.DLL; C:\WINDOWS\System32\CTEXFIFX.DLL [2007-04-10 1571112]
S3 CTHWIUT.DLL;CTHWIUT.DLL; C:\WINDOWS\System32\CTHWIUT.DLL [2007-04-10 123688]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hap17v2k;@oem2.inf,%HAP17V2K.SvcDesc%;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys [2007-04-10 295208]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-09-10 934752]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Sériový ovladač USB od společnosti Microsoft; C:\WINDOWS\System32\drivers\usbser.sys [2015-09-10 67072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DeviceHealth;Microsoft Device Health Machine Service; C:\Program Files (x86)\Microsoft Device Health\DhMachineSvc.exe [2014-06-06 85664]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2014-10-01 1349576]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-29 2909472]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-08-18 933168]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 pcas;Alipay payment client security service; C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe [2015-03-23 592856]
R2 secbizsrv;Alipay security business service; C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe [2015-03-23 594904]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-08-17 409776]
R2 TBSecSvc;TBSecSvc; C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe [2015-09-08 227112]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc_Session1;Přístup k uživatelským datům_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]

-----------------EOF-----------------

Re: prosim pc je pomalé

Napsal: 03 říj 2015 15:54
od Rudy
Více, než půl roku vám rychlost nevadila? :D No, nic, spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: prosim pc je pomalé

Napsal: 04 říj 2015 18:36
od dart500
Děkuji za info , půl roku ? měl jsem jiný systém a nějak jsem to nebystřil tady , mě pomaleji načítá prohlížeč atd .

zde log :

# AdwCleaner v5.010 - Logfile created 04/10/2015 at 19:33:31
# Updated 04/10/2015 by Xplode
# Database : 2015-10-04.3 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : gagin - GAGIN-PC
# Running from : C:\Users\gagin\Desktop\adwcleaner_5.010.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\Users\gagin\AppData\Roaming\productdata

***** [ Files ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [670 bytes] ##########

Re: prosim pc je pomalé

Napsal: 04 říj 2015 20:30
od Rudy
Dejte nový log RSIT.

Re: prosim pc je pomalé

Napsal: 05 říj 2015 09:10
od dart500
Dobrý den nezlobte se v případě mého dotazu , ale zdá se mě že jedeme po třetí dokola stejné úkony . Je to možné nebo to tak má být ?
děkuji a nezlobte se v případě špatného dotazu . zde je log :


Logfile of random's system information tool 1.10 (written by random/random)
Run by gagin at 2015-10-05 10:07:21
Microsoft Windows 10 Pro
System drive C: has 22 GB (14%) free of 155 GB
Total RAM: 4094 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:07:25, on 5.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\aliwssv.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TradeManager\AliIM.exe
C:\Windows\SysWOW64\CtHelper.exe
C:\Program Files (x86)\TradeManager\AliApp.exe
C:\Program Files (x86)\TradeManager\AliApp.exe
C:\Users\gagin\AppData\Roaming\TaobaoProtect\TaobaoProtect.exe
C:\ProgramData\alipay\Alipaybsm.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\gagin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKCU\..\Run: [Google Update] "C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\gagin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [aliim] "C:\Program Files (x86)\TradeManager\AliIM.exe" /autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.alipay.com
O15 - Trusted Zone: http://*.alisoft.com
O15 - Trusted Zone: http://*.taobao.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Alipay payment client security service (pcas) - Alipay.com Inc. - C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Alipay security business service (secbizsrv) - Alipay.com Inc. - C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TBSecSvc - Alibaba (China) Co., LTD. All rights reserved. - C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: wwbizsrv - Alibaba Group - C:\Program Files (x86)\Alibaba\wwbizsrv\wwbizsrv.exe

--
End of file - 8280 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Microsoft Device Health\PluginManager\DhPluginMgr.exe"
"C:\Program Files (x86)\Microsoft Device Health\DhMachineSvc.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe"
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe"
"C:\Program Files (x86)\Alibaba\wwbizsrv\wwbizsrv.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding


C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\aliwssv.exe" /W
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\TradeManager\AliIM.exe" /autorun
"C:\Windows\System32\CtHelper.exe"
"C:\Program Files (x86)\TradeManager\AliApp.exe" --type=renderer --aef-process-id=tmclient --dump-version=1.00.01E --disable-gpu --no-sandbox --lang=en-US --disable-webgl --disable-pepper-3d --disable-accelerated-compositing --channel="4348.0.736051630\1193489118" /prefetch:673131151
"C:\Program Files (x86)\TradeManager\AliApp.exe" --type=renderer --aef-process-id=tmplugin --dump-version=1.00.01E --disable-gpu --no-sandbox --lang=en-US --disable-webgl --disable-pepper-3d --disable-accelerated-compositing --channel="4348.1.1244051728\2024896691" /prefetch:673131151
C:\Users\gagin\AppData\Roaming\TaobaoProtect\TaobaoProtect.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\ProgramData\alipay\Alipaybsm.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5360.0.415836566\1389630141" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x0193 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4181 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.1.2064531903\852185088" --font-cache-shared-handle=2096 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.4.1429967227\282971208" --font-cache-shared-handle=4896 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5360.5.1477155536\628262769" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.7.1743927379\875697151" --font-cache-shared-handle=6016 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.10.1771564578\1355491371" --font-cache-shared-handle=3004 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.13.836297490\461916213" --font-cache-shared-handle=3972 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.15.219848739\230682524" --font-cache-shared-handle=4184 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.16.1560750793\2084207641" --font-cache-shared-handle=8112 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.18.1459483219\845730295" --font-cache-shared-handle=3096 /prefetch:673131151

"C:\Users\gagin\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-722712101-1838267521-1311700174-1000Core.job - C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-722712101-1838267521-1311700174-1000UA.job - C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\微软设备健康助手开机检测.job - C:\Program Files (x86)\Microsoft Device Health\DhUpdate.exe /EnableDH
C:\WINDOWS\tasks\微软设备健康助手自动更新.job - C:\Program Files (x86)\Microsoft Device Health\DhUpdate.exe
C:\WINDOWS\tasks\微软设备健康助手设备检查.job - C:\Program Files (x86)\Microsoft Device Health\PluginManager\DhPluginMgrScheduler.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AsioReg"=REGSVR32.EXE /S CTASIO.DLL []
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-10-01 1794888]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-10-01 16174328]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-10-01 5595336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-30 144200]
"OneDrive"=C:\Users\gagin\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-30 405584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-09-04 55357464]
"aliim"=C:\Program Files (x86)\TradeManager\AliIM.exe [2015-09-07 594232]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AsioThk32Reg"=REGSVR32.EXE /S CTASIO.DLL []
"CTHelper"=CTHELPER.EXE []
"CTxfiHlp"=CTXFIHLP.EXE []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-10-05 08:55:00 ----D---- C:\ProgramData\DeviceHealth
2015-10-04 19:35:52 ----D---- C:\Users\gagin\AppData\Roaming\ProductData
2015-10-02 09:35:11 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-01 20:17:56 ----D---- C:\AdwCleaner
2015-10-01 18:57:30 ----D---- C:\WINDOWS\SYSWOW64\cvirte
2015-10-01 18:57:30 ----D---- C:\Program Files (x86)\National Instruments
2015-10-01 18:57:30 ----D---- C:\Program Files (x86)\MTK_SN_Write_tool
2015-10-01 14:40:33 ----D---- C:\rsit
2015-10-01 14:40:33 ----D---- C:\Program Files\trend micro
2015-10-01 14:24:07 ----D---- C:\ProgramData\SP_MDT_Logs
2015-10-01 13:49:32 ----A---- C:\WINDOWS\ntbtlog.txt
2015-10-01 12:47:19 ----D---- C:\Program Files (x86)\Microsoft Device Health
2015-10-01 12:46:29 ----D---- C:\WINDOWS\SYSWOW64\itruscert
2015-10-01 11:02:42 ----D---- C:\Users\gagin\AppData\Roaming\Alibaba
2015-10-01 10:58:10 ----D---- C:\ProgramData\boost_interprocess
2015-10-01 10:56:52 ----D---- C:\ProgramData\alipay
2015-10-01 10:56:28 ----D---- C:\WINDOWS\SYSWOW64\aliedit
2015-10-01 10:56:28 ----D---- C:\Users\gagin\AppData\Roaming\TaobaoProtect
2015-10-01 10:56:28 ----D---- C:\Program Files (x86)\TaobaoProtect
2015-10-01 10:56:28 ----D---- C:\Program Files (x86)\Alibaba
2015-10-01 10:56:18 ----D---- C:\Program Files (x86)\alipay
2015-10-01 10:56:17 ----D---- C:\Program Files (x86)\TradeManager
2015-10-01 10:26:43 ----RD---- C:\Program Files (x86)\Skype
2015-10-01 10:22:32 ----D---- C:\Users\gagin\AppData\Roaming\WinRAR
2015-10-01 10:22:20 ----D---- C:\Program Files\WinRAR
2015-10-01 10:17:48 ----D---- C:\ProgramData\ESET
2015-10-01 10:17:48 ----D---- C:\Program Files\ESET
2015-10-01 09:59:28 ----D---- C:\Users\gagin\AppData\Roaming\Apple Computer
2015-10-01 09:59:27 ----D---- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-10-01 09:58:42 ----D---- C:\Users\gagin\AppData\Roaming\Opera Software
2015-10-01 09:57:52 ----A---- C:\WINDOWS\SYSWOW64\drivers\HWiNFO64A.SYS
2015-10-01 09:57:51 ----D---- C:\Program Files (x86)\Opera
2015-10-01 09:57:41 ----D---- C:\Program Files (x86)\IObit
2015-10-01 09:51:22 ----D---- C:\Program Files (x86)\Lenovo
2015-10-01 09:51:17 ----D---- C:\WINDOWS\Downloaded Installations
2015-10-01 09:49:21 ----D---- C:\Program Files (x86)\uTorrent
2015-10-01 09:48:37 ----D---- C:\Users\gagin\AppData\Roaming\uTorrent
2015-10-01 09:40:11 ----D---- C:\Users\gagin\AppData\Roaming\Macromedia
2015-10-01 09:35:27 ----D---- C:\Users\gagin\AppData\Roaming\Skype
2015-10-01 09:35:17 ----D---- C:\ProgramData\Skype
2015-10-01 09:32:32 ----D---- C:\Users\gagin\AppData\Roaming\IObit
2015-10-01 09:32:32 ----D---- C:\ProgramData\IObit
2015-10-01 09:30:24 ----D---- C:\Program Files (x86)\Microsoft Works
2015-10-01 09:29:56 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2015-10-01 09:29:37 ----D---- C:\WINDOWS\PCHEALTH
2015-10-01 09:28:00 ----D---- C:\Program Files\Microsoft Office
2015-10-01 09:27:17 ----D---- C:\Program Files (x86)\Microsoft Office
2015-10-01 09:27:16 ----D---- C:\ProgramData\Microsoft Help
2015-10-01 09:27:02 ----RHD---- C:\MSOCache
2015-10-01 07:53:37 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2015-10-01 07:51:44 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-10-01 07:51:41 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-10-01 07:51:38 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-10-01 07:51:38 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvdispgenco6434181.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvdispco6434181.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-10-01 07:51:34 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-10-01 07:51:34 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-10-01 07:51:33 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2015-10-01 07:51:33 ----A---- C:\WINDOWS\system32\nvapi64.dll
2015-10-01 07:50:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-01 07:50:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-01 07:49:59 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-01 07:49:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-10-01 07:49:58 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-10-01 07:49:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-10-01 07:49:53 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-10-01 07:49:52 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-01 07:49:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-01 07:49:47 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-10-01 07:49:47 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-01 07:49:46 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-10-01 07:49:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 07:49:45 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-01 07:49:44 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 07:49:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-10-01 07:49:41 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-01 07:49:40 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-10-01 07:49:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-10-01 07:49:38 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-01 07:49:38 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-01 07:49:37 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\mfps.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Speech.Pal.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 07:49:22 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\LocationPeIP.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\nlasvc.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\LocationPeCell.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-01 07:48:54 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-10-01 07:48:54 ----D---- C:\Program Files\Realtek
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2015-10-01 07:48:39 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-01 07:48:35 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\SYSWOW64\MBAPO32.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBWrp64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBppld64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBPPCn64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBAPO64.dll
2015-10-01 07:48:33 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-10-01 07:48:32 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-01 07:48:30 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-10-01 07:48:29 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-01 07:48:28 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2015-10-01 07:48:28 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2015-10-01 07:41:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-10-01 07:41:04 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-10-01 07:41:04 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-10-01 07:39:58 ----A---- C:\WINDOWS\system32\nvdispgenco6434174.dll
2015-10-01 07:39:58 ----A---- C:\WINDOWS\system32\nvdispco6434174.dll
2015-09-30 22:58:11 ----DC---- C:\WINDOWS\Panther
2015-09-30 22:55:04 ----D---- C:\Windows.old
2015-09-30 22:53:18 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-09-30 22:53:17 ----D---- C:\Program Files\Reference Assemblies
2015-09-30 22:53:17 ----D---- C:\Program Files\MSBuild
2015-09-30 22:53:17 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-09-30 22:53:17 ----D---- C:\Program Files (x86)\MSBuild
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-30 22:52:28 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-30 22:52:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-09-30 22:52:27 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-09-30 22:16:24 ----D---- C:\Users\gagin\AppData\Roaming\Adobe
2015-09-30 22:12:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-30 22:10:29 ----SHD---- C:\Recovery
2015-09-30 22:09:12 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-09-30 22:04:56 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-09-30 22:03:57 ----SD---- C:\Users\gagin\AppData\Roaming\Microsoft
2015-09-30 22:01:21 ----D---- C:\ProgramData\NVIDIA
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-09-30 22:00:50 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-30 22:00:37 ----D---- C:\Program Files\NVIDIA Corporation
2015-09-30 22:00:22 ----D---- C:\WINDOWS\SYSWOW64\data
2015-09-30 22:00:19 ----D---- C:\WINDOWS\system32\data
2015-09-30 21:59:32 ----D---- C:\WINDOWS\Prefetch
2015-09-30 21:58:54 ----ASH---- C:\swapfile.sys
2015-09-30 21:25:36 ----HD---- C:\$Windows.~BT
2015-09-30 21:20:01 ----D---- C:\ESD
2015-09-30 21:13:34 ----HD---- C:\$Windows.~WS
2015-09-30 16:21:57 ----D---- C:\WINDOWS\system32\SPReview
2015-09-30 16:21:48 ----D---- C:\WINDOWS\system32\EventProviders
2015-09-30 16:12:13 ----A---- C:\WINDOWS\SYSWOW64\pmcsnap.dll
2015-09-30 16:12:08 ----A---- C:\WINDOWS\SYSWOW64\PushPrinterConnections.exe
2015-09-30 16:12:08 ----A---- C:\WINDOWS\SYSWOW64\ppcsnap.dll
2015-09-30 16:11:56 ----A---- C:\WINDOWS\system32\PushPrinterConnections.exe
2015-09-30 16:11:12 ----A---- C:\WINDOWS\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-09-30 16:10:47 ----A---- C:\WINDOWS\SYSWOW64\printmanagement.msc
2015-09-30 03:19:06 ----A---- C:\WINDOWS\{00000005-00000000-00000000-00001102-00000004-10071102}.BAK
2015-09-29 22:14:59 ----D---- C:\WINDOWS\system32\MRT
2015-09-29 22:14:55 ----A---- C:\WINDOWS\system32\MRT.exe
2015-09-29 22:04:29 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-09-29 21:53:44 ----A---- C:\WINDOWS\system32\nvuninst.exe
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\cttele.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-09-29 21:47:19 ----D---- C:\Users\gagin\AppData\Roaming\Identities
2015-09-29 21:47:07 ----D---- C:\Users\gagin\AppData\Roaming\Media Center Programs
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Šablony
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Plocha
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Oblíbené položky
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Nabídka Start
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Dokumenty
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Data aplikací
2015-09-29 21:28:47 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-29 21:26:05 ----ASH---- C:\pagefile.sys
2015-09-29 21:26:04 ----SHD---- C:\System Volume Information
2015-09-29 21:26:04 ----ASH---- C:\hiberfil.sys
2015-09-10 07:44:58 ----D---- C:\ProgramData\Microsoft OneDrive
2015-09-10 07:44:25 ----D---- C:\Logs
2015-09-10 07:36:43 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-09-10 07:21:17 ----SHD---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2015-09-10 07:21:17 ----D---- C:\WINDOWS\ShellNew
2015-09-10 07:21:17 ----D---- C:\Program Files\Windows Journal
2015-09-10 07:09:22 ----D---- C:\WINDOWS\OCR
2015-09-10 07:09:15 ----D---- C:\WINDOWS\SKB
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\wmp.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\bcd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\stobject.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\shell32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\calc.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\explorer.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\winresume.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\winload.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\usocore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\twinui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\notepad.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\hal.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\efscore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\notepad.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wininit.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wer.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\tquery.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\InputService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ci.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfi005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfh005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfd005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfc005.dat
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\en
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\cs
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\0409
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\winrm
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\WCN
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\slmgr
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\en
2015-09-10 07:05:24 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-10 07:05:24 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\cs
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\0409
2015-09-10 07:05:22 ----D---- C:\WINDOWS\cs-CZ

======List of files/folders modified in the last 1 month======

2015-10-05 10:07:07 ----D---- C:\WINDOWS\Temp
2015-10-05 09:51:00 ----D---- C:\WINDOWS\system32\sru
2015-10-05 09:48:18 ----D---- C:\WINDOWS\System32
2015-10-05 09:01:24 ----D---- C:\WINDOWS\Microsoft.NET
2015-10-05 08:55:00 ----HD---- C:\ProgramData
2015-10-04 20:57:31 ----D---- C:\WINDOWS\INF
2015-10-04 12:51:11 ----SHD---- C:\WINDOWS\Installer
2015-10-04 12:51:08 ----D---- C:\WINDOWS\Tasks
2015-10-04 12:51:08 ----D---- C:\WINDOWS\system32\Tasks
2015-10-04 12:30:30 ----D---- C:\WINDOWS\Logs
2015-10-04 12:28:40 ----D---- C:\WINDOWS\rescache
2015-10-04 12:14:00 ----D---- C:\WINDOWS\AppReadiness
2015-10-03 08:18:09 ----HD---- C:\Program Files\WindowsApps
2015-10-03 04:28:06 ----D---- C:\WINDOWS\SysWOW64
2015-10-03 04:26:50 ----D---- C:\Program Files (x86)\Common Files
2015-10-03 04:21:24 ----A---- C:\WINDOWS\win.ini
2015-10-02 12:59:23 ----D---- C:\WINDOWS\system32\config
2015-10-02 12:30:11 ----RD---- C:\WINDOWS\assembly
2015-10-02 12:17:39 ----D---- C:\WINDOWS\WinSxS
2015-10-02 09:39:46 ----RSD---- C:\WINDOWS\Fonts
2015-10-01 18:57:30 ----RD---- C:\Program Files (x86)
2015-10-01 16:38:16 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-01 15:06:38 ----D---- C:\Windows
2015-10-01 14:40:33 ----RD---- C:\Program Files
2015-10-01 12:43:04 ----D---- C:\WINDOWS\LiveKernelReports
2015-10-01 10:19:12 ----D---- C:\WINDOWS\system32\drivers
2015-10-01 10:06:33 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-01 10:05:36 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-10-01 10:05:36 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-10-01 10:05:33 ----SD---- C:\WINDOWS\system32\F12
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\migration
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\appraiser
2015-10-01 10:05:32 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-01 10:05:28 ----D---- C:\WINDOWS\Provisioning
2015-10-01 10:05:27 ----D---- C:\WINDOWS\L2Schemas
2015-10-01 10:05:27 ----D---- C:\WINDOWS\AppPatch
2015-10-01 09:59:04 ----SHD---- C:\$Recycle.Bin
2015-10-01 09:57:52 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-10-01 09:29:37 ----SD---- C:\ProgramData\Microsoft
2015-10-01 09:29:37 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-10-01 09:28:54 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-01 09:26:46 ----D---- C:\WINDOWS\system32\restore
2015-10-01 07:56:04 ----D---- C:\WINDOWS\CbsTemp
2015-10-01 07:54:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-01 07:47:37 ----D---- C:\WINDOWS\system32\catroot2
2015-10-01 07:42:26 ----D---- C:\WINDOWS\appcompat
2015-10-01 07:41:11 ----D---- C:\WINDOWS\system32\WDI
2015-09-30 22:54:39 ----SD---- C:\WINDOWS\system32\Microsoft
2015-09-30 22:53:18 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-09-30 22:53:18 ----D---- C:\WINDOWS\system32\MUI
2015-09-30 22:10:30 ----D---- C:\Program Files\Windows NT
2015-09-30 22:10:07 ----D---- C:\WINDOWS\debug
2015-09-30 22:09:43 ----D---- C:\WINDOWS\Registration
2015-09-30 22:09:05 ----D---- C:\WINDOWS\system32\drivers\etc
2015-09-30 22:09:02 ----D---- C:\WINDOWS\system32\LogFiles
2015-09-30 22:09:01 ----RSD---- C:\WINDOWS\Media
2015-09-30 22:05:53 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-09-30 22:05:53 ----D---- C:\WINDOWS\system32\en-US
2015-09-30 22:05:53 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-09-30 22:05:16 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-09-30 22:05:16 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-09-30 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-30 22:05:12 ----D---- C:\WINDOWS\system32\NDF
2015-09-30 22:05:11 ----D---- C:\WINDOWS\system32\IME
2015-09-30 22:05:09 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-30 22:05:03 ----D---- C:\WINDOWS\schemas
2015-09-30 22:05:00 ----D---- C:\WINDOWS\ehome
2015-09-30 22:04:59 ----RD---- C:\Users
2015-09-30 22:04:57 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-09-30 22:04:57 ----D---- C:\Program Files (x86)\Windows Mail
2015-09-30 22:04:56 ----SHD---- C:\Program Files\Windows Sidebar
2015-09-30 22:04:56 ----D---- C:\Program Files\Windows Mail
2015-09-30 22:04:56 ----D---- C:\Program Files\DVD Maker
2015-09-30 22:04:56 ----D---- C:\Program Files\Common Files
2015-09-30 22:04:31 ----D---- C:\WINDOWS\system32\Recovery
2015-09-30 22:02:43 ----D---- C:\WINDOWS\system32\Sysprep
2015-09-30 22:01:16 ----D---- C:\WINDOWS\Help
2015-09-30 17:03:27 ----D---- C:\WINDOWS\SYSWOW64\manifeststore
2015-09-30 17:03:20 ----D---- C:\WINDOWS\system32\manifeststore
2015-09-29 21:26:38 ----D---- C:\WINDOWS\CSC
2015-09-15 05:31:34 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-09-10 07:42:43 ----D---- C:\WINDOWS\system32\wbem
2015-09-10 07:39:54 ----RD---- C:\WINDOWS\PrintDialog
2015-09-10 07:39:45 ----RD---- C:\WINDOWS\MiracastView
2015-09-10 07:39:39 ----RD---- C:\WINDOWS\DevicesFlow
2015-09-10 07:39:24 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\wbem
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-09-10 07:21:20 ----D---- C:\WINDOWS\system32\oobe
2015-09-10 07:21:19 ----D---- C:\WINDOWS\system32\Dism
2015-09-10 07:21:19 ----D---- C:\WINDOWS\system32\Boot
2015-09-10 07:21:18 ----D---- C:\WINDOWS\PolicyDefinitions
2015-09-10 07:21:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-09-10 07:21:18 ----D---- C:\Program Files\Internet Explorer
2015-09-10 07:21:18 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-10 07:21:17 ----D---- C:\WINDOWS\Web
2015-09-10 07:21:17 ----D---- C:\WINDOWS\SystemApps
2015-09-10 07:21:17 ----D---- C:\WINDOWS\security
2015-09-10 07:20:57 ----A---- C:\WINDOWS\SYSWOW64\scrptadm.dll
2015-09-10 07:20:57 ----A---- C:\WINDOWS\SYSWOW64\PeerDist.dll
2015-09-10 07:20:57 ----A---- C:\WINDOWS\system32\umrdp.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\auditpolmsg.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\AuditNativeSnapIn.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\SYSWOW64\InkAnalysis.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\system32\mblctr.exe
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\rsop.msc
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\gpedit.msc
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\cscui.dll
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\bdechangepin.exe
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\auditpolmsg.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\AuditPolicyGPInterop.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\AuditNativeSnapIn.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\system32\SensorsCpl.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\system32\RotMgr.dll
2015-09-10 07:20:52 ----A---- C:\WINDOWS\system32\hwrreg.exe
2015-09-10 07:20:52 ----A---- C:\WINDOWS\system32\hwrcomp.exe
2015-09-10 07:20:51 ----A---- C:\WINDOWS\SYSWOW64\gpscript.exe
2015-09-10 07:20:51 ----A---- C:\WINDOWS\SYSWOW64\gpscript.dll
2015-09-10 07:20:50 ----A---- C:\WINDOWS\SYSWOW64\SrpUxNativeSnapIn.dll
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tskill.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tscon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\rwinsta.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\reset.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qwinsta.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\quser.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\query.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qprocess.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qappsrv.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\msg.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\logoff.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chgusr.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chgport.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chglogon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\change.exe
2015-09-10 07:20:49 ----A---- C:\WINDOWS\SYSWOW64\SensorsCpl.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\SYSWOW64\rdpendp.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\srmlib.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\baaupdate.exe
2015-09-10 07:20:46 ----A---- C:\WINDOWS\system32\PrintBrmUi.exe
2015-09-10 07:20:46 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2015-09-10 07:20:45 ----A---- C:\WINDOWS\system32\SensorsClassExtension.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddputils.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddptrace.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddp_ps.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2015-09-10 07:20:43 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\fvewiz.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\fvecpl.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\BitLockerWizardElev.exe
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\BitLockerWizard.exe
2015-09-10 07:20:38 ----A---- C:\WINDOWS\system32\rdpclip.exe
2015-09-10 07:20:38 ----A---- C:\WINDOWS\system32\BdeSysprep.dll
2015-09-10 07:20:37 ----A---- C:\WINDOWS\SYSWOW64\AppIdPolicyEngineApi.dll
2015-09-10 07:20:32 ----A---- C:\WINDOWS\SYSWOW64\rfxvmt.dll
2015-09-10 07:20:30 ----A---- C:\WINDOWS\system32\PresentationSettings.exe
2015-09-10 07:20:30 ----A---- C:\WINDOWS\system32\appmgr.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmtrace.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmstormod.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmshell.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmscan.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmclient.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srm_ps.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srm.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\scrptadm.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\adrclient.dll
2015-09-10 07:20:28 ----A---- C:\WINDOWS\system32\secpol.msc
2015-09-10 07:20:28 ----A---- C:\WINDOWS\system32\ddpchunk.dll
2015-09-10 07:20:26 ----A---- C:\WINDOWS\system32\rdpinput.exe
2015-09-10 07:20:25 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\SensorPerformanceEvents.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\rdpudd.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\PeerDistSh.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\PeerDistCacheProvider.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\appmgmts.dll
2015-09-10 07:20:24 ----A---- C:\WINDOWS\system32\gpscript.exe
2015-09-10 07:20:24 ----A---- C:\WINDOWS\system32\gpscript.dll
2015-09-10 07:20:23 ----A---- C:\WINDOWS\system32\dfdts.dll
2015-09-10 07:20:21 ----A---- C:\WINDOWS\SYSWOW64\rsop.msc
2015-09-10 07:20:21 ----A---- C:\WINDOWS\SYSWOW64\gpedit.msc
2015-09-10 07:20:19 ----A---- C:\WINDOWS\SYSWOW64\PeerDistSh.dll
2015-09-10 07:20:19 ----A---- C:\WINDOWS\SYSWOW64\appmgmts.dll
2015-09-10 07:20:19 ----A---- C:\WINDOWS\system32\rdpendp.dll
2015-09-10 07:20:18 ----A---- C:\WINDOWS\system32\StikyNot.exe
2015-09-10 07:20:18 ----A---- C:\WINDOWS\system32\SNTSearch.dll
2015-09-10 07:20:17 ----A---- C:\WINDOWS\SYSWOW64\srmlib.dll
2015-09-10 07:20:11 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\printmanagement.msc
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\ppcsnap.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\pmcsnap.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\cscobj.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2015-09-10 07:20:02 ----A---- C:\WINDOWS\SYSWOW64\cscobj.dll
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\fveprompt.exe
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\cscsvc.dll
2015-09-10 07:20:01 ----A---- C:\WINDOWS\system32\SnippingTool.exe
2015-09-10 07:20:01 ----A---- C:\WINDOWS\system32\CscMig.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\InkAnalysis.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\inetppui.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\inetpp.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\SYSWOW64\appmgr.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\embeddedapplauncher.exe
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\DFDWiz.exe
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmtrace.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmstormod.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmshell.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmscan.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmclient.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srm_ps.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srm.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\adrclient.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistSvc.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistHttpTrans.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistCleaner.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistAD.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDist.dll
2015-09-10 07:09:15 ----A---- C:\WINDOWS\system32\prm0005.dll
2015-09-10 07:08:36 ----A---- C:\WINDOWS\system32\jnwmon.dll
2015-09-10 07:05:26 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-09-10 07:05:25 ----SD---- C:\WINDOWS\system32\dsc
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\Com
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\migwiz
2015-09-10 07:05:24 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\Com
2015-09-10 07:05:22 ----D---- C:\WINDOWS\servicing
2015-09-10 07:05:22 ----D---- C:\WINDOWS\IME
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Photo Viewer
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Media Player
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Defender
2015-09-10 07:05:22 ----D---- C:\Program Files\Common Files\System
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Defender

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

Re: prosim pc je pomalé

Napsal: 05 říj 2015 09:10
od dart500
Dobrý den nezlobte se v případě mého dotazu , ale zdá se mě že jedeme po třetí dokola stejné úkony . Je to možné nebo to tak má být ?
děkuji a nezlobte se v případě špatného dotazu . zde je log :


Logfile of random's system information tool 1.10 (written by random/random)
Run by gagin at 2015-10-05 10:07:21
Microsoft Windows 10 Pro
System drive C: has 22 GB (14%) free of 155 GB
Total RAM: 4094 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:07:25, on 5.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\aliwssv.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TradeManager\AliIM.exe
C:\Windows\SysWOW64\CtHelper.exe
C:\Program Files (x86)\TradeManager\AliApp.exe
C:\Program Files (x86)\TradeManager\AliApp.exe
C:\Users\gagin\AppData\Roaming\TaobaoProtect\TaobaoProtect.exe
C:\ProgramData\alipay\Alipaybsm.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\gagin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKCU\..\Run: [Google Update] "C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\gagin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [aliim] "C:\Program Files (x86)\TradeManager\AliIM.exe" /autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.alipay.com
O15 - Trusted Zone: http://*.alisoft.com
O15 - Trusted Zone: http://*.taobao.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Alipay payment client security service (pcas) - Alipay.com Inc. - C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Alipay security business service (secbizsrv) - Alipay.com Inc. - C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TBSecSvc - Alibaba (China) Co., LTD. All rights reserved. - C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: wwbizsrv - Alibaba Group - C:\Program Files (x86)\Alibaba\wwbizsrv\wwbizsrv.exe

--
End of file - 8280 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Microsoft Device Health\PluginManager\DhPluginMgr.exe"
"C:\Program Files (x86)\Microsoft Device Health\DhMachineSvc.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe"
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe"
"C:\Program Files (x86)\Alibaba\wwbizsrv\wwbizsrv.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding


C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\aliwssv.exe" /W
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\TradeManager\AliIM.exe" /autorun
"C:\Windows\System32\CtHelper.exe"
"C:\Program Files (x86)\TradeManager\AliApp.exe" --type=renderer --aef-process-id=tmclient --dump-version=1.00.01E --disable-gpu --no-sandbox --lang=en-US --disable-webgl --disable-pepper-3d --disable-accelerated-compositing --channel="4348.0.736051630\1193489118" /prefetch:673131151
"C:\Program Files (x86)\TradeManager\AliApp.exe" --type=renderer --aef-process-id=tmplugin --dump-version=1.00.01E --disable-gpu --no-sandbox --lang=en-US --disable-webgl --disable-pepper-3d --disable-accelerated-compositing --channel="4348.1.1244051728\2024896691" /prefetch:673131151
C:\Users\gagin\AppData\Roaming\TaobaoProtect\TaobaoProtect.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\ProgramData\alipay\Alipaybsm.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1509.14010.0_x64__8wekyb3d8bbwe\Calculator.exe" -ServerName:App.AppXsm3pg4n7er43kdh1qp4e79f1j7am68r8.mca
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5360.0.415836566\1389630141" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x0193 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4181 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.1.2064531903\852185088" --font-cache-shared-handle=2096 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.4.1429967227\282971208" --font-cache-shared-handle=4896 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5360.5.1477155536\628262769" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.7.1743927379\875697151" --font-cache-shared-handle=6016 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.10.1771564578\1355491371" --font-cache-shared-handle=3004 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.13.836297490\461916213" --font-cache-shared-handle=3972 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.15.219848739\230682524" --font-cache-shared-handle=4184 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --instant-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.16.1560750793\2084207641" --font-cache-shared-handle=8112 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5360.18.1459483219\845730295" --font-cache-shared-handle=3096 /prefetch:673131151

"C:\Users\gagin\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-722712101-1838267521-1311700174-1000Core.job - C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-722712101-1838267521-1311700174-1000UA.job - C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\微软设备健康助手开机检测.job - C:\Program Files (x86)\Microsoft Device Health\DhUpdate.exe /EnableDH
C:\WINDOWS\tasks\微软设备健康助手自动更新.job - C:\Program Files (x86)\Microsoft Device Health\DhUpdate.exe
C:\WINDOWS\tasks\微软设备健康助手设备检查.job - C:\Program Files (x86)\Microsoft Device Health\PluginManager\DhPluginMgrScheduler.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AsioReg"=REGSVR32.EXE /S CTASIO.DLL []
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-10-01 1794888]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-10-01 16174328]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-10-01 5595336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-30 144200]
"OneDrive"=C:\Users\gagin\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-30 405584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-09-04 55357464]
"aliim"=C:\Program Files (x86)\TradeManager\AliIM.exe [2015-09-07 594232]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AsioThk32Reg"=REGSVR32.EXE /S CTASIO.DLL []
"CTHelper"=CTHELPER.EXE []
"CTxfiHlp"=CTXFIHLP.EXE []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-10-05 08:55:00 ----D---- C:\ProgramData\DeviceHealth
2015-10-04 19:35:52 ----D---- C:\Users\gagin\AppData\Roaming\ProductData
2015-10-02 09:35:11 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-01 20:17:56 ----D---- C:\AdwCleaner
2015-10-01 18:57:30 ----D---- C:\WINDOWS\SYSWOW64\cvirte
2015-10-01 18:57:30 ----D---- C:\Program Files (x86)\National Instruments
2015-10-01 18:57:30 ----D---- C:\Program Files (x86)\MTK_SN_Write_tool
2015-10-01 14:40:33 ----D---- C:\rsit
2015-10-01 14:40:33 ----D---- C:\Program Files\trend micro
2015-10-01 14:24:07 ----D---- C:\ProgramData\SP_MDT_Logs
2015-10-01 13:49:32 ----A---- C:\WINDOWS\ntbtlog.txt
2015-10-01 12:47:19 ----D---- C:\Program Files (x86)\Microsoft Device Health
2015-10-01 12:46:29 ----D---- C:\WINDOWS\SYSWOW64\itruscert
2015-10-01 11:02:42 ----D---- C:\Users\gagin\AppData\Roaming\Alibaba
2015-10-01 10:58:10 ----D---- C:\ProgramData\boost_interprocess
2015-10-01 10:56:52 ----D---- C:\ProgramData\alipay
2015-10-01 10:56:28 ----D---- C:\WINDOWS\SYSWOW64\aliedit
2015-10-01 10:56:28 ----D---- C:\Users\gagin\AppData\Roaming\TaobaoProtect
2015-10-01 10:56:28 ----D---- C:\Program Files (x86)\TaobaoProtect
2015-10-01 10:56:28 ----D---- C:\Program Files (x86)\Alibaba
2015-10-01 10:56:18 ----D---- C:\Program Files (x86)\alipay
2015-10-01 10:56:17 ----D---- C:\Program Files (x86)\TradeManager
2015-10-01 10:26:43 ----RD---- C:\Program Files (x86)\Skype
2015-10-01 10:22:32 ----D---- C:\Users\gagin\AppData\Roaming\WinRAR
2015-10-01 10:22:20 ----D---- C:\Program Files\WinRAR
2015-10-01 10:17:48 ----D---- C:\ProgramData\ESET
2015-10-01 10:17:48 ----D---- C:\Program Files\ESET
2015-10-01 09:59:28 ----D---- C:\Users\gagin\AppData\Roaming\Apple Computer
2015-10-01 09:59:27 ----D---- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-10-01 09:58:42 ----D---- C:\Users\gagin\AppData\Roaming\Opera Software
2015-10-01 09:57:52 ----A---- C:\WINDOWS\SYSWOW64\drivers\HWiNFO64A.SYS
2015-10-01 09:57:51 ----D---- C:\Program Files (x86)\Opera
2015-10-01 09:57:41 ----D---- C:\Program Files (x86)\IObit
2015-10-01 09:51:22 ----D---- C:\Program Files (x86)\Lenovo
2015-10-01 09:51:17 ----D---- C:\WINDOWS\Downloaded Installations
2015-10-01 09:49:21 ----D---- C:\Program Files (x86)\uTorrent
2015-10-01 09:48:37 ----D---- C:\Users\gagin\AppData\Roaming\uTorrent
2015-10-01 09:40:11 ----D---- C:\Users\gagin\AppData\Roaming\Macromedia
2015-10-01 09:35:27 ----D---- C:\Users\gagin\AppData\Roaming\Skype
2015-10-01 09:35:17 ----D---- C:\ProgramData\Skype
2015-10-01 09:32:32 ----D---- C:\Users\gagin\AppData\Roaming\IObit
2015-10-01 09:32:32 ----D---- C:\ProgramData\IObit
2015-10-01 09:30:24 ----D---- C:\Program Files (x86)\Microsoft Works
2015-10-01 09:29:56 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2015-10-01 09:29:37 ----D---- C:\WINDOWS\PCHEALTH
2015-10-01 09:28:00 ----D---- C:\Program Files\Microsoft Office
2015-10-01 09:27:17 ----D---- C:\Program Files (x86)\Microsoft Office
2015-10-01 09:27:16 ----D---- C:\ProgramData\Microsoft Help
2015-10-01 09:27:02 ----RHD---- C:\MSOCache
2015-10-01 07:53:37 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2015-10-01 07:51:44 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-10-01 07:51:41 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-10-01 07:51:38 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-10-01 07:51:38 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvdispgenco6434181.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvdispco6434181.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-10-01 07:51:34 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-10-01 07:51:34 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-10-01 07:51:33 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2015-10-01 07:51:33 ----A---- C:\WINDOWS\system32\nvapi64.dll
2015-10-01 07:50:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-01 07:50:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-01 07:49:59 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-01 07:49:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-10-01 07:49:58 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-10-01 07:49:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-10-01 07:49:53 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-10-01 07:49:52 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-01 07:49:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-01 07:49:47 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-10-01 07:49:47 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-01 07:49:46 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-10-01 07:49:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 07:49:45 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-01 07:49:44 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 07:49:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-10-01 07:49:41 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-01 07:49:40 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-10-01 07:49:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-10-01 07:49:38 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-01 07:49:38 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-01 07:49:37 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\mfps.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Speech.Pal.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 07:49:22 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\LocationPeIP.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\nlasvc.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\LocationPeCell.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-01 07:48:54 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-10-01 07:48:54 ----D---- C:\Program Files\Realtek
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2015-10-01 07:48:39 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-01 07:48:35 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\SYSWOW64\MBAPO32.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBWrp64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBppld64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBPPCn64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBAPO64.dll
2015-10-01 07:48:33 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-10-01 07:48:32 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-01 07:48:30 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-10-01 07:48:29 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-01 07:48:28 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2015-10-01 07:48:28 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2015-10-01 07:41:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-10-01 07:41:04 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-10-01 07:41:04 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-10-01 07:39:58 ----A---- C:\WINDOWS\system32\nvdispgenco6434174.dll
2015-10-01 07:39:58 ----A---- C:\WINDOWS\system32\nvdispco6434174.dll
2015-09-30 22:58:11 ----DC---- C:\WINDOWS\Panther
2015-09-30 22:55:04 ----D---- C:\Windows.old
2015-09-30 22:53:18 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-09-30 22:53:17 ----D---- C:\Program Files\Reference Assemblies
2015-09-30 22:53:17 ----D---- C:\Program Files\MSBuild
2015-09-30 22:53:17 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-09-30 22:53:17 ----D---- C:\Program Files (x86)\MSBuild
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-30 22:52:28 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-30 22:52:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-09-30 22:52:27 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-09-30 22:16:24 ----D---- C:\Users\gagin\AppData\Roaming\Adobe
2015-09-30 22:12:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-30 22:10:29 ----SHD---- C:\Recovery
2015-09-30 22:09:12 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-09-30 22:04:56 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-09-30 22:03:57 ----SD---- C:\Users\gagin\AppData\Roaming\Microsoft
2015-09-30 22:01:21 ----D---- C:\ProgramData\NVIDIA
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-09-30 22:00:50 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-30 22:00:37 ----D---- C:\Program Files\NVIDIA Corporation
2015-09-30 22:00:22 ----D---- C:\WINDOWS\SYSWOW64\data
2015-09-30 22:00:19 ----D---- C:\WINDOWS\system32\data
2015-09-30 21:59:32 ----D---- C:\WINDOWS\Prefetch
2015-09-30 21:58:54 ----ASH---- C:\swapfile.sys
2015-09-30 21:25:36 ----HD---- C:\$Windows.~BT
2015-09-30 21:20:01 ----D---- C:\ESD
2015-09-30 21:13:34 ----HD---- C:\$Windows.~WS
2015-09-30 16:21:57 ----D---- C:\WINDOWS\system32\SPReview
2015-09-30 16:21:48 ----D---- C:\WINDOWS\system32\EventProviders
2015-09-30 16:12:13 ----A---- C:\WINDOWS\SYSWOW64\pmcsnap.dll
2015-09-30 16:12:08 ----A---- C:\WINDOWS\SYSWOW64\PushPrinterConnections.exe
2015-09-30 16:12:08 ----A---- C:\WINDOWS\SYSWOW64\ppcsnap.dll
2015-09-30 16:11:56 ----A---- C:\WINDOWS\system32\PushPrinterConnections.exe
2015-09-30 16:11:12 ----A---- C:\WINDOWS\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-09-30 16:10:47 ----A---- C:\WINDOWS\SYSWOW64\printmanagement.msc
2015-09-30 03:19:06 ----A---- C:\WINDOWS\{00000005-00000000-00000000-00001102-00000004-10071102}.BAK
2015-09-29 22:14:59 ----D---- C:\WINDOWS\system32\MRT
2015-09-29 22:14:55 ----A---- C:\WINDOWS\system32\MRT.exe
2015-09-29 22:04:29 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-09-29 21:53:44 ----A---- C:\WINDOWS\system32\nvuninst.exe
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\cttele.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-09-29 21:47:19 ----D---- C:\Users\gagin\AppData\Roaming\Identities
2015-09-29 21:47:07 ----D---- C:\Users\gagin\AppData\Roaming\Media Center Programs
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Šablony
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Plocha
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Oblíbené položky
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Nabídka Start
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Dokumenty
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Data aplikací
2015-09-29 21:28:47 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-29 21:26:05 ----ASH---- C:\pagefile.sys
2015-09-29 21:26:04 ----SHD---- C:\System Volume Information
2015-09-29 21:26:04 ----ASH---- C:\hiberfil.sys
2015-09-10 07:44:58 ----D---- C:\ProgramData\Microsoft OneDrive
2015-09-10 07:44:25 ----D---- C:\Logs
2015-09-10 07:36:43 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-09-10 07:21:17 ----SHD---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2015-09-10 07:21:17 ----D---- C:\WINDOWS\ShellNew
2015-09-10 07:21:17 ----D---- C:\Program Files\Windows Journal
2015-09-10 07:09:22 ----D---- C:\WINDOWS\OCR
2015-09-10 07:09:15 ----D---- C:\WINDOWS\SKB
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\wmp.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\bcd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\stobject.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\shell32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\calc.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\explorer.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\winresume.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\winload.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\usocore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\twinui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\notepad.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\hal.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\efscore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\notepad.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wininit.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wer.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\tquery.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\InputService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ci.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfi005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfh005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfd005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfc005.dat
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\en
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\cs
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\0409
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\winrm
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\WCN
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\slmgr
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\en
2015-09-10 07:05:24 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-10 07:05:24 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\cs
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\0409
2015-09-10 07:05:22 ----D---- C:\WINDOWS\cs-CZ

======List of files/folders modified in the last 1 month======

2015-10-05 10:07:07 ----D---- C:\WINDOWS\Temp
2015-10-05 09:51:00 ----D---- C:\WINDOWS\system32\sru
2015-10-05 09:48:18 ----D---- C:\WINDOWS\System32
2015-10-05 09:01:24 ----D---- C:\WINDOWS\Microsoft.NET
2015-10-05 08:55:00 ----HD---- C:\ProgramData
2015-10-04 20:57:31 ----D---- C:\WINDOWS\INF
2015-10-04 12:51:11 ----SHD---- C:\WINDOWS\Installer
2015-10-04 12:51:08 ----D---- C:\WINDOWS\Tasks
2015-10-04 12:51:08 ----D---- C:\WINDOWS\system32\Tasks
2015-10-04 12:30:30 ----D---- C:\WINDOWS\Logs
2015-10-04 12:28:40 ----D---- C:\WINDOWS\rescache
2015-10-04 12:14:00 ----D---- C:\WINDOWS\AppReadiness
2015-10-03 08:18:09 ----HD---- C:\Program Files\WindowsApps
2015-10-03 04:28:06 ----D---- C:\WINDOWS\SysWOW64
2015-10-03 04:26:50 ----D---- C:\Program Files (x86)\Common Files
2015-10-03 04:21:24 ----A---- C:\WINDOWS\win.ini
2015-10-02 12:59:23 ----D---- C:\WINDOWS\system32\config
2015-10-02 12:30:11 ----RD---- C:\WINDOWS\assembly
2015-10-02 12:17:39 ----D---- C:\WINDOWS\WinSxS
2015-10-02 09:39:46 ----RSD---- C:\WINDOWS\Fonts
2015-10-01 18:57:30 ----RD---- C:\Program Files (x86)
2015-10-01 16:38:16 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-01 15:06:38 ----D---- C:\Windows
2015-10-01 14:40:33 ----RD---- C:\Program Files
2015-10-01 12:43:04 ----D---- C:\WINDOWS\LiveKernelReports
2015-10-01 10:19:12 ----D---- C:\WINDOWS\system32\drivers
2015-10-01 10:06:33 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-01 10:05:36 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-10-01 10:05:36 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-10-01 10:05:33 ----SD---- C:\WINDOWS\system32\F12
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\migration
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\appraiser
2015-10-01 10:05:32 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-01 10:05:28 ----D---- C:\WINDOWS\Provisioning
2015-10-01 10:05:27 ----D---- C:\WINDOWS\L2Schemas
2015-10-01 10:05:27 ----D---- C:\WINDOWS\AppPatch
2015-10-01 09:59:04 ----SHD---- C:\$Recycle.Bin
2015-10-01 09:57:52 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-10-01 09:29:37 ----SD---- C:\ProgramData\Microsoft
2015-10-01 09:29:37 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-10-01 09:28:54 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-01 09:26:46 ----D---- C:\WINDOWS\system32\restore
2015-10-01 07:56:04 ----D---- C:\WINDOWS\CbsTemp
2015-10-01 07:54:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-01 07:47:37 ----D---- C:\WINDOWS\system32\catroot2
2015-10-01 07:42:26 ----D---- C:\WINDOWS\appcompat
2015-10-01 07:41:11 ----D---- C:\WINDOWS\system32\WDI
2015-09-30 22:54:39 ----SD---- C:\WINDOWS\system32\Microsoft
2015-09-30 22:53:18 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-09-30 22:53:18 ----D---- C:\WINDOWS\system32\MUI
2015-09-30 22:10:30 ----D---- C:\Program Files\Windows NT
2015-09-30 22:10:07 ----D---- C:\WINDOWS\debug
2015-09-30 22:09:43 ----D---- C:\WINDOWS\Registration
2015-09-30 22:09:05 ----D---- C:\WINDOWS\system32\drivers\etc
2015-09-30 22:09:02 ----D---- C:\WINDOWS\system32\LogFiles
2015-09-30 22:09:01 ----RSD---- C:\WINDOWS\Media
2015-09-30 22:05:53 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-09-30 22:05:53 ----D---- C:\WINDOWS\system32\en-US
2015-09-30 22:05:53 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-09-30 22:05:16 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-09-30 22:05:16 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-09-30 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-30 22:05:12 ----D---- C:\WINDOWS\system32\NDF
2015-09-30 22:05:11 ----D---- C:\WINDOWS\system32\IME
2015-09-30 22:05:09 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-30 22:05:03 ----D---- C:\WINDOWS\schemas
2015-09-30 22:05:00 ----D---- C:\WINDOWS\ehome
2015-09-30 22:04:59 ----RD---- C:\Users
2015-09-30 22:04:57 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-09-30 22:04:57 ----D---- C:\Program Files (x86)\Windows Mail
2015-09-30 22:04:56 ----SHD---- C:\Program Files\Windows Sidebar
2015-09-30 22:04:56 ----D---- C:\Program Files\Windows Mail
2015-09-30 22:04:56 ----D---- C:\Program Files\DVD Maker
2015-09-30 22:04:56 ----D---- C:\Program Files\Common Files
2015-09-30 22:04:31 ----D---- C:\WINDOWS\system32\Recovery
2015-09-30 22:02:43 ----D---- C:\WINDOWS\system32\Sysprep
2015-09-30 22:01:16 ----D---- C:\WINDOWS\Help
2015-09-30 17:03:27 ----D---- C:\WINDOWS\SYSWOW64\manifeststore
2015-09-30 17:03:20 ----D---- C:\WINDOWS\system32\manifeststore
2015-09-29 21:26:38 ----D---- C:\WINDOWS\CSC
2015-09-15 05:31:34 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-09-10 07:42:43 ----D---- C:\WINDOWS\system32\wbem
2015-09-10 07:39:54 ----RD---- C:\WINDOWS\PrintDialog
2015-09-10 07:39:45 ----RD---- C:\WINDOWS\MiracastView
2015-09-10 07:39:39 ----RD---- C:\WINDOWS\DevicesFlow
2015-09-10 07:39:24 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\wbem
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-09-10 07:21:20 ----D---- C:\WINDOWS\system32\oobe
2015-09-10 07:21:19 ----D---- C:\WINDOWS\system32\Dism
2015-09-10 07:21:19 ----D---- C:\WINDOWS\system32\Boot
2015-09-10 07:21:18 ----D---- C:\WINDOWS\PolicyDefinitions
2015-09-10 07:21:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-09-10 07:21:18 ----D---- C:\Program Files\Internet Explorer
2015-09-10 07:21:18 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-10 07:21:17 ----D---- C:\WINDOWS\Web
2015-09-10 07:21:17 ----D---- C:\WINDOWS\SystemApps
2015-09-10 07:21:17 ----D---- C:\WINDOWS\security
2015-09-10 07:20:57 ----A---- C:\WINDOWS\SYSWOW64\scrptadm.dll
2015-09-10 07:20:57 ----A---- C:\WINDOWS\SYSWOW64\PeerDist.dll
2015-09-10 07:20:57 ----A---- C:\WINDOWS\system32\umrdp.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\auditpolmsg.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\AuditNativeSnapIn.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\SYSWOW64\InkAnalysis.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\system32\mblctr.exe
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\rsop.msc
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\gpedit.msc
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\cscui.dll
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\bdechangepin.exe
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\auditpolmsg.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\AuditPolicyGPInterop.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\AuditNativeSnapIn.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\system32\SensorsCpl.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\system32\RotMgr.dll
2015-09-10 07:20:52 ----A---- C:\WINDOWS\system32\hwrreg.exe
2015-09-10 07:20:52 ----A---- C:\WINDOWS\system32\hwrcomp.exe
2015-09-10 07:20:51 ----A---- C:\WINDOWS\SYSWOW64\gpscript.exe
2015-09-10 07:20:51 ----A---- C:\WINDOWS\SYSWOW64\gpscript.dll
2015-09-10 07:20:50 ----A---- C:\WINDOWS\SYSWOW64\SrpUxNativeSnapIn.dll
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tskill.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tscon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\rwinsta.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\reset.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qwinsta.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\quser.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\query.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qprocess.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qappsrv.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\msg.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\logoff.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chgusr.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chgport.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chglogon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\change.exe
2015-09-10 07:20:49 ----A---- C:\WINDOWS\SYSWOW64\SensorsCpl.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\SYSWOW64\rdpendp.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\srmlib.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\baaupdate.exe
2015-09-10 07:20:46 ----A---- C:\WINDOWS\system32\PrintBrmUi.exe
2015-09-10 07:20:46 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2015-09-10 07:20:45 ----A---- C:\WINDOWS\system32\SensorsClassExtension.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddputils.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddptrace.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddp_ps.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2015-09-10 07:20:43 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\fvewiz.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\fvecpl.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\BitLockerWizardElev.exe
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\BitLockerWizard.exe
2015-09-10 07:20:38 ----A---- C:\WINDOWS\system32\rdpclip.exe
2015-09-10 07:20:38 ----A---- C:\WINDOWS\system32\BdeSysprep.dll
2015-09-10 07:20:37 ----A---- C:\WINDOWS\SYSWOW64\AppIdPolicyEngineApi.dll
2015-09-10 07:20:32 ----A---- C:\WINDOWS\SYSWOW64\rfxvmt.dll
2015-09-10 07:20:30 ----A---- C:\WINDOWS\system32\PresentationSettings.exe
2015-09-10 07:20:30 ----A---- C:\WINDOWS\system32\appmgr.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmtrace.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmstormod.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmshell.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmscan.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmclient.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srm_ps.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srm.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\scrptadm.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\adrclient.dll
2015-09-10 07:20:28 ----A---- C:\WINDOWS\system32\secpol.msc
2015-09-10 07:20:28 ----A---- C:\WINDOWS\system32\ddpchunk.dll
2015-09-10 07:20:26 ----A---- C:\WINDOWS\system32\rdpinput.exe
2015-09-10 07:20:25 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\SensorPerformanceEvents.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\rdpudd.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\PeerDistSh.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\PeerDistCacheProvider.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\appmgmts.dll
2015-09-10 07:20:24 ----A---- C:\WINDOWS\system32\gpscript.exe
2015-09-10 07:20:24 ----A---- C:\WINDOWS\system32\gpscript.dll
2015-09-10 07:20:23 ----A---- C:\WINDOWS\system32\dfdts.dll
2015-09-10 07:20:21 ----A---- C:\WINDOWS\SYSWOW64\rsop.msc
2015-09-10 07:20:21 ----A---- C:\WINDOWS\SYSWOW64\gpedit.msc
2015-09-10 07:20:19 ----A---- C:\WINDOWS\SYSWOW64\PeerDistSh.dll
2015-09-10 07:20:19 ----A---- C:\WINDOWS\SYSWOW64\appmgmts.dll
2015-09-10 07:20:19 ----A---- C:\WINDOWS\system32\rdpendp.dll
2015-09-10 07:20:18 ----A---- C:\WINDOWS\system32\StikyNot.exe
2015-09-10 07:20:18 ----A---- C:\WINDOWS\system32\SNTSearch.dll
2015-09-10 07:20:17 ----A---- C:\WINDOWS\SYSWOW64\srmlib.dll
2015-09-10 07:20:11 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\printmanagement.msc
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\ppcsnap.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\pmcsnap.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\cscobj.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2015-09-10 07:20:02 ----A---- C:\WINDOWS\SYSWOW64\cscobj.dll
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\fveprompt.exe
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\cscsvc.dll
2015-09-10 07:20:01 ----A---- C:\WINDOWS\system32\SnippingTool.exe
2015-09-10 07:20:01 ----A---- C:\WINDOWS\system32\CscMig.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\InkAnalysis.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\inetppui.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\inetpp.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\SYSWOW64\appmgr.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\embeddedapplauncher.exe
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\DFDWiz.exe
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmtrace.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmstormod.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmshell.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmscan.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmclient.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srm_ps.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srm.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\adrclient.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistSvc.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistHttpTrans.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistCleaner.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistAD.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDist.dll
2015-09-10 07:09:15 ----A---- C:\WINDOWS\system32\prm0005.dll
2015-09-10 07:08:36 ----A---- C:\WINDOWS\system32\jnwmon.dll
2015-09-10 07:05:26 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-09-10 07:05:25 ----SD---- C:\WINDOWS\system32\dsc
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\Com
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\migwiz
2015-09-10 07:05:24 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\Com
2015-09-10 07:05:22 ----D---- C:\WINDOWS\servicing
2015-09-10 07:05:22 ----D---- C:\WINDOWS\IME
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Photo Viewer
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Media Player
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Defender
2015-09-10 07:05:22 ----D---- C:\Program Files\Common Files\System
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Defender

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

Re: prosim pc je pomalé

Napsal: 05 říj 2015 09:10
od dart500
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2014-10-10 241368]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2014-10-10 243440]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2014-10-10 169280]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2015-10-01 26528]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2014-10-10 158968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 COMMONFX.DLL;COMMONFX.DLL; C:\WINDOWS\System32\COMMONFX.DLL [2007-04-12 151296]
R3 ctaud2k;@oem2.inf,%CTAUD2K.SvcDesc%;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2007-04-10 863016]
R3 CTAUDFX.DLL;CTAUDFX.DLL; C:\WINDOWS\System32\CTAUDFX.DLL [2007-04-10 700200]
R3 ctprxy2k;@oem2.inf,%CTPRXY2K.SvcDesc%;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys [2007-04-10 17192]
R3 CTSBLFX.DLL;CTSBLFX.DLL; C:\WINDOWS\System32\CTSBLFX.DLL [2007-04-10 681256]
R3 ctsfm2k;@oem2.inf,%CTSFM2K.SvcDesc%;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\drivers\ctsfm2k.sys [2007-04-10 290600]
R3 emupia;@oem2.inf,%EMUPIA.SvcDesc%;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys [2007-04-10 147752]
R3 ha10kx2k;@oem2.inf,%HA10KX.SvcDesc%;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2007-04-10 1359144]
R3 hap16v2k;@oem2.inf,%HAP16V2K.SvcDesc%;Creative P16V HAL Driver; C:\WINDOWS\system32\drivers\hap16v2k.sys [2007-04-10 259880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-10-01 4585728]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-10-01 12905144]
R3 ossrv;@oem2.inf,%OSSRV.SvcDesc%;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2007-04-10 218408]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-18 587264]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 CT20XUT.DLL;CT20XUT.DLL; C:\WINDOWS\System32\CT20XUT.DLL [2007-04-10 252712]
S3 ctac32k;@oem2.inf,%CTAC32K.SvcDesc%;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys [2007-04-10 580904]
S3 CTEAPSFX.DLL;CTEAPSFX.DLL; C:\WINDOWS\System32\CTEAPSFX.DLL [2007-04-10 219432]
S3 CTEDSPFX.DLL;CTEDSPFX.DLL; C:\WINDOWS\System32\CTEDSPFX.DLL [2007-04-10 321832]
S3 CTEDSPIO.DLL;CTEDSPIO.DLL; C:\WINDOWS\System32\CTEDSPIO.DLL [2007-04-10 190248]
S3 CTEDSPSY.DLL;CTEDSPSY.DLL; C:\WINDOWS\System32\CTEDSPSY.DLL [2007-04-10 363304]
S3 CTERFXFX.DLL;CTERFXFX.DLL; C:\WINDOWS\System32\CTERFXFX.DLL [2007-04-10 142120]
S3 CTEXFIFX.DLL;CTEXFIFX.DLL; C:\WINDOWS\System32\CTEXFIFX.DLL [2007-04-10 1571112]
S3 CTHWIUT.DLL;CTHWIUT.DLL; C:\WINDOWS\System32\CTHWIUT.DLL [2007-04-10 123688]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hap17v2k;@oem2.inf,%HAP17V2K.SvcDesc%;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys [2007-04-10 295208]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-09-10 934752]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Sériový ovladač USB od společnosti Microsoft; C:\WINDOWS\System32\drivers\usbser.sys [2015-09-10 67072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DeviceHealth;Microsoft Device Health Machine Service; C:\Program Files (x86)\Microsoft Device Health\DhMachineSvc.exe [2015-01-30 196760]
R2 DeviceHealthPluginMgr;Microsoft Device Health Manager Service; C:\Program Files (x86)\Microsoft Device Health\PluginManager\DhPluginMgr.exe [2015-01-30 244376]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2014-10-01 1349576]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-29 2909472]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-08-18 933168]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 pcas;Alipay payment client security service; C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe [2015-03-23 592856]
R2 secbizsrv;Alipay security business service; C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe [2015-03-23 594904]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-08-17 409776]
R2 TBSecSvc;TBSecSvc; C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe [2015-09-08 227112]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc_Session1;Přístup k uživatelským datům_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]

-----------------EOF-----------------

Re: prosim pc je pomalé

Napsal: 05 říj 2015 18:26
od Rudy
dart500 píše:Děkuji za info , půl roku ? měl jsem jiný systém a nějak jsem to nebystřil tady , mě pomaleji načítá prohlížeč atd .
Tolik zhruba uplynulo od vašeho posledního příspěvku v tomto threadu. :)
dart500 píše:Dobrý den nezlobte se v případě mého dotazu , ale zdá se mě že jedeme po třetí dokola stejné úkony . Je to možné nebo to tak má být ?
děkuji a nezlobte se v případě špatného dotazu . zde je log :
Čištění má více fází a jestliže jste začal logem RSIT, musí to tak být. Modernější utilita je FRST (viz utilita nahoře v oranžovém poli).

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\WINDOWS\tasks\微软设备健康助手开机检测.job
C:\WINDOWS\tasks\微软设备健康助手自动更新.job
C:\WINDOWS\tasks\微软设备健康助手设备检查.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

Re: prosim pc je pomalé

Napsal: 06 říj 2015 10:52
od dart500
Děkuji za odpovědi , Log nový je zde :

Logfile of random's system information tool 1.10 (written by random/random)
Run by gagin at 2015-10-06 11:50:33
Microsoft Windows 10 Pro
System drive C: has 19 GB (13%) free of 155 GB
Total RAM: 4094 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:50:37, on 6.10.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\aliwssv.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TradeManager\AliIM.exe
C:\Windows\SysWOW64\CtHelper.exe
C:\Program Files (x86)\TradeManager\AliApp.exe
C:\Program Files (x86)\TradeManager\AliApp.exe
C:\Users\gagin\AppData\Roaming\TaobaoProtect\TaobaoProtect.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\ProgramData\alipay\Alipaybsm.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\gagin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKCU\..\Run: [Google Update] "C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\gagin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [aliim] "C:\Program Files (x86)\TradeManager\AliIM.exe" /autorun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.alipay.com
O15 - Trusted Zone: http://*.alisoft.com
O15 - Trusted Zone: http://*.taobao.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Alipay payment client security service (pcas) - Alipay.com Inc. - C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Alipay security business service (secbizsrv) - Alipay.com Inc. - C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TBSecSvc - Alibaba (China) Co., LTD. All rights reserved. - C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: wwbizsrv - Alibaba Group - C:\Program Files (x86)\Alibaba\wwbizsrv\wwbizsrv.exe

--
End of file - 8280 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k NetworkService
taskeng.exe {8999E39C-E0BE-48D0-AC99-8C73BDD7CF83}
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Microsoft Device Health\DhMachineSvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Microsoft Device Health\PluginManager\DhPluginMgr.exe"
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe"
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe"
"C:\Program Files (x86)\Alibaba\wwbizsrv\wwbizsrv.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\aliwssv.exe" /W
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\TradeManager\AliIM.exe" /autorun
"C:\Windows\System32\CtHelper.exe"
"C:\Program Files (x86)\TradeManager\AliApp.exe" --type=renderer --aef-process-id=tmclient --dump-version=1.00.01E --disable-gpu --no-sandbox --lang=en-US --disable-webgl --disable-pepper-3d --disable-accelerated-compositing --channel="4184.0.2092058100\936688406" /prefetch:673131151
"C:\Program Files (x86)\TradeManager\AliApp.exe" --type=renderer --aef-process-id=tmplugin --dump-version=1.00.01E --disable-gpu --no-sandbox --lang=en-US --disable-webgl --disable-pepper-3d --disable-accelerated-compositing --channel="4184.1.1894238353\266332842" /prefetch:673131151
C:\Users\gagin\AppData\Roaming\TaobaoProtect\TaobaoProtect.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="752.0.1393400521\447574212" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45,55 --gpu-vendor-id=0x10de --gpu-device-id=0x0193 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.4181 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="752.1.136501837\369651974" --font-cache-shared-handle=2088 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="752.2.1566287295\522464991" --font-cache-shared-handle=2280 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="752.3.1477575070\1187548835" --font-cache-shared-handle=3172 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="752.4.893106016\1159898621" --font-cache-shared-handle=2696 /prefetch:673131151
"C:\ProgramData\alipay\Alipaybsm.exe"
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="752.5.542138632\1145961827" --font-cache-shared-handle=4788 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="752.6.354944235\1207578258" --font-cache-shared-handle=5464 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="752.7.1423668057\379382856" --font-cache-shared-handle=5684 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group17 pct:1h stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/*EnableSessionCrashedBubbleUI/Enabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/StandardR5/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/SessionRestoreBackgroundLoading/Restore/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="752.8.449736540\1559896704" --font-cache-shared-handle=5840 /prefetch:673131151
"C:\Users\gagin\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="752.9.1680958859\1197768122" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\gagin\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-722712101-1838267521-1311700174-1000Core.job - C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-722712101-1838267521-1311700174-1000UA.job - C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\微软设备健康助手开机检测.job - C:\Program Files (x86)\Microsoft Device Health\DhUpdate.exe /EnableDH
C:\WINDOWS\tasks\微软设备健康助手自动更新.job - C:\Program Files (x86)\Microsoft Device Health\DhUpdate.exe
C:\WINDOWS\tasks\微软设备健康助手设备检查.job - C:\Program Files (x86)\Microsoft Device Health\PluginManager\DhPluginMgrScheduler.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AsioReg"=REGSVR32.EXE /S CTASIO.DLL []
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-10-01 1794888]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-10-01 16174328]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2014-10-01 5595336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\gagin\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-30 144200]
"OneDrive"=C:\Users\gagin\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-30 405584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-09-04 55357464]
"aliim"=C:\Program Files (x86)\TradeManager\AliIM.exe [2015-09-07 594232]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AsioThk32Reg"=REGSVR32.EXE /S CTASIO.DLL []
"CTHelper"=CTHELPER.EXE []
"CTxfiHlp"=CTXFIHLP.EXE []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-10-06 11:42:33 ----D---- C:\_OTM
2015-10-06 10:21:19 ----SHD---- C:\Users\gagin\AppData\Roaming\wyUpdate AU
2015-10-06 10:16:39 ----D---- C:\ProgramData\Delphi
2015-10-06 10:16:34 ----D---- C:\ProgramData\Common Diagnostics
2015-10-06 10:16:23 ----D---- C:\Users\gagin\AppData\Roaming\Delphi
2015-10-05 14:05:01 ----A---- C:\WINDOWS\system32\drivers\rockusb.sys
2015-10-05 08:55:00 ----D---- C:\ProgramData\DeviceHealth
2015-10-04 19:35:52 ----D---- C:\Users\gagin\AppData\Roaming\ProductData
2015-10-02 09:35:11 ----D---- C:\WINDOWS\system32\SleepStudy
2015-10-01 20:17:56 ----D---- C:\AdwCleaner
2015-10-01 18:57:30 ----D---- C:\WINDOWS\SYSWOW64\cvirte
2015-10-01 18:57:30 ----D---- C:\Program Files (x86)\National Instruments
2015-10-01 18:57:30 ----D---- C:\Program Files (x86)\MTK_SN_Write_tool
2015-10-01 14:40:33 ----D---- C:\rsit
2015-10-01 14:40:33 ----D---- C:\Program Files\trend micro
2015-10-01 14:24:07 ----D---- C:\ProgramData\SP_MDT_Logs
2015-10-01 13:49:32 ----A---- C:\WINDOWS\ntbtlog.txt
2015-10-01 12:47:19 ----D---- C:\Program Files (x86)\Microsoft Device Health
2015-10-01 12:46:29 ----D---- C:\WINDOWS\SYSWOW64\itruscert
2015-10-01 11:02:42 ----D---- C:\Users\gagin\AppData\Roaming\Alibaba
2015-10-01 10:58:10 ----D---- C:\ProgramData\boost_interprocess
2015-10-01 10:56:52 ----D---- C:\ProgramData\alipay
2015-10-01 10:56:28 ----D---- C:\WINDOWS\SYSWOW64\aliedit
2015-10-01 10:56:28 ----D---- C:\Users\gagin\AppData\Roaming\TaobaoProtect
2015-10-01 10:56:28 ----D---- C:\Program Files (x86)\TaobaoProtect
2015-10-01 10:56:28 ----D---- C:\Program Files (x86)\Alibaba
2015-10-01 10:56:18 ----D---- C:\Program Files (x86)\alipay
2015-10-01 10:56:17 ----D---- C:\Program Files (x86)\TradeManager
2015-10-01 10:26:43 ----RD---- C:\Program Files (x86)\Skype
2015-10-01 10:22:32 ----D---- C:\Users\gagin\AppData\Roaming\WinRAR
2015-10-01 10:22:20 ----D---- C:\Program Files\WinRAR
2015-10-01 10:17:48 ----D---- C:\ProgramData\ESET
2015-10-01 10:17:48 ----D---- C:\Program Files\ESET
2015-10-01 09:59:28 ----D---- C:\Users\gagin\AppData\Roaming\Apple Computer
2015-10-01 09:59:27 ----D---- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-10-01 09:58:42 ----D---- C:\Users\gagin\AppData\Roaming\Opera Software
2015-10-01 09:57:52 ----A---- C:\WINDOWS\SYSWOW64\drivers\HWiNFO64A.SYS
2015-10-01 09:57:51 ----D---- C:\Program Files (x86)\Opera
2015-10-01 09:57:41 ----D---- C:\Program Files (x86)\IObit
2015-10-01 09:51:22 ----D---- C:\Program Files (x86)\Lenovo
2015-10-01 09:51:17 ----D---- C:\WINDOWS\Downloaded Installations
2015-10-01 09:49:21 ----D---- C:\Program Files (x86)\uTorrent
2015-10-01 09:48:37 ----D---- C:\Users\gagin\AppData\Roaming\uTorrent
2015-10-01 09:40:11 ----D---- C:\Users\gagin\AppData\Roaming\Macromedia
2015-10-01 09:35:27 ----D---- C:\Users\gagin\AppData\Roaming\Skype
2015-10-01 09:35:17 ----D---- C:\ProgramData\Skype
2015-10-01 09:32:32 ----D---- C:\Users\gagin\AppData\Roaming\IObit
2015-10-01 09:32:32 ----D---- C:\ProgramData\IObit
2015-10-01 09:30:24 ----D---- C:\Program Files (x86)\Microsoft Works
2015-10-01 09:29:56 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2015-10-01 09:29:37 ----D---- C:\WINDOWS\PCHEALTH
2015-10-01 09:28:00 ----D---- C:\Program Files\Microsoft Office
2015-10-01 09:27:17 ----D---- C:\Program Files (x86)\Microsoft Office
2015-10-01 09:27:16 ----D---- C:\ProgramData\Microsoft Help
2015-10-01 09:27:02 ----RHD---- C:\MSOCache
2015-10-01 07:53:37 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2015-10-01 07:51:44 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-10-01 07:51:41 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-10-01 07:51:38 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-10-01 07:51:38 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-10-01 07:51:37 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvdispgenco6434181.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvdispco6434181.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-10-01 07:51:35 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-10-01 07:51:34 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-10-01 07:51:34 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-10-01 07:51:33 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2015-10-01 07:51:33 ----A---- C:\WINDOWS\system32\nvapi64.dll
2015-10-01 07:50:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-10-01 07:50:00 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-01 07:49:59 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-10-01 07:49:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-10-01 07:49:58 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-10-01 07:49:56 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-10-01 07:49:53 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-10-01 07:49:52 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-10-01 07:49:52 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-10-01 07:49:47 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-10-01 07:49:47 ----A---- C:\WINDOWS\system32\mos.dll
2015-10-01 07:49:46 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-10-01 07:49:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-01 07:49:45 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-10-01 07:49:44 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-01 07:49:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-01 07:49:42 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 07:49:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-10-01 07:49:41 ----A---- C:\WINDOWS\system32\wininet.dll
2015-10-01 07:49:40 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-10-01 07:49:39 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-10-01 07:49:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-10-01 07:49:38 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2015-10-01 07:49:38 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-10-01 07:49:37 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\winmde.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-10-01 07:49:37 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-01 07:49:36 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-01 07:49:35 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-10-01 07:49:34 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\esent.dll
2015-10-01 07:49:33 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\wpx.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\mfds.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2015-10-01 07:49:32 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-10-01 07:49:31 ----A---- C:\WINDOWS\system32\bisrv.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\WWanAPI.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-01 07:49:30 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-10-01 07:49:29 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-10-01 07:49:28 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\provengine.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\mf.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2015-10-01 07:49:27 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wwanconn.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\WUDFx02000.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\pnidui.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-10-01 07:49:26 ----A---- C:\WINDOWS\system32\CellularAPI.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\mfps.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-10-01 07:49:25 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\remoteaudioendpoint.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\wwanmm.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\ngckeyenum.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\ChatApis.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2015-10-01 07:49:24 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Speech.Pal.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\omadmapi.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\EmailApis.dll
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-10-01 07:49:23 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-01 07:49:22 ----A---- C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\wwancfg.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\netcenter.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-10-01 07:49:21 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\PhoneCallHistoryApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\SYSWOW64\CallHistoryClient.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\LocationPeIP.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-01 07:49:20 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\provops.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\nlasvc.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2015-10-01 07:49:19 ----A---- C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\syncmlhook.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\LocationPeCell.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\dmcsps.dll
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2015-10-01 07:49:17 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-10-01 07:48:54 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-10-01 07:48:54 ----D---- C:\Program Files\Realtek
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2015-10-01 07:48:42 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2015-10-01 07:48:39 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2015-10-01 07:48:37 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\RltkAPO64.dll
2015-10-01 07:48:36 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2015-10-01 07:48:35 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\SYSWOW64\MBAPO32.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBWrp64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBppld64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBPPCn64.dll
2015-10-01 07:48:34 ----A---- C:\WINDOWS\system32\MBAPO64.dll
2015-10-01 07:48:33 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-10-01 07:48:32 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-10-01 07:48:30 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2015-10-01 07:48:29 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-10-01 07:48:28 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2015-10-01 07:48:28 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2015-10-01 07:41:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-10-01 07:41:04 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-10-01 07:41:04 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-10-01 07:39:58 ----A---- C:\WINDOWS\system32\nvdispgenco6434174.dll
2015-10-01 07:39:58 ----A---- C:\WINDOWS\system32\nvdispco6434174.dll
2015-09-30 22:58:11 ----DC---- C:\WINDOWS\Panther
2015-09-30 22:55:04 ----D---- C:\Windows.old
2015-09-30 22:53:18 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-09-30 22:53:17 ----D---- C:\Program Files\Reference Assemblies
2015-09-30 22:53:17 ----D---- C:\Program Files\MSBuild
2015-09-30 22:53:17 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-09-30 22:53:17 ----D---- C:\Program Files (x86)\MSBuild
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-09-30 22:52:29 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-30 22:52:28 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-30 22:52:28 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-09-30 22:52:27 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-09-30 22:19:11 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-09-30 22:16:24 ----D---- C:\Users\gagin\AppData\Roaming\Adobe
2015-09-30 22:12:53 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-30 22:10:29 ----SHD---- C:\Recovery
2015-09-30 22:09:12 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-09-30 22:04:56 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-09-30 22:03:57 ----SD---- C:\Users\gagin\AppData\Roaming\Microsoft
2015-09-30 22:01:21 ----D---- C:\ProgramData\NVIDIA
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-09-30 22:01:17 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-09-30 22:00:50 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-30 22:00:37 ----D---- C:\Program Files\NVIDIA Corporation
2015-09-30 22:00:22 ----D---- C:\WINDOWS\SYSWOW64\data
2015-09-30 22:00:19 ----D---- C:\WINDOWS\system32\data
2015-09-30 21:59:32 ----D---- C:\WINDOWS\Prefetch
2015-09-30 21:58:54 ----ASH---- C:\swapfile.sys
2015-09-30 21:25:36 ----HD---- C:\$Windows.~BT
2015-09-30 21:20:01 ----D---- C:\ESD
2015-09-30 21:13:34 ----HD---- C:\$Windows.~WS
2015-09-30 16:21:57 ----D---- C:\WINDOWS\system32\SPReview
2015-09-30 16:21:48 ----D---- C:\WINDOWS\system32\EventProviders
2015-09-30 16:12:13 ----A---- C:\WINDOWS\SYSWOW64\pmcsnap.dll
2015-09-30 16:12:08 ----A---- C:\WINDOWS\SYSWOW64\PushPrinterConnections.exe
2015-09-30 16:12:08 ----A---- C:\WINDOWS\SYSWOW64\ppcsnap.dll
2015-09-30 16:11:56 ----A---- C:\WINDOWS\system32\PushPrinterConnections.exe
2015-09-30 16:11:12 ----A---- C:\WINDOWS\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-09-30 16:10:47 ----A---- C:\WINDOWS\SYSWOW64\printmanagement.msc
2015-09-30 03:19:06 ----A---- C:\WINDOWS\{00000005-00000000-00000000-00001102-00000004-10071102}.BAK
2015-09-29 22:14:59 ----D---- C:\WINDOWS\system32\MRT
2015-09-29 22:14:55 ----A---- C:\WINDOWS\system32\MRT.exe
2015-09-29 22:04:29 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-09-29 21:53:44 ----A---- C:\WINDOWS\system32\nvuninst.exe
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\SYSWOW64\cttele.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2015-09-29 21:53:30 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2015-09-29 21:47:19 ----D---- C:\Users\gagin\AppData\Roaming\Identities
2015-09-29 21:47:07 ----D---- C:\Users\gagin\AppData\Roaming\Media Center Programs
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Šablony
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Plocha
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Oblíbené položky
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Nabídka Start
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Dokumenty
2015-09-29 21:45:23 ----SHD---- C:\ProgramData\Data aplikací
2015-09-29 21:28:47 ----D---- C:\WINDOWS\SoftwareDistribution
2015-09-29 21:26:05 ----ASH---- C:\pagefile.sys
2015-09-29 21:26:04 ----SHD---- C:\System Volume Information
2015-09-29 21:26:04 ----ASH---- C:\hiberfil.sys
2015-09-10 07:44:58 ----D---- C:\ProgramData\Microsoft OneDrive
2015-09-10 07:44:25 ----D---- C:\Logs
2015-09-10 07:36:43 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-09-10 07:21:17 ----SHD---- C:\WINDOWS\BitLockerDiscoveryVolumeContents
2015-09-10 07:21:17 ----D---- C:\WINDOWS\ShellNew
2015-09-10 07:21:17 ----D---- C:\Program Files\Windows Journal
2015-09-10 07:09:22 ----D---- C:\WINDOWS\OCR
2015-09-10 07:09:15 ----D---- C:\WINDOWS\SKB
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-09-10 07:08:55 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-09-10 07:08:55 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\wmp.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-09-10 07:08:54 ----A---- C:\WINDOWS\system32\bcd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\stobject.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\shell32.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\calc.exe
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-09-10 07:08:51 ----A---- C:\WINDOWS\explorer.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\winresume.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\winload.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\usocore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\twinui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\notepad.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\hal.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\efscore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-09-10 07:08:50 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-09-10 07:08:50 ----A---- C:\WINDOWS\notepad.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wininit.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\wer.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\tquery.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\InputService.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ci.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-09-10 07:08:46 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfi005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfh005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfd005.dat
2015-09-10 07:05:38 ----A---- C:\WINDOWS\system32\perfc005.dat
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\en
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-09-10 07:05:26 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\cs
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\0409
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\winrm
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\WCN
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\slmgr
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\en
2015-09-10 07:05:24 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-09-10 07:05:24 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\cs
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\0409
2015-09-10 07:05:22 ----D---- C:\WINDOWS\cs-CZ

======List of files/folders modified in the last 1 month======

2015-10-06 11:49:11 ----D---- C:\WINDOWS\System32
2015-10-06 11:49:11 ----D---- C:\WINDOWS\INF
2015-10-06 11:45:07 ----D---- C:\WINDOWS\Temp
2015-10-06 11:44:51 ----D---- C:\WINDOWS\Tasks
2015-10-06 11:43:55 ----D---- C:\WINDOWS\system32\sru
2015-10-06 10:32:29 ----D---- C:\WINDOWS\Microsoft.NET
2015-10-06 10:16:41 ----HD---- C:\ProgramData
2015-10-05 15:30:55 ----D---- C:\WINDOWS\system32\DriverStore
2015-10-05 15:02:58 ----D---- C:\WINDOWS\system32\drivers
2015-10-04 12:51:11 ----SHD---- C:\WINDOWS\Installer
2015-10-04 12:51:08 ----D---- C:\WINDOWS\system32\Tasks
2015-10-04 12:30:30 ----D---- C:\WINDOWS\Logs
2015-10-04 12:28:40 ----D---- C:\WINDOWS\rescache
2015-10-04 12:14:00 ----D---- C:\WINDOWS\AppReadiness
2015-10-03 08:18:09 ----HD---- C:\Program Files\WindowsApps
2015-10-03 04:28:06 ----D---- C:\WINDOWS\SysWOW64
2015-10-03 04:26:50 ----D---- C:\Program Files (x86)\Common Files
2015-10-03 04:21:24 ----A---- C:\WINDOWS\win.ini
2015-10-02 12:59:23 ----D---- C:\WINDOWS\system32\config
2015-10-02 12:30:11 ----RD---- C:\WINDOWS\assembly
2015-10-02 12:17:39 ----D---- C:\WINDOWS\WinSxS
2015-10-02 09:39:46 ----RSD---- C:\WINDOWS\Fonts
2015-10-01 18:57:30 ----RD---- C:\Program Files (x86)
2015-10-01 15:06:38 ----D---- C:\Windows
2015-10-01 14:40:33 ----RD---- C:\Program Files
2015-10-01 12:43:04 ----D---- C:\WINDOWS\LiveKernelReports
2015-10-01 10:06:33 ----D---- C:\WINDOWS\system32\CatRoot
2015-10-01 10:05:36 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-10-01 10:05:36 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-10-01 10:05:33 ----SD---- C:\WINDOWS\system32\F12
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\migration
2015-10-01 10:05:33 ----D---- C:\WINDOWS\system32\appraiser
2015-10-01 10:05:32 ----RD---- C:\WINDOWS\PurchaseDialog
2015-10-01 10:05:28 ----D---- C:\WINDOWS\Provisioning
2015-10-01 10:05:27 ----D---- C:\WINDOWS\L2Schemas
2015-10-01 10:05:27 ----D---- C:\WINDOWS\AppPatch
2015-10-01 09:59:04 ----SHD---- C:\$Recycle.Bin
2015-10-01 09:57:52 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-10-01 09:29:37 ----SD---- C:\ProgramData\Microsoft
2015-10-01 09:29:37 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-10-01 09:28:54 ----D---- C:\Program Files\Common Files\microsoft shared
2015-10-01 09:26:46 ----D---- C:\WINDOWS\system32\restore
2015-10-01 07:56:04 ----D---- C:\WINDOWS\CbsTemp
2015-10-01 07:54:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-10-01 07:47:37 ----D---- C:\WINDOWS\system32\catroot2
2015-10-01 07:42:26 ----D---- C:\WINDOWS\appcompat
2015-10-01 07:41:11 ----D---- C:\WINDOWS\system32\WDI
2015-09-30 22:54:39 ----SD---- C:\WINDOWS\system32\Microsoft
2015-09-30 22:53:18 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-09-30 22:53:18 ----D---- C:\WINDOWS\system32\MUI
2015-09-30 22:10:30 ----D---- C:\Program Files\Windows NT
2015-09-30 22:10:07 ----D---- C:\WINDOWS\debug
2015-09-30 22:09:43 ----D---- C:\WINDOWS\Registration
2015-09-30 22:09:05 ----D---- C:\WINDOWS\system32\drivers\etc
2015-09-30 22:09:02 ----D---- C:\WINDOWS\system32\LogFiles
2015-09-30 22:09:01 ----RSD---- C:\WINDOWS\Media
2015-09-30 22:05:53 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-09-30 22:05:53 ----D---- C:\WINDOWS\system32\en-US
2015-09-30 22:05:53 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-09-30 22:05:16 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-09-30 22:05:16 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-09-30 22:05:15 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-09-30 22:05:12 ----D---- C:\WINDOWS\system32\NDF
2015-09-30 22:05:11 ----D---- C:\WINDOWS\system32\IME
2015-09-30 22:05:09 ----D---- C:\WINDOWS\system32\cs-CZ
2015-09-30 22:05:03 ----D---- C:\WINDOWS\schemas
2015-09-30 22:05:00 ----D---- C:\WINDOWS\ehome
2015-09-30 22:04:59 ----RD---- C:\Users
2015-09-30 22:04:57 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-09-30 22:04:57 ----D---- C:\Program Files (x86)\Windows Mail
2015-09-30 22:04:56 ----SHD---- C:\Program Files\Windows Sidebar
2015-09-30 22:04:56 ----D---- C:\Program Files\Windows Mail
2015-09-30 22:04:56 ----D---- C:\Program Files\DVD Maker
2015-09-30 22:04:56 ----D---- C:\Program Files\Common Files
2015-09-30 22:04:31 ----D---- C:\WINDOWS\system32\Recovery
2015-09-30 22:02:43 ----D---- C:\WINDOWS\system32\Sysprep
2015-09-30 22:01:16 ----D---- C:\WINDOWS\Help
2015-09-30 17:03:27 ----D---- C:\WINDOWS\SYSWOW64\manifeststore
2015-09-30 17:03:20 ----D---- C:\WINDOWS\system32\manifeststore
2015-09-29 21:26:38 ----D---- C:\WINDOWS\CSC
2015-09-15 05:31:34 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-09-10 07:42:43 ----D---- C:\WINDOWS\system32\wbem
2015-09-10 07:39:54 ----RD---- C:\WINDOWS\PrintDialog
2015-09-10 07:39:45 ----RD---- C:\WINDOWS\MiracastView
2015-09-10 07:39:39 ----RD---- C:\WINDOWS\DevicesFlow
2015-09-10 07:39:24 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\wbem
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-09-10 07:21:22 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-09-10 07:21:20 ----D---- C:\WINDOWS\system32\oobe
2015-09-10 07:21:19 ----D---- C:\WINDOWS\system32\Dism
2015-09-10 07:21:19 ----D---- C:\WINDOWS\system32\Boot
2015-09-10 07:21:18 ----D---- C:\WINDOWS\PolicyDefinitions
2015-09-10 07:21:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-09-10 07:21:18 ----D---- C:\Program Files\Internet Explorer
2015-09-10 07:21:18 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-10 07:21:17 ----D---- C:\WINDOWS\Web
2015-09-10 07:21:17 ----D---- C:\WINDOWS\SystemApps
2015-09-10 07:21:17 ----D---- C:\WINDOWS\security
2015-09-10 07:20:57 ----A---- C:\WINDOWS\SYSWOW64\scrptadm.dll
2015-09-10 07:20:57 ----A---- C:\WINDOWS\SYSWOW64\PeerDist.dll
2015-09-10 07:20:57 ----A---- C:\WINDOWS\system32\umrdp.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\auditpolmsg.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2015-09-10 07:20:56 ----A---- C:\WINDOWS\system32\AuditNativeSnapIn.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\SYSWOW64\InkAnalysis.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2015-09-10 07:20:55 ----A---- C:\WINDOWS\system32\mblctr.exe
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\rsop.msc
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\gpedit.msc
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\cscui.dll
2015-09-10 07:20:54 ----A---- C:\WINDOWS\system32\bdechangepin.exe
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\auditpolmsg.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\AuditPolicyGPInterop.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\SYSWOW64\AuditNativeSnapIn.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\system32\SensorsCpl.dll
2015-09-10 07:20:53 ----A---- C:\WINDOWS\system32\RotMgr.dll
2015-09-10 07:20:52 ----A---- C:\WINDOWS\system32\hwrreg.exe
2015-09-10 07:20:52 ----A---- C:\WINDOWS\system32\hwrcomp.exe
2015-09-10 07:20:51 ----A---- C:\WINDOWS\SYSWOW64\gpscript.exe
2015-09-10 07:20:51 ----A---- C:\WINDOWS\SYSWOW64\gpscript.dll
2015-09-10 07:20:50 ----A---- C:\WINDOWS\SYSWOW64\SrpUxNativeSnapIn.dll
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tskill.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\tscon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\rwinsta.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\reset.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qwinsta.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\quser.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\query.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qprocess.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\qappsrv.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\msg.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\logoff.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chgusr.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chgport.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\chglogon.exe
2015-09-10 07:20:50 ----A---- C:\WINDOWS\system32\change.exe
2015-09-10 07:20:49 ----A---- C:\WINDOWS\SYSWOW64\SensorsCpl.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\SYSWOW64\rdpendp.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\srmlib.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\sensrsvc.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2015-09-10 07:20:49 ----A---- C:\WINDOWS\system32\baaupdate.exe
2015-09-10 07:20:46 ----A---- C:\WINDOWS\system32\PrintBrmUi.exe
2015-09-10 07:20:46 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2015-09-10 07:20:45 ----A---- C:\WINDOWS\system32\SensorsClassExtension.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddputils.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddptrace.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\ddp_ps.dll
2015-09-10 07:20:44 ----A---- C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2015-09-10 07:20:43 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\fvewiz.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\fvecpl.dll
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\BitLockerWizardElev.exe
2015-09-10 07:20:39 ----A---- C:\WINDOWS\system32\BitLockerWizard.exe
2015-09-10 07:20:38 ----A---- C:\WINDOWS\system32\rdpclip.exe
2015-09-10 07:20:38 ----A---- C:\WINDOWS\system32\BdeSysprep.dll
2015-09-10 07:20:37 ----A---- C:\WINDOWS\SYSWOW64\AppIdPolicyEngineApi.dll
2015-09-10 07:20:32 ----A---- C:\WINDOWS\SYSWOW64\rfxvmt.dll
2015-09-10 07:20:30 ----A---- C:\WINDOWS\system32\PresentationSettings.exe
2015-09-10 07:20:30 ----A---- C:\WINDOWS\system32\appmgr.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmtrace.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmstormod.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmshell.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmscan.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srmclient.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srm_ps.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\srm.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\scrptadm.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2015-09-10 07:20:29 ----A---- C:\WINDOWS\system32\adrclient.dll
2015-09-10 07:20:28 ----A---- C:\WINDOWS\system32\secpol.msc
2015-09-10 07:20:28 ----A---- C:\WINDOWS\system32\ddpchunk.dll
2015-09-10 07:20:26 ----A---- C:\WINDOWS\system32\rdpinput.exe
2015-09-10 07:20:25 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\SensorPerformanceEvents.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\rdpudd.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\PeerDistSh.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\PeerDistCacheProvider.dll
2015-09-10 07:20:25 ----A---- C:\WINDOWS\system32\appmgmts.dll
2015-09-10 07:20:24 ----A---- C:\WINDOWS\system32\gpscript.exe
2015-09-10 07:20:24 ----A---- C:\WINDOWS\system32\gpscript.dll
2015-09-10 07:20:23 ----A---- C:\WINDOWS\system32\dfdts.dll
2015-09-10 07:20:21 ----A---- C:\WINDOWS\SYSWOW64\rsop.msc
2015-09-10 07:20:21 ----A---- C:\WINDOWS\SYSWOW64\gpedit.msc
2015-09-10 07:20:19 ----A---- C:\WINDOWS\SYSWOW64\PeerDistSh.dll
2015-09-10 07:20:19 ----A---- C:\WINDOWS\SYSWOW64\appmgmts.dll
2015-09-10 07:20:19 ----A---- C:\WINDOWS\system32\rdpendp.dll
2015-09-10 07:20:18 ----A---- C:\WINDOWS\system32\StikyNot.exe
2015-09-10 07:20:18 ----A---- C:\WINDOWS\system32\SNTSearch.dll
2015-09-10 07:20:17 ----A---- C:\WINDOWS\SYSWOW64\srmlib.dll
2015-09-10 07:20:11 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\printmanagement.msc
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\ppcsnap.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\pmcsnap.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\cscobj.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2015-09-10 07:20:09 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2015-09-10 07:20:02 ----A---- C:\WINDOWS\SYSWOW64\cscobj.dll
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\fveprompt.exe
2015-09-10 07:20:02 ----A---- C:\WINDOWS\system32\cscsvc.dll
2015-09-10 07:20:01 ----A---- C:\WINDOWS\system32\SnippingTool.exe
2015-09-10 07:20:01 ----A---- C:\WINDOWS\system32\CscMig.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\InkAnalysis.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\inetppui.dll
2015-09-10 07:20:00 ----A---- C:\WINDOWS\system32\inetpp.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\SYSWOW64\appmgr.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\embeddedapplauncher.exe
2015-09-10 07:19:59 ----A---- C:\WINDOWS\system32\DFDWiz.exe
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmtrace.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmstormod.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmshell.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmscan.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srmclient.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srm_ps.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\srm.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\SYSWOW64\adrclient.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistSvc.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistHttpTrans.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistCleaner.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDistAD.dll
2015-09-10 07:19:56 ----A---- C:\WINDOWS\system32\PeerDist.dll
2015-09-10 07:09:15 ----A---- C:\WINDOWS\system32\prm0005.dll
2015-09-10 07:08:36 ----A---- C:\WINDOWS\system32\jnwmon.dll
2015-09-10 07:05:26 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-09-10 07:05:25 ----SD---- C:\WINDOWS\system32\dsc
2015-09-10 07:05:25 ----D---- C:\WINDOWS\SYSWOW64\Com
2015-09-10 07:05:25 ----D---- C:\WINDOWS\system32\migwiz
2015-09-10 07:05:24 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-09-10 07:05:22 ----D---- C:\WINDOWS\system32\Com
2015-09-10 07:05:22 ----D---- C:\WINDOWS\servicing
2015-09-10 07:05:22 ----D---- C:\WINDOWS\IME
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Photo Viewer
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Media Player
2015-09-10 07:05:22 ----D---- C:\Program Files\Windows Defender
2015-09-10 07:05:22 ----D---- C:\Program Files\Common Files\System
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Media Player
2015-09-10 07:05:22 ----D---- C:\Program Files (x86)\Windows Defender

Re: prosim pc je pomalé

Napsal: 06 říj 2015 10:53
od dart500
pokračování



======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2014-10-10 241368]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2014-10-10 243440]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2014-10-10 169280]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2015-10-01 26528]
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [2014-10-10 158968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 COMMONFX.DLL;COMMONFX.DLL; C:\WINDOWS\System32\COMMONFX.DLL [2007-04-12 151296]
R3 ctaud2k;@oem2.inf,%CTAUD2K.SvcDesc%;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2007-04-10 863016]
R3 CTAUDFX.DLL;CTAUDFX.DLL; C:\WINDOWS\System32\CTAUDFX.DLL [2007-04-10 700200]
R3 ctprxy2k;@oem2.inf,%CTPRXY2K.SvcDesc%;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys [2007-04-10 17192]
R3 CTSBLFX.DLL;CTSBLFX.DLL; C:\WINDOWS\System32\CTSBLFX.DLL [2007-04-10 681256]
R3 ctsfm2k;@oem2.inf,%CTSFM2K.SvcDesc%;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\drivers\ctsfm2k.sys [2007-04-10 290600]
R3 emupia;@oem2.inf,%EMUPIA.SvcDesc%;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys [2007-04-10 147752]
R3 ha10kx2k;@oem2.inf,%HA10KX.SvcDesc%;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2007-04-10 1359144]
R3 hap16v2k;@oem2.inf,%HAP16V2K.SvcDesc%;Creative P16V HAL Driver; C:\WINDOWS\system32\drivers\hap16v2k.sys [2007-04-10 259880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-10-01 4585728]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-10-01 12905144]
R3 ossrv;@oem2.inf,%OSSRV.SvcDesc%;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2007-04-10 218408]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-18 587264]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-09-17 36352]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 CT20XUT.DLL;CT20XUT.DLL; C:\WINDOWS\System32\CT20XUT.DLL [2007-04-10 252712]
S3 ctac32k;@oem2.inf,%CTAC32K.SvcDesc%;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys [2007-04-10 580904]
S3 CTEAPSFX.DLL;CTEAPSFX.DLL; C:\WINDOWS\System32\CTEAPSFX.DLL [2007-04-10 219432]
S3 CTEDSPFX.DLL;CTEDSPFX.DLL; C:\WINDOWS\System32\CTEDSPFX.DLL [2007-04-10 321832]
S3 CTEDSPIO.DLL;CTEDSPIO.DLL; C:\WINDOWS\System32\CTEDSPIO.DLL [2007-04-10 190248]
S3 CTEDSPSY.DLL;CTEDSPSY.DLL; C:\WINDOWS\System32\CTEDSPSY.DLL [2007-04-10 363304]
S3 CTERFXFX.DLL;CTERFXFX.DLL; C:\WINDOWS\System32\CTERFXFX.DLL [2007-04-10 142120]
S3 CTEXFIFX.DLL;CTEXFIFX.DLL; C:\WINDOWS\System32\CTEXFIFX.DLL [2007-04-10 1571112]
S3 CTHWIUT.DLL;CTHWIUT.DLL; C:\WINDOWS\System32\CTHWIUT.DLL [2007-04-10 123688]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hap17v2k;@oem2.inf,%HAP17V2K.SvcDesc%;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys [2007-04-10 295208]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-09-10 934752]
S3 Rockusb;@oem22.inf,%Rockusb_SvcDesc%;Driver for Emgeton Consul 11; C:\WINDOWS\system32\DRIVERS\rockusb.sys [2013-01-03 65648]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-09-10 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Sériový ovladač USB od společnosti Microsoft; C:\WINDOWS\System32\drivers\usbser.sys [2015-09-10 67072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DeviceHealth;Microsoft Device Health Machine Service; C:\Program Files (x86)\Microsoft Device Health\DhMachineSvc.exe [2015-01-30 196760]
R2 DeviceHealthPluginMgr;Microsoft Device Health Manager Service; C:\Program Files (x86)\Microsoft Device Health\PluginManager\DhPluginMgr.exe [2015-01-30 244376]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2014-10-01 1349576]
R2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2015-07-29 2909472]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-08-18 933168]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 pcas;Alipay payment client security service; C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\pcas.exe [2015-03-23 592856]
R2 secbizsrv;Alipay security business service; C:\Program Files (x86)\alipay\aliedit\5.3.0.3807\secbizsrv.exe [2015-03-23 594904]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-08-17 409776]
R2 TBSecSvc;TBSecSvc; C:\Program Files (x86)\TaobaoProtect\TBSecSvc.exe [2015-09-08 227112]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-09-10 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]

-----------------EOF-----------------

Re: prosim pc je pomalé

Napsal: 06 říj 2015 16:40
od Rudy
OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

Re: prosim pc je pomalé

Napsal: 07 říj 2015 14:19
od dart500
ano hotovo děkuji zdá se to rychlejší .

zbytek už bude asi slabé pc na nejnovější windows .

děkuji moc za pomoc
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz