100% zátěž procesoru (svchost.exe a WmiPrvSE.exe)
Napsal: 01 srp 2016 18:40
Zdravím,
posledních několik dní se počítač zbláznil a cca po 80% času je procesor vytížený na max. Užírá ho hlavně svchost (cca 25%) a WmiPrvSE (20-65%). Nejdřív jsem tomu nevěnoval moc pozornost a předpokládal, že je to nějaká win 10 šupárna, co si něco upravuje na pozadí, ale člověka trochu dopálí, když už ani youtube něběží plynule (což je na xeonu 1231v3 poněkud .. zvláštní). Avira nic nenašla, Malwarebytes taky ne, Ccleaner nepomohl.
A tak jsem tady a prosím o radu než se mi pod stolem rozteče bedna
. Přidávám log z RSITu a díky za každou radu 
Logfile of random's system information tool 1.10 (written by random/random)
Run by Petr Štrunc at 2016-08-01 19:21:46
Microsoft Windows 10 Home
System drive C: has 51 GB (44%) free of 114 GB
Total RAM: 8135 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:21:51, on 01.08.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0494)
Boot mode: Normal
Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\program files (x86)\avira\antivirus\avscan.exe
C:\program files (x86)\avira\antivirus\avscan.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Petr Štrunc.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Petr Štrunc\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Sidebar609.lnk = C:\Program Files\Windows Sidebar\sidebar.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~4\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = zcu.cz,pilsfree.czf
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = zcu.cz,pilsfree.czf
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - E:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\WINDOWS\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - E:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect Secure Mobility Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13493 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-541aab18-5391-4bc6-a610-ea9481330396 -SystemEventPortName:HostProcess-dd4428dc-fcc7-46a8-b212-de14ae5549e2 -IoCancelEventPortName:HostProcess-6414d5fc-3d19-4032-82ce-aed250c21e68 -NonStateChangingEventPortName:HostProcess-3fe4de1f-81b0-4914-845e-77adf12a1cde -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0c61663b-a71d-46a2-9e30-ec128a76835c -DeviceGroupId:WudfDefaultDevicePool
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {a325cb00-5b46-4815-84d385d8a2e1479d}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000009cc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\program files (x86)\avira\antivirus\avscan.exe" /CFG="C:\Program Files (x86)\Avira\Antivirus\sysscan.avp"
"C:\program files (x86)\avira\antivirus\avscan.exe" /CFG="C:\Program Files (x86)\Avira\Antivirus\sysscan.avp"
taskhostw.exe
C:\WINDOWS\AutoKMS\AutoKMS.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"cmd.exe" /C C:\WINDOWS\TEMP\InstallTAPAdapter.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\TEMP\InstallTAPAdapter.exe
C:\WINDOWS\system32\cmd.exe /c ""C:\Windows\Temp\7ZipSfx.003\install.cmd" "
\??\C:\WINDOWS\system32\conhost.exe 0x4
x64\devcon.exe install x64\OemWin2k.inf tapoas
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe25_ Global\UsGthrCtrlFltPipeMssGthrPipe25 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 648 652 660 8192 656
C:\WINDOWS\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
"E:\aaa\stazene\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
DrvInst.exe "2" "201" "ROOT\NET\0153" "C:\WINDOWS\INF\oem17.inf" "oemwin2k.inf:3beb73aff103cc24:tapoas.ndi:9.0.0.7:tapoas" "4fd423e43" "000000000000114C"
======Scheduled tasks folder======
C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Petr Štrunc\AppData\Roaming\Mozilla\Firefox\Profiles\PCIYmBCQ.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Petr Štrunc\AppData\Roaming\Mozilla\Firefox\Profiles\PCIYmBCQ.default\extensions\
abs@avira.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01 205416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-07-02 553024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office15\URLREDIR.DLL [2012-10-01 877720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~4\Office15\GROOVEEX.DLL [2012-10-01 2322576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-02 214080]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01 139368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2012-10-01 704664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-09-02 7636696]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-05-28 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-01-12 2787264]
"iTunesHelper"=E:\iTunes\iTunesHelper.exe [2016-06-01 176952]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-01-12 1860120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Petr [2016-03-09 87]
"DAEMON Tools Lite Automount"=E:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2016-07-01 465920]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-02-12 8641240]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2015-11-30 60688]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2015-11-30 103696]
"iCloudPhotos"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [2015-11-30 349968]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2015-11-30 61200]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-07-05 24204648]
"Cisco AnyConnect Secure Mobility Agent for Windows"=C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2014-06-11 707496]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-05-20 595992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-07-11 67840]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-07-18 831064]
C:\Users\Petr Štrunc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sidebar609.lnk - C:\Program Files\Windows Sidebar\sidebar.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-08-01 19:21:46 ----D---- C:\rsit
2016-08-01 19:21:46 ----D---- C:\Program Files\trend micro
2016-08-01 11:11:09 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-08-01 11:11:07 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\Avira
2016-08-01 11:10:52 ----D---- C:\ProgramData\Malwarebytes
2016-08-01 11:10:52 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2016-08-01 11:10:52 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2016-08-01 11:10:52 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2016-08-01 11:03:38 ----SHD---- C:\Config.Msi
2016-08-01 11:00:52 ----D---- C:\WINDOWS\LastGood.Tmp
2016-08-01 11:00:49 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2016-08-01 11:00:49 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2016-08-01 10:55:23 ----D---- C:\ProgramData\Thunder Network
2016-08-01 10:54:46 ----D---- C:\ProgramData\DriverTalent
2016-08-01 10:54:43 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\DriverTalent
2016-08-01 10:54:38 ----D---- C:\Program Files (x86)\OSTotoSoft
2016-07-30 10:19:45 ----N---- C:\WINDOWS\system32\drivers\SETB9B9.tmp
2016-07-30 10:17:41 ----A---- C:\WINDOWS\system32\drivers\avnetflt.sys
2016-07-30 10:17:40 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2016-07-30 10:17:40 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2016-07-30 10:17:40 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2016-07-30 10:12:30 ----D---- C:\ProgramData\Avira
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-GB
2016-07-29 16:04:05 ----D---- C:\WINDOWS\system32\drivers\en-GB
2016-07-29 16:04:04 ----D---- C:\WINDOWS\en-GB
2016-07-25 20:23:49 ----D---- C:\Program Files (x86)\Microsoft XNA
2016-07-25 19:26:55 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-07-13 21:32:55 ----D---- C:\Program Files\iPod
2016-07-13 21:32:55 ----D---- C:\Program Files (x86)\iTunes
2016-07-13 21:05:36 ----D---- C:\ProgramData\AVAST Software
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-07-13 09:13:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-07-13 09:13:36 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-07-13 09:13:36 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-07-13 09:13:35 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-07-13 09:13:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-07-13 09:13:34 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-07-13 09:13:33 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-07-13 09:13:33 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-13 09:13:33 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-07-13 09:13:33 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-07-13 09:13:32 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-07-13 09:13:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-07-13 09:13:32 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-07-13 09:13:31 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-07-13 09:13:31 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-07-13 09:13:31 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-07-13 09:13:30 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-07-13 09:13:30 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-07-13 09:13:30 ----A---- C:\WINDOWS\system32\ole32.dll
2016-07-13 09:13:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-07-13 09:13:29 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-07-13 09:13:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-07-13 09:13:29 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-07-13 09:13:29 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-07-13 09:13:27 ----A---- C:\WINDOWS\system32\wmp.dll
2016-07-13 09:13:26 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-07-13 09:13:26 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-07-13 09:13:26 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-13 09:13:25 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-07-13 09:13:25 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-07-13 09:13:25 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-07-13 09:13:24 ----A---- C:\WINDOWS\system32\DXCaptureReplay.dll
2016-07-13 09:13:24 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-07-13 09:13:23 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-07-13 09:13:23 ----A---- C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2016-07-13 09:13:23 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-07-13 09:13:23 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-07-13 09:13:22 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-07-13 09:13:22 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-07-13 09:13:22 ----A---- C:\WINDOWS\system32\localspl.dll
2016-07-13 09:13:22 ----A---- C:\WINDOWS\system32\authui.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\provengine.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\winmde.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\provops.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\propsys.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\DXCap.exe
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\dui70.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\VsGraphicsExperiment.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\DXToolsMonitor.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\webio.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\StikyNot.exe
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\inetpp.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\d3d12SDKLayers.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\cdd.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\SYSWOW64\wlanui.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\ntprint.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\duser.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\d3d10.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\d2d1debug3.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\system32\VsGraphicsCapture.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\system32\RADCUI.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\SYSWOW64\dot3ui.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\system32\d3d10_1.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-07-13 09:13:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-07-13 09:13:10 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-07-13 09:13:10 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-13 09:13:10 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-07-13 09:13:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-13 09:13:09 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-07-13 09:13:09 ----A---- C:\WINDOWS\system32\wininet.dll
2016-07-13 09:13:09 ----A---- C:\WINDOWS\system32\twinui.dll
2016-07-13 09:13:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-07-13 09:13:08 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-13 09:13:08 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-13 09:13:08 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-07-13 09:13:08 ----A---- C:\WINDOWS\explorer.exe
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-07-13 09:13:06 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-07-13 09:13:06 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-07-13 09:13:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-07-13 09:13:05 ----A---- C:\WINDOWS\system32\Wpc.dll
2016-07-13 09:13:05 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-07-13 09:13:05 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-07-13 09:13:04 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-07-13 09:13:02 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-07-13 09:13:02 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\WLanConn.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\winipcfile.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\gameux.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\Display.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\SYSWOW64\sbe.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\WmpDui.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\wlanui.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\sud.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\msieftp.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\winmsipc.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-07-13 09:12:55 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-07-13 09:12:55 ----A---- C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\SYSWOW64\IconCodecService.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-07-13 09:12:54 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\system32\werui.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-07-13 09:12:54 ----A---- C:\WINDOWS\system32\cdpreference.exe
2016-07-13 09:12:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-07-13 09:12:52 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-07-13 09:12:52 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-07-13 09:12:52 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-07-13 09:12:52 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-07-13 09:12:52 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-07-13 09:12:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-07-13 09:12:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-07-13 09:12:50 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-13 09:12:50 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-13 09:12:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-07-13 09:12:49 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-13 09:12:49 ----A---- C:\WINDOWS\system32\tquery.dll
2016-07-13 09:12:49 ----A---- C:\WINDOWS\system32\SRH.dll
2016-07-13 09:12:48 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-07-13 09:12:48 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-07-13 09:12:48 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-07-13 09:12:48 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-07-13 09:12:48 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\moshost.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\mf.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\diagperf.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\WmpDui.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\winipcfile.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\wiaaut.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\oemlicense.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\licensingdiag.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Clipc.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WSService.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WSClient.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\wldp.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\sbe.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\rdpcore.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\phoneactivate.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\mssphtb.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\mssph.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\fhengine.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\edputil.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\APHostService.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\HelpPane.exe
2016-07-13 09:12:44 ----A---- C:\WINDOWS\SYSWOW64\winmsipc.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-07-13 09:12:44 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\msscntrs.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\DXCaptureReplay.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsRemoteEngine.exe
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-07-13 09:12:40 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsExperiment.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsDesktopEngine.exe
2016-07-13 09:12:40 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsCapture.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\SimCfg.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\DXToolsMonitor.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\schtasks.exe
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\certcli.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsExt.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Speech.Pal.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\SimAuth.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\edputil.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eappprxy.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\DXCap.exe
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\d3d12SDKLayers.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\d3d11_3SDKLayers.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\d2d1debug3.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\themeui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\oemlicense.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\netshell.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\ieui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\IconCodecService.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Clipc.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\invagent.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\devinv.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-07-13 09:12:36 ----A---- C:\WINDOWS\system32\shell32.dll
2016-07-13 09:12:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-07-13 09:12:34 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-07-13 09:12:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\xpsservices.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\usocore.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\aepic.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\ProximityCommon.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\duser.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\winresume.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\winload.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\werconcpl.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\taskeng.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\taskcomp.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\sdengin2.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\rasgcw.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\netcenter.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\dot3ui.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\wiaaut.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\sdshext.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-07-10 18:07:03 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\Command & Conquer 3 Tiberium Wars
======List of files/folders modified in the last 1 month======
2016-08-01 19:21:50 ----D---- C:\WINDOWS\Temp
2016-08-01 19:21:50 ----D---- C:\WINDOWS\system32\drivers
2016-08-01 19:21:46 ----RD---- C:\Program Files
2016-08-01 19:21:42 ----D---- C:\WINDOWS\Prefetch
2016-08-01 19:11:54 ----D---- C:\Windows
2016-08-01 19:11:49 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\foobar2000
2016-08-01 18:43:59 ----SHD---- C:\System Volume Information
2016-08-01 17:43:17 ----D---- C:\WINDOWS\system32\sru
2016-08-01 16:28:11 ----D---- C:\WINDOWS\system32\config
2016-08-01 16:25:48 ----D---- C:\WINDOWS\Microsoft.NET
2016-08-01 11:43:26 ----D---- C:\WINDOWS\System32
2016-08-01 11:43:26 ----D---- C:\WINDOWS\INF
2016-08-01 11:43:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-01 11:37:26 ----D---- C:\ProgramData\NVIDIA
2016-08-01 11:10:52 ----HD---- C:\ProgramData
2016-08-01 11:03:40 ----SHDC---- C:\WINDOWS\Installer
2016-08-01 11:03:40 ----RD---- C:\Program Files (x86)
2016-08-01 11:03:40 ----D---- C:\WINDOWS\SysWOW64
2016-08-01 11:03:30 ----D---- C:\WINDOWS\system32\Tasks
2016-08-01 11:01:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-08-01 10:58:31 ----D---- C:\ProgramData\Package Cache
2016-08-01 10:58:21 ----D---- C:\Program Files\Intel
2016-08-01 00:35:35 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\uTorrent
2016-07-31 22:33:29 ----D---- C:\WINDOWS\AppReadiness
2016-07-31 22:28:21 ----HD---- C:\Program Files\WindowsApps
2016-07-30 15:27:43 ----D---- C:\WINDOWS\rescache
2016-07-30 10:17:39 ----D---- C:\Program Files (x86)\Avira
2016-07-30 08:58:24 ----D---- C:\WINDOWS\WinSxS
2016-07-29 23:54:52 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-07-29 23:54:52 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-07-29 23:54:52 ----D---- C:\WINDOWS\system32\en-US
2016-07-29 23:54:52 ----D---- C:\WINDOWS\system32\en-GB
2016-07-29 23:54:52 ----D---- C:\WINDOWS\system32\drivers\en-US
2016-07-29 19:43:20 ----D---- C:\WINDOWS\CbsTemp
2016-07-29 19:42:42 ----D---- C:\WINDOWS\debug
2016-07-29 18:28:53 ----D---- C:\WINDOWS\system32\catroot2
2016-07-29 17:53:18 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\vlc
2016-07-29 16:04:09 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\winrm
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\WCN
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\oobe
2016-07-29 16:04:08 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\en
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-07-29 16:04:08 ----D---- C:\WINDOWS\system32\winrm
2016-07-29 16:04:08 ----D---- C:\WINDOWS\system32\WCN
2016-07-29 16:04:07 ----SD---- C:\WINDOWS\system32\F12
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\wbem
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\slmgr
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\oobe
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\migwiz
2016-07-29 16:04:06 ----D---- C:\WINDOWS\system32\en
2016-07-29 16:04:05 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-07-29 16:04:05 ----RD---- C:\WINDOWS\PurchaseDialog
2016-07-29 16:04:05 ----RD---- C:\WINDOWS\MiracastView
2016-07-29 16:04:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-07-29 16:04:05 ----D---- C:\WINDOWS\system32\Boot
2016-07-29 16:04:05 ----D---- C:\WINDOWS\servicing
2016-07-29 16:04:05 ----D---- C:\WINDOWS\PolicyDefinitions
2016-07-29 16:04:04 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-07-29 16:04:04 ----RD---- C:\WINDOWS\DevicesFlow
2016-07-29 16:04:04 ----D---- C:\WINDOWS\IME
2016-07-29 16:04:04 ----D---- C:\WINDOWS\Help
2016-07-29 16:04:04 ----D---- C:\WINDOWS\en-US
2016-07-29 16:04:04 ----D---- C:\Program Files\Windows Photo Viewer
2016-07-29 16:04:04 ----D---- C:\Program Files\Windows Media Player
2016-07-29 16:04:04 ----D---- C:\Program Files\Windows Journal
2016-07-29 16:04:04 ----D---- C:\Program Files\Windows Defender
2016-07-29 16:04:04 ----D---- C:\Program Files\Internet Explorer
2016-07-29 16:04:04 ----D---- C:\Program Files\Common Files\System
2016-07-29 16:04:04 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-07-29 16:04:04 ----D---- C:\Program Files (x86)\Windows Media Player
2016-07-29 16:04:04 ----D---- C:\Program Files (x86)\Windows Defender
2016-07-29 16:04:04 ----D---- C:\Program Files (x86)\Internet Explorer
2016-07-29 15:45:53 ----SD---- C:\ProgramData\Microsoft
2016-07-29 15:40:45 ----D---- C:\WINDOWS\SoftwareDistribution
2016-07-29 15:40:08 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\DAEMON Tools Lite
2016-07-29 15:40:06 ----D---- C:\WINDOWS\Logs
2016-07-28 22:49:45 ----D---- C:\WINDOWS\Tasks
2016-07-28 12:45:25 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\Skype
2016-07-28 12:45:11 ----D---- C:\ProgramData\Skype
2016-07-28 12:45:09 ----RD---- C:\Program Files (x86)\Skype
2016-07-28 12:36:16 ----SD---- C:\Users\Petr Štrunc\AppData\Roaming\Microsoft
2016-07-27 21:25:34 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-07-25 20:23:50 ----RSD---- C:\WINDOWS\assembly
2016-07-25 16:56:51 ----D---- C:\Miniconda2
2016-07-13 22:36:57 ----D---- C:\WINDOWS\system32\drivers\etc
2016-07-13 21:32:54 ----D---- C:\Program Files\Common Files\Apple
2016-07-13 21:16:59 ----D---- C:\Program Files (x86)\Common Files
2016-07-13 21:15:27 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-07-13 17:52:01 ----SHD---- C:\Boot
2016-07-13 14:25:58 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-07-13 14:25:58 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-07-13 14:25:55 ----D---- C:\WINDOWS\system32\migration
2016-07-13 14:25:55 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-07-13 14:25:55 ----D---- C:\WINDOWS\system32\cs-CZ
2016-07-13 14:25:55 ----D---- C:\WINDOWS\system32\appraiser
2016-07-13 14:25:53 ----RD---- C:\WINDOWS\PrintDialog
2016-07-13 14:25:53 ----D---- C:\WINDOWS\Provisioning
2016-07-13 14:25:53 ----D---- C:\WINDOWS\bcastdvr
2016-07-13 14:25:53 ----D---- C:\WINDOWS\AppPatch
2016-07-13 14:25:53 ----D---- C:\Program Files\Windows Mail
2016-07-13 14:25:53 ----D---- C:\Program Files (x86)\Windows Mail
2016-07-13 09:17:38 ----D---- C:\WINDOWS\system32\MRT
2016-07-13 09:15:07 ----A---- C:\WINDOWS\system32\MRT.exe
2016-07-08 20:46:10 ----D---- C:\Program Files (x86)\Dropbox
2016-07-02 11:15:27 ----D---- C:\ProgramData\Oracle
2016-07-02 11:03:52 ----D---- C:\Program Files\Java
2016-07-02 11:03:31 ----A---- C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-07-02 11:02:12 ----DC---- C:\WINDOWS\Panther
2016-07-02 06:37:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-05-28 672104]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2014-01-28 15232]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2016-07-18 154392]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2016-07-18 35488]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2016-07-18 144664]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2016-07-18 78208]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 dtlitescsibus;@oem7.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-25 30264]
R3 dtliteusbbus;@oem14.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-25 46392]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-09-02 4264536]
R3 MEIx64;@oem32.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2016-03-14 129312]
R3 NVHDA;@oem15.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-12-16 205456]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-12-18 12426896]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-01-12 26560]
R3 nvvad_WaveExtensible;@oem26.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-12-18 47760]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
R3 SensorsSimulatorDriver;@oem19.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2015-10-30 216064]
R3 tap0901;@oem16.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2013-08-22 40664]
R3 tapoas;@oem17.inf,%DeviceDescription%;TAP-Win32 Adapter OAS; C:\WINDOWS\System32\drivers\tapoas.sys [2012-07-15 30720]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 acsock;acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [2014-06-11 112496]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-13 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 lvpepf64;@oem37.inf,%pepifilter.SrvDesc%;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302a64.sys [2008-07-26 15768]
S3 lvrs64;@oem37.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
S3 LVUSBS64;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
S3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2016-03-10 27008]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2016-03-10 65408]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 PID_PEPI;@oem35.inf,%PID_08A0_DD%(PID_PEPI);Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V64.SYS [2008-07-26 2624408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2016-07-18 472112]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2016-07-18 472112]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [2014-01-28 936728]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-07-11 309384]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-01-12 1163200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-05-28 16232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-04-29 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-04-29 398296]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-01-12 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-01-12 4812736]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-12-16 1256240]
R2 OneSyncSvc_7f658f;Hostitel synchronizace_7f658f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2016-02-27 131784]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-12-16 417584]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-01-12 6308288]
R3 PimIndexMaintenanceSvc_7f658f;Data kontaktů_7f658f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2016-07-18 989696]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2016-07-18 1453696]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-02 143144]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-25 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 MBAMService;MBAMService; E:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_14f61c;Hostitel synchronizace_14f61c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1bea61;Hostitel synchronizace_1bea61; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1dee9e;Hostitel synchronizace_1dee9e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3607e;Hostitel synchronizace_3607e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_93aa59;Hostitel synchronizace_93aa59; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_ee8d556;Hostitel synchronizace_ee8d556; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-02 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2016-06-20 245544]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-25 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-06-01 651576]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_14f61c;Služba zasílání zpráv_14f61c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1bea61;Služba zasílání zpráv_1bea61; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1dee9e;Služba zasílání zpráv_1dee9e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7f658f;Služba zasílání zpráv_7f658f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_93aa59;Služba zasílání zpráv_93aa59; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_ee8d556;Služba zasílání zpráv_ee8d556; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-21 146888]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-01 178824]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_14f61c;Data kontaktů_14f61c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1bea61;Data kontaktů_1bea61; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1dee9e;Data kontaktů_1dee9e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_93aa59;Data kontaktů_93aa59; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_ee8d556;Data kontaktů_ee8d556; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-07-09 1450064]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 MBAMScheduler;MBAMScheduler; E:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2016-03-10 1514464]
-----------------EOF-----------------
posledních několik dní se počítač zbláznil a cca po 80% času je procesor vytížený na max. Užírá ho hlavně svchost (cca 25%) a WmiPrvSE (20-65%). Nejdřív jsem tomu nevěnoval moc pozornost a předpokládal, že je to nějaká win 10 šupárna, co si něco upravuje na pozadí, ale člověka trochu dopálí, když už ani youtube něběží plynule (což je na xeonu 1231v3 poněkud .. zvláštní). Avira nic nenašla, Malwarebytes taky ne, Ccleaner nepomohl.
A tak jsem tady a prosím o radu než se mi pod stolem rozteče bedna
. Přidávám log z RSITu a díky za každou radu Logfile of random's system information tool 1.10 (written by random/random)
Run by Petr Štrunc at 2016-08-01 19:21:46
Microsoft Windows 10 Home
System drive C: has 51 GB (44%) free of 114 GB
Total RAM: 8135 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:21:51, on 01.08.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0494)
Boot mode: Normal
Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\program files (x86)\avira\antivirus\avscan.exe
C:\program files (x86)\avira\antivirus\avscan.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Petr Štrunc.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Petr Štrunc\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "E:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Sidebar609.lnk = C:\Program Files\Windows Sidebar\sidebar.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~4\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = zcu.cz,pilsfree.czf
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = zcu.cz,pilsfree.czf
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - E:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\WINDOWS\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - E:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect Secure Mobility Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13493 bytes
======Listing Processes======
C:\WINDOWS\system32\lsass.exe
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-541aab18-5391-4bc6-a610-ea9481330396 -SystemEventPortName:HostProcess-dd4428dc-fcc7-46a8-b212-de14ae5549e2 -IoCancelEventPortName:HostProcess-6414d5fc-3d19-4032-82ce-aed250c21e68 -NonStateChangingEventPortName:HostProcess-3fe4de1f-81b0-4914-845e-77adf12a1cde -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0c61663b-a71d-46a2-9e30-ec128a76835c -DeviceGroupId:WudfDefaultDevicePool
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {a325cb00-5b46-4815-84d385d8a2e1479d}
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000009cc
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe"
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe"
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\program files (x86)\avira\antivirus\avscan.exe" /CFG="C:\Program Files (x86)\Avira\Antivirus\sysscan.avp"
"C:\program files (x86)\avira\antivirus\avscan.exe" /CFG="C:\Program Files (x86)\Avira\Antivirus\sysscan.avp"
taskhostw.exe
C:\WINDOWS\AutoKMS\AutoKMS.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
"cmd.exe" /C C:\WINDOWS\TEMP\InstallTAPAdapter.exe
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\TEMP\InstallTAPAdapter.exe
C:\WINDOWS\system32\cmd.exe /c ""C:\Windows\Temp\7ZipSfx.003\install.cmd" "
\??\C:\WINDOWS\system32\conhost.exe 0x4
x64\devcon.exe install x64\OemWin2k.inf tapoas
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe25_ Global\UsGthrCtrlFltPipeMssGthrPipe25 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 648 652 660 8192 656
C:\WINDOWS\explorer.exe /factory,{ceff45ee-c862-41de-aee2-a022c81eda92} -Embedding
"E:\aaa\stazene\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
DrvInst.exe "2" "201" "ROOT\NET\0153" "C:\WINDOWS\INF\oem17.inf" "oemwin2k.inf:3beb73aff103cc24:tapoas.ndi:9.0.0.7:tapoas" "4fd423e43" "000000000000114C"
======Scheduled tasks folder======
C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Petr Štrunc\AppData\Roaming\Mozilla\Firefox\Profiles\PCIYmBCQ.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MIF5BA~1\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2]
"Description"=VLC Multimedia Plugin
"Path"=E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Petr Štrunc\AppData\Roaming\Mozilla\Firefox\Profiles\PCIYmBCQ.default\extensions\
abs@avira.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01 205416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-07-02 553024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office15\URLREDIR.DLL [2012-10-01 877720]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~4\Office15\GROOVEEX.DLL [2012-10-01 2322576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-02 214080]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01 139368]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office15\URLREDIR.DLL [2012-10-01 704664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL [2012-10-01 1720976]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-09-02 7636696]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-05-28 36352]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-01-12 2787264]
"iTunesHelper"=E:\iTunes\iTunesHelper.exe [2016-06-01 176952]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-01-12 1860120]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Petr [2016-03-09 87]
"DAEMON Tools Lite Automount"=E:\Program Files\DAEMON Tools Lite\DTAgent.exe [2015-11-30 4179288]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2016-07-01 465920]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-02-12 8641240]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2015-11-30 60688]
"iCloudDrive"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [2015-11-30 103696]
"iCloudPhotos"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [2015-11-30 349968]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2015-11-30 61200]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2016-07-05 24204648]
"Cisco AnyConnect Secure Mobility Agent for Windows"=C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [2014-06-11 707496]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-05-20 595992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-07-11 67840]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-07-18 831064]
C:\Users\Petr Štrunc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sidebar609.lnk - C:\Program Files\Windows Sidebar\sidebar.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-08-01 19:21:46 ----D---- C:\rsit
2016-08-01 19:21:46 ----D---- C:\Program Files\trend micro
2016-08-01 11:11:09 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2016-08-01 11:11:07 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\Avira
2016-08-01 11:10:52 ----D---- C:\ProgramData\Malwarebytes
2016-08-01 11:10:52 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2016-08-01 11:10:52 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2016-08-01 11:10:52 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2016-08-01 11:03:38 ----SHD---- C:\Config.Msi
2016-08-01 11:00:52 ----D---- C:\WINDOWS\LastGood.Tmp
2016-08-01 11:00:49 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2016-08-01 11:00:49 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2016-08-01 10:55:23 ----D---- C:\ProgramData\Thunder Network
2016-08-01 10:54:46 ----D---- C:\ProgramData\DriverTalent
2016-08-01 10:54:43 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\DriverTalent
2016-08-01 10:54:38 ----D---- C:\Program Files (x86)\OSTotoSoft
2016-07-30 10:19:45 ----N---- C:\WINDOWS\system32\drivers\SETB9B9.tmp
2016-07-30 10:17:41 ----A---- C:\WINDOWS\system32\drivers\avnetflt.sys
2016-07-30 10:17:40 ----A---- C:\WINDOWS\system32\drivers\avkmgr.sys
2016-07-30 10:17:40 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys
2016-07-30 10:17:40 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys
2016-07-30 10:12:30 ----D---- C:\ProgramData\Avira
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-GB
2016-07-29 16:04:05 ----D---- C:\WINDOWS\system32\drivers\en-GB
2016-07-29 16:04:04 ----D---- C:\WINDOWS\en-GB
2016-07-25 20:23:49 ----D---- C:\Program Files (x86)\Microsoft XNA
2016-07-25 19:26:55 ----D---- C:\WINDOWS\SYSWOW64\directx
2016-07-13 21:32:55 ----D---- C:\Program Files\iPod
2016-07-13 21:32:55 ----D---- C:\Program Files (x86)\iTunes
2016-07-13 21:05:36 ----D---- C:\ProgramData\AVAST Software
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MosHostClient.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-07-13 09:13:37 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-07-13 09:13:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-07-13 09:13:36 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-07-13 09:13:36 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-07-13 09:13:35 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-07-13 09:13:34 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-07-13 09:13:34 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-07-13 09:13:33 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-07-13 09:13:33 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-13 09:13:33 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-07-13 09:13:33 ----A---- C:\WINDOWS\system32\d2d1.dll
2016-07-13 09:13:32 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-07-13 09:13:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-07-13 09:13:32 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-07-13 09:13:31 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-07-13 09:13:31 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-07-13 09:13:31 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-07-13 09:13:30 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-07-13 09:13:30 ----A---- C:\WINDOWS\system32\vbscript.dll
2016-07-13 09:13:30 ----A---- C:\WINDOWS\system32\ole32.dll
2016-07-13 09:13:30 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-07-13 09:13:29 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-07-13 09:13:29 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-07-13 09:13:29 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-07-13 09:13:29 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-07-13 09:13:27 ----A---- C:\WINDOWS\system32\wmp.dll
2016-07-13 09:13:26 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-07-13 09:13:26 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-07-13 09:13:26 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-13 09:13:25 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-07-13 09:13:25 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-07-13 09:13:25 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-07-13 09:13:24 ----A---- C:\WINDOWS\system32\DXCaptureReplay.dll
2016-07-13 09:13:24 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-07-13 09:13:23 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2016-07-13 09:13:23 ----A---- C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2016-07-13 09:13:23 ----A---- C:\WINDOWS\system32\msftedit.dll
2016-07-13 09:13:23 ----A---- C:\WINDOWS\system32\msfeeds.dll
2016-07-13 09:13:22 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-07-13 09:13:22 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2016-07-13 09:13:22 ----A---- C:\WINDOWS\system32\localspl.dll
2016-07-13 09:13:22 ----A---- C:\WINDOWS\system32\authui.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\provhandlers.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\provengine.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-07-13 09:13:21 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\winmde.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-07-13 09:13:20 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\provops.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\propsys.dll
2016-07-13 09:13:19 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\DXCap.exe
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\dui70.dll
2016-07-13 09:13:18 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\SYSWOW64\xpsservices.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\wpdshext.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\VsGraphicsExperiment.dll
2016-07-13 09:13:17 ----A---- C:\WINDOWS\system32\DXToolsMonitor.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\wmpps.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\webio.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\StikyNot.exe
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\SHCore.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-07-13 09:13:16 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\inetpp.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\d3d12SDKLayers.dll
2016-07-13 09:13:15 ----A---- C:\WINDOWS\system32\cdd.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\SYSWOW64\wlanui.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\webcheck.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\ntprint.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\duser.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\d3d10.dll
2016-07-13 09:13:14 ----A---- C:\WINDOWS\system32\d2d1debug3.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\wpdshext.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\SYSWOW64\netcenter.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\system32\VsGraphicsCapture.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\system32\RADCUI.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-07-13 09:13:13 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\SYSWOW64\dot3ui.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\system32\d3d10_1.dll
2016-07-13 09:13:12 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-13 09:13:11 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-07-13 09:13:10 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2016-07-13 09:13:10 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-07-13 09:13:10 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-13 09:13:10 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-07-13 09:13:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-13 09:13:09 ----A---- C:\WINDOWS\system32\WWAHost.exe
2016-07-13 09:13:09 ----A---- C:\WINDOWS\system32\wininet.dll
2016-07-13 09:13:09 ----A---- C:\WINDOWS\system32\twinui.dll
2016-07-13 09:13:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-07-13 09:13:08 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-13 09:13:08 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-13 09:13:08 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-07-13 09:13:08 ----A---- C:\WINDOWS\explorer.exe
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-07-13 09:13:07 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-07-13 09:13:06 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-07-13 09:13:06 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-07-13 09:13:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-07-13 09:13:05 ----A---- C:\WINDOWS\system32\Wpc.dll
2016-07-13 09:13:05 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-07-13 09:13:05 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\system32\WpcMon.exe
2016-07-13 09:13:04 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\system32\dcomp.dll
2016-07-13 09:13:04 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-07-13 09:13:03 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-07-13 09:13:02 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2016-07-13 09:13:02 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\wwanconn.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\wmpmde.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-07-13 09:13:02 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\WLanConn.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\winipcsecproc.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\winipcfile.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\shutdownux.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\gameux.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\DMRServer.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-07-13 09:13:01 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-07-13 09:13:00 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\wwanmm.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\Display.dll
2016-07-13 09:12:59 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-07-13 09:12:58 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\SYSWOW64\sbe.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\WmpDui.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\wlanui.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\sud.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\msieftp.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-07-13 09:12:57 ----A---- C:\WINDOWS\system32\credprovs.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\winmsipc.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\qdvd.dll
2016-07-13 09:12:56 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2016-07-13 09:12:55 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-13 09:12:55 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-07-13 09:12:55 ----A---- C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\SYSWOW64\IconCodecService.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-07-13 09:12:54 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\system32\werui.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-07-13 09:12:54 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-07-13 09:12:54 ----A---- C:\WINDOWS\system32\cdpreference.exe
2016-07-13 09:12:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-07-13 09:12:52 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-07-13 09:12:52 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-07-13 09:12:52 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-07-13 09:12:52 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-07-13 09:12:52 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-07-13 09:12:51 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-07-13 09:12:50 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-07-13 09:12:50 ----A---- C:\WINDOWS\system32\mos.dll
2016-07-13 09:12:50 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-13 09:12:50 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-13 09:12:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-07-13 09:12:49 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-13 09:12:49 ----A---- C:\WINDOWS\system32\tquery.dll
2016-07-13 09:12:49 ----A---- C:\WINDOWS\system32\SRH.dll
2016-07-13 09:12:48 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2016-07-13 09:12:48 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-07-13 09:12:48 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2016-07-13 09:12:48 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-07-13 09:12:48 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\MosHostClient.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\moshost.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-13 09:12:47 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\SmartcardCredentialProvider.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\WSShared.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SettingSync.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\mssrch.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\mf.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-07-13 09:12:46 ----A---- C:\WINDOWS\system32\diagperf.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\WmpDui.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\winipcsecproc.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\winipcfile.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\wiaaut.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\oemlicense.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\licensingdiag.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\SYSWOW64\Clipc.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WSSync.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WSService.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WSClient.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\wldp.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\sbe.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\rdpcore.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\phoneactivate.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\mssphtb.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\mssph.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\mfpmp.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\GamePanel.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\fhengine.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\fhcfg.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\edputil.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\APHostService.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-07-13 09:12:45 ----A---- C:\WINDOWS\HelpPane.exe
2016-07-13 09:12:44 ----A---- C:\WINDOWS\SYSWOW64\winmsipc.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-07-13 09:12:44 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\reseteng.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\msscntrs.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2016-07-13 09:12:44 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-07-13 09:12:43 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\DXCaptureReplay.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-07-13 09:12:42 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsRemoteEngine.exe
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-07-13 09:12:41 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2016-07-13 09:12:40 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsExperiment.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsDesktopEngine.exe
2016-07-13 09:12:40 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\wuauclt.exe
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\pnidui.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\eappcfg.dll
2016-07-13 09:12:40 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsRaw.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\VsGraphicsCapture.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\SimCfg.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\SYSWOW64\DXToolsMonitor.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\SimCfg.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\SimAuth.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\schtasks.exe
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-07-13 09:12:39 ----A---- C:\WINDOWS\system32\certcli.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WSSync.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecsExt.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Speech.Pal.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\taskcomp.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\SimAuth.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\schtasks.exe
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\edputil.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eappprxy.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\DXCap.exe
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\dlnashext.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\d3d12SDKLayers.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\d3d11_3SDKLayers.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\d2d1debug3.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\themeui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\oemlicense.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\netshell.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\ieui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\IconCodecService.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\ExecModelClient.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\eappprxy.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\eapphost.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\eappgnui.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\Clipc.dll
2016-07-13 09:12:38 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\invagent.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\devinv.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-07-13 09:12:37 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-07-13 09:12:36 ----A---- C:\WINDOWS\system32\shell32.dll
2016-07-13 09:12:35 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-07-13 09:12:34 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-07-13 09:12:34 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-07-13 09:12:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\xpsservices.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\usocore.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\schedsvc.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\dbgeng.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-13 09:12:33 ----A---- C:\WINDOWS\system32\aepic.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\qdvd.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\ProximityCommon.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\mfpmp.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\ExecModelClient.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\duser.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\wmicmiplugin.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\winresume.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\winload.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\werconcpl.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\uDWM.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\taskeng.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\taskcomp.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\sdengin2.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\rasgcw.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\netcenter.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\LegacyNetUXHost.exe
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\LegacyNetUX.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\dot3ui.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\dlnashext.dll
2016-07-13 09:12:32 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\SYSWOW64\credprovs.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\wiaaut.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\sdshext.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2016-07-13 09:12:31 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-07-10 18:07:03 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\Command & Conquer 3 Tiberium Wars
======List of files/folders modified in the last 1 month======
2016-08-01 19:21:50 ----D---- C:\WINDOWS\Temp
2016-08-01 19:21:50 ----D---- C:\WINDOWS\system32\drivers
2016-08-01 19:21:46 ----RD---- C:\Program Files
2016-08-01 19:21:42 ----D---- C:\WINDOWS\Prefetch
2016-08-01 19:11:54 ----D---- C:\Windows
2016-08-01 19:11:49 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\foobar2000
2016-08-01 18:43:59 ----SHD---- C:\System Volume Information
2016-08-01 17:43:17 ----D---- C:\WINDOWS\system32\sru
2016-08-01 16:28:11 ----D---- C:\WINDOWS\system32\config
2016-08-01 16:25:48 ----D---- C:\WINDOWS\Microsoft.NET
2016-08-01 11:43:26 ----D---- C:\WINDOWS\System32
2016-08-01 11:43:26 ----D---- C:\WINDOWS\INF
2016-08-01 11:43:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-01 11:37:26 ----D---- C:\ProgramData\NVIDIA
2016-08-01 11:10:52 ----HD---- C:\ProgramData
2016-08-01 11:03:40 ----SHDC---- C:\WINDOWS\Installer
2016-08-01 11:03:40 ----RD---- C:\Program Files (x86)
2016-08-01 11:03:40 ----D---- C:\WINDOWS\SysWOW64
2016-08-01 11:03:30 ----D---- C:\WINDOWS\system32\Tasks
2016-08-01 11:01:00 ----D---- C:\WINDOWS\system32\DriverStore
2016-08-01 10:58:31 ----D---- C:\ProgramData\Package Cache
2016-08-01 10:58:21 ----D---- C:\Program Files\Intel
2016-08-01 00:35:35 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\uTorrent
2016-07-31 22:33:29 ----D---- C:\WINDOWS\AppReadiness
2016-07-31 22:28:21 ----HD---- C:\Program Files\WindowsApps
2016-07-30 15:27:43 ----D---- C:\WINDOWS\rescache
2016-07-30 10:17:39 ----D---- C:\Program Files (x86)\Avira
2016-07-30 08:58:24 ----D---- C:\WINDOWS\WinSxS
2016-07-29 23:54:52 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-07-29 23:54:52 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2016-07-29 23:54:52 ----D---- C:\WINDOWS\system32\en-US
2016-07-29 23:54:52 ----D---- C:\WINDOWS\system32\en-GB
2016-07-29 23:54:52 ----D---- C:\WINDOWS\system32\drivers\en-US
2016-07-29 19:43:20 ----D---- C:\WINDOWS\CbsTemp
2016-07-29 19:42:42 ----D---- C:\WINDOWS\debug
2016-07-29 18:28:53 ----D---- C:\WINDOWS\system32\catroot2
2016-07-29 17:53:18 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\vlc
2016-07-29 16:04:09 ----SD---- C:\WINDOWS\SYSWOW64\F12
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\winrm
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\WCN
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\wbem
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2016-07-29 16:04:09 ----D---- C:\WINDOWS\SYSWOW64\oobe
2016-07-29 16:04:08 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\en
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2016-07-29 16:04:08 ----D---- C:\WINDOWS\SYSWOW64\drivers
2016-07-29 16:04:08 ----D---- C:\WINDOWS\system32\winrm
2016-07-29 16:04:08 ----D---- C:\WINDOWS\system32\WCN
2016-07-29 16:04:07 ----SD---- C:\WINDOWS\system32\F12
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\wbem
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\slmgr
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\oobe
2016-07-29 16:04:07 ----D---- C:\WINDOWS\system32\migwiz
2016-07-29 16:04:06 ----D---- C:\WINDOWS\system32\en
2016-07-29 16:04:05 ----SD---- C:\WINDOWS\system32\DiagSvcs
2016-07-29 16:04:05 ----RD---- C:\WINDOWS\PurchaseDialog
2016-07-29 16:04:05 ----RD---- C:\WINDOWS\MiracastView
2016-07-29 16:04:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2016-07-29 16:04:05 ----D---- C:\WINDOWS\system32\Boot
2016-07-29 16:04:05 ----D---- C:\WINDOWS\servicing
2016-07-29 16:04:05 ----D---- C:\WINDOWS\PolicyDefinitions
2016-07-29 16:04:04 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-07-29 16:04:04 ----RD---- C:\WINDOWS\DevicesFlow
2016-07-29 16:04:04 ----D---- C:\WINDOWS\IME
2016-07-29 16:04:04 ----D---- C:\WINDOWS\Help
2016-07-29 16:04:04 ----D---- C:\WINDOWS\en-US
2016-07-29 16:04:04 ----D---- C:\Program Files\Windows Photo Viewer
2016-07-29 16:04:04 ----D---- C:\Program Files\Windows Media Player
2016-07-29 16:04:04 ----D---- C:\Program Files\Windows Journal
2016-07-29 16:04:04 ----D---- C:\Program Files\Windows Defender
2016-07-29 16:04:04 ----D---- C:\Program Files\Internet Explorer
2016-07-29 16:04:04 ----D---- C:\Program Files\Common Files\System
2016-07-29 16:04:04 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2016-07-29 16:04:04 ----D---- C:\Program Files (x86)\Windows Media Player
2016-07-29 16:04:04 ----D---- C:\Program Files (x86)\Windows Defender
2016-07-29 16:04:04 ----D---- C:\Program Files (x86)\Internet Explorer
2016-07-29 15:45:53 ----SD---- C:\ProgramData\Microsoft
2016-07-29 15:40:45 ----D---- C:\WINDOWS\SoftwareDistribution
2016-07-29 15:40:08 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\DAEMON Tools Lite
2016-07-29 15:40:06 ----D---- C:\WINDOWS\Logs
2016-07-28 22:49:45 ----D---- C:\WINDOWS\Tasks
2016-07-28 12:45:25 ----D---- C:\Users\Petr Štrunc\AppData\Roaming\Skype
2016-07-28 12:45:11 ----D---- C:\ProgramData\Skype
2016-07-28 12:45:09 ----RD---- C:\Program Files (x86)\Skype
2016-07-28 12:36:16 ----SD---- C:\Users\Petr Štrunc\AppData\Roaming\Microsoft
2016-07-27 21:25:34 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-07-25 20:23:50 ----RSD---- C:\WINDOWS\assembly
2016-07-25 16:56:51 ----D---- C:\Miniconda2
2016-07-13 22:36:57 ----D---- C:\WINDOWS\system32\drivers\etc
2016-07-13 21:32:54 ----D---- C:\Program Files\Common Files\Apple
2016-07-13 21:16:59 ----D---- C:\Program Files (x86)\Common Files
2016-07-13 21:15:27 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-07-13 17:52:01 ----SHD---- C:\Boot
2016-07-13 14:25:58 ----D---- C:\WINDOWS\SYSWOW64\migration
2016-07-13 14:25:58 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-07-13 14:25:55 ----D---- C:\WINDOWS\system32\migration
2016-07-13 14:25:55 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2016-07-13 14:25:55 ----D---- C:\WINDOWS\system32\cs-CZ
2016-07-13 14:25:55 ----D---- C:\WINDOWS\system32\appraiser
2016-07-13 14:25:53 ----RD---- C:\WINDOWS\PrintDialog
2016-07-13 14:25:53 ----D---- C:\WINDOWS\Provisioning
2016-07-13 14:25:53 ----D---- C:\WINDOWS\bcastdvr
2016-07-13 14:25:53 ----D---- C:\WINDOWS\AppPatch
2016-07-13 14:25:53 ----D---- C:\Program Files\Windows Mail
2016-07-13 14:25:53 ----D---- C:\Program Files (x86)\Windows Mail
2016-07-13 09:17:38 ----D---- C:\WINDOWS\system32\MRT
2016-07-13 09:15:07 ----A---- C:\WINDOWS\system32\MRT.exe
2016-07-08 20:46:10 ----D---- C:\Program Files (x86)\Dropbox
2016-07-02 11:15:27 ----D---- C:\ProgramData\Oracle
2016-07-02 11:03:52 ----D---- C:\Program Files\Java
2016-07-02 11:03:31 ----A---- C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-07-02 11:02:12 ----DC---- C:\WINDOWS\Panther
2016-07-02 06:37:58 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-05-28 672104]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2014-01-28 15232]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2016-07-18 154392]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2016-07-18 35488]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-04-23 87552]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2016-07-18 144664]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2016-07-18 78208]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
R2 speedfan;speedfan; \??\C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
R3 dtlitescsibus;@oem7.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2015-12-25 30264]
R3 dtliteusbbus;@oem14.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2015-12-25 46392]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2014-09-02 4264536]
R3 MEIx64;@oem32.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2016-03-14 129312]
R3 NVHDA;@oem15.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2015-12-16 205456]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-12-18 12426896]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-01-12 26560]
R3 nvvad_WaveExtensible;@oem26.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-12-18 47760]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-10-30 589824]
R3 SensorsSimulatorDriver;@oem19.inf,%WudfSensorsSimulatorDriverDisplayName%;UMDF Reflector service for SensorsSimulatorDriver; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2015-10-30 216064]
R3 tap0901;@oem16.inf,%DeviceDescription%;TAP-Windows Adapter V9; C:\WINDOWS\System32\drivers\tap0901.sys [2013-08-22 40664]
R3 tapoas;@oem17.inf,%DeviceDescription%;TAP-Win32 Adapter OAS; C:\WINDOWS\System32\drivers\tapoas.sys [2012-07-15 30720]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
S3 acsock;acsock; C:\WINDOWS\system32\DRIVERS\acsock64.sys [2014-06-11 112496]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-02-13 117248]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 lvpepf64;@oem37.inf,%pepifilter.SrvDesc%;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302a64.sys [2008-07-26 15768]
S3 lvrs64;@oem37.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
S3 LVUSBS64;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
S3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2016-03-10 27008]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2016-03-10 65408]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 PID_PEPI;@oem35.inf,%PID_08A0_DD%(PID_PEPI);Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V64.SYS [2008-07-26 2624408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-06-25 82128]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2016-07-18 472112]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2016-07-18 472112]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [2014-01-28 936728]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-07-11 309384]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-01-12 1163200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-05-28 16232]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2014-04-29 154584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2014-04-29 398296]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-01-12 1879488]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-01-12 4812736]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-12-16 1256240]
R2 OneSyncSvc_7f658f;Hostitel synchronizace_7f658f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2016-02-27 131784]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-12-16 417584]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
R3 NvStreamNetworkSvc;NVIDIA Streamer Network Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [2016-01-12 6308288]
R3 PimIndexMaintenanceSvc_7f658f;Data kontaktů_7f658f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2016-07-18 989696]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2016-07-18 1453696]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-02 143144]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-25 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 MBAMService;MBAMService; E:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_14f61c;Hostitel synchronizace_14f61c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1bea61;Hostitel synchronizace_1bea61; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1dee9e;Hostitel synchronizace_1dee9e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_3607e;Hostitel synchronizace_3607e; C:\Windows\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_93aa59;Hostitel synchronizace_93aa59; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_ee8d556;Hostitel synchronizace_ee8d556; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-10-30 51376]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-02 143144]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; E:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [2015-11-30 1368408]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2016-06-20 245544]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-23 43696]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-25 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2014-01-31 887232]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-06-01 651576]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_14f61c;Služba zasílání zpráv_14f61c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1bea61;Služba zasílání zpráv_1bea61; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1dee9e;Služba zasílání zpráv_1dee9e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_7f658f;Služba zasílání zpráv_7f658f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_93aa59;Služba zasílání zpráv_93aa59; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_ee8d556;Služba zasílání zpráv_ee8d556; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-21 146888]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-10-01 178824]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_14f61c;Data kontaktů_14f61c; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1bea61;Data kontaktů_1bea61; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1dee9e;Data kontaktů_1dee9e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_93aa59;Data kontaktů_93aa59; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_ee8d556;Data kontaktů_ee8d556; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-07-09 1450064]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2015-10-30 290304]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 MBAMScheduler;MBAMScheduler; E:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2016-03-10 1514464]
-----------------EOF-----------------
