VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivní Kontrola

https://forum.viry.cz:443/viewtopic.php?t=150637

Stránka 1 z 1

Preventivní Kontrola

Napsal: 22 lis 2016 21:40
od Kupecpro
Zdravím, potřeboval bych zkontrolovat PC. Samovolně se odpojuje od Wifi a zpomalil se internet. Díky.
Log odesilam na 2 časti, byl moc dlouhy...

Logfile of random's system information tool 1.10 (written by random/random)
Run by kupka at 2016-11-22 21:28:34
Microsoft Windows 10 Home
System drive C: has 66 GB (34%) free of 196 GB
Total RAM: 8104 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:28:36, on 22.11.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera_crashreporter.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\ProgramData\Battle.net\Agent\Agent.5296\Agent.exe
C:\Program Files (x86)\Battle.net\Battle.net.8142\Battle.net.exe
C:\Program Files (x86)\Battle.net\Battle.net.8142\Battle.net Helper.exe
C:\Program Files (x86)\Battle.net\Battle.net.8142\Battle.net Helper.exe
C:\Program Files (x86)\Hearthstone\Hearthstone.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe
C:\Program Files\trend micro\kupka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo15.msn.com/?pc=LCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo15.msn.com/?pc=LCTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
O4 - HKCU\..\Run: [OneDrive] "C:\Users\kupka\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\kupka\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\kupka\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{25854d01-3026-4c24-a407-4b973c085918}: NameServer = 8.8.8.8
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: CCSDK - Lenovo - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GDCAgent - Lenovo - C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @oem125.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: System Interface Foundation Service (ImControllerService) - Lenovo Group Limited - C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Wireless Controller Service - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 12844 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8858bde3-065e-403f-8bae-bc444090c399 -SystemEventPortName:HostProcess-b88e47fd-7434-40bc-84a5-ebba397bf504 -IoCancelEventPortName:HostProcess-a4320f53-6a51-411a-9a18-c3c371ed26e4 -NonStateChangingEventPortName:HostProcess-b3c4827f-0012-44cb-a3d5-e0200b0e610d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6b059537-73f8-4893-82f5-f4de8f1a1387 -DeviceGroupId:WudfDefaultDevicePool
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-1a6f0373-dc77-4b91-9bad-e321f06d7bf5 -SystemEventPortName:HostProcess-79d17753-6ac9-4047-a037-963cc16943b7 -IoCancelEventPortName:HostProcess-d3edf596-bcb8-4724-be05-b88722896d21 -NonStateChangingEventPortName:HostProcess-d48115ee-5578-462c-a672-6e95e96596ca -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e3df9346-6cec-4ea0-a6d0-39afe526bae4 -DeviceGroupId:
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
C:\WINDOWS\system32\WLANExt.exe 2036560510112
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Elantech\ETDService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\WINDOWS\system32\ibtsiva
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc

"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe -first
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -l 3 -c
sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Windows\RTFTrack.exe"
"C:\Program Files\Lenovo\LenovoUtility\utility.exe"
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe" -Embedding
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"fontdrvhost.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --disable-gpu-compositing --no-sandbox --enable-begin-frame-scheduling --primordial-pipe-token=F8B68A17971A5D0724E1218CF51C0703 --lang=en-US --lang=en-US --log-file="C:\Users\kupka\AppData\Local\NVIDIA Corporation\NVIDIA Share\CefCache\debug.log" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="7860.0.283905807\1985883922" --mojo-platform-channel-handle=1488 /prefetch:1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_000009b4
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"" "--start" "--register_port" "--address" "127.0.0.1" "--port" "49331" "--pause_on_user_switching" "--depend_on_key" "SYSTEM\CurrentControlSet\Services\ESRV_SVC_WILLAMETTE" "--depend_on_value" "run" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=no output_folder='C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData\userlogs' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\foreground_window_input.dll' "
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe"
"C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe" "--AUTO_START" "--start" "--address" "127.0.0.1" "--port" "49330" "--depend_on_key" "SYSTEM\CurrentControlSet\Services\ESRV_SVC_WILLAMETTE" "--depend_on_value" "run" "--time_in_ms" "--pause" "5000" "--library" "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll" "--no_pl" "--watchdog" "10" "--watchdog_cpu_usage_limit" "50" "--end_on_error" "--kernel_priority_boost" "--shutdown_priority_boost" "--device_options" " time=no output=w output_folder='C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData' limit_output_by=time output_limit=3600000 output_buffer=1024 il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll','process_input_options.txt' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll','service=yes' il='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll','pause=60000 working_dir=C:\ProgramData\Intel\SUR\WILLAMETTE\IntelData override_existing_tracing=no limit_output_by_filesize_mb=10' os='C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\os_counters.txt' "
"C:\Users\kupka\AppData\Local\Apps\2.0\HOGZ2NWR.N7J\CO1CMK2D.Q94\lsb...tion_2d7b41b05b24775e_0001.0006_589ac911618caaca\LSB.exe"
"C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe" 1 1 1 1
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\41.0.2353.56\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=5392
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=gpu-process --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --supports-dual-gpus=false --gpu-driver-bug-workarounds=5,15,19,33,50,59 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4279 --gpu-driver-date=8-24-2015 --gpu-secondary-vendor-ids=0x10de --gpu-secondary-device-ids=0x139b --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --mojo-application-channel-token=A9274EAE5DCAC4C077DE74849F37F8B1 --mojo-platform-channel-handle=1540 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=2F1FF488444C5121A5D9D53F65BB9540 --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=2F1FF488444C5121A5D9D53F65BB9540 --channel="5392.1.576065950\2092216070" --mojo-platform-channel-handle=1988 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=56EF3C8420FB1BA641D9C27C471D9EC9 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=56EF3C8420FB1BA641D9C27C471D9EC9 --channel="5392.2.1286869751\2138135003" --mojo-platform-channel-handle=2624 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=DEBF74073E125303AC04721E19C499A6 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=DEBF74073E125303AC04721E19C499A6 --channel="5392.4.58112854\793610537" --mojo-platform-channel-handle=2704 /prefetch:1
C:\Windows\System32\InstallAgent.exe -Embedding
C:\Windows\System32\InstallAgentUserBroker.exe -Embedding
"C:\Program Files\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.exe" -name a69a5f45-5731-47de-8496-d87c69e5b1da -runas SYSTEM -pluginName LenovoSystemUpdatePlugin -pluginVersion 1.2.54.0
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files\Realtek\Audio\HDA\FMAPP.exe" -START
C:\WINDOWS\system32\AUDIODG.EXE 0x34c
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\ProgramData\Battle.net\Agent\Agent.5296\Agent.exe" --locale=enUS --session=15048707627631702100
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\Battle.net\Battle.net.8142\Battle.net.exe" --game=hs_beta "--gamepath=C:\Program Files (x86)\Hearthstone"
"Battle.net Helper.exe" --type=gpu-process --channel="9768.0.997739469\2091230604" --no-sandbox --lang=en-US --log-file="C:\Users\kupka\AppData\Local\Battle.net\Logs\libcef-20161122T181054.800366.log" --log-severity=error --product-version=Battle.net/1.5.2.8142 --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --gpu-vendor-id=0x8086 --gpu-device-id=0x0416 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4279 --lang=en-US --log-file="C:\Users\kupka\AppData\Local\Battle.net\Logs\libcef-20161122T181054.800366.log" --log-severity=error --product-version=Battle.net/1.5.2.8142 /prefetch:822062411
"Battle.net Helper.exe" --type=renderer --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --log-file="C:\Users\kupka\AppData\Local\Battle.net\Logs\libcef-20161122T181054.800366.log" --log-severity=error --product-version=Battle.net/1.5.2.8142 --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="9768.1.1146898713\1317054577" /prefetch:673131151
"C:\Program Files (x86)\Hearthstone\Hearthstone.exe" -launch -uid hs_beta
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=154A71A210824531CC14F2508E74E519 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=154A71A210824531CC14F2508E74E519 --channel="5392.35.213334851\606960585" --mojo-platform-channel-handle=3716 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=ppapi --ppapi-flash-args --lang=cs --device-scale-factor=1 --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --mojo-application-channel-token=E07C7540ECD91AECAD993EF9CF5DCA43 --mojo-platform-channel-handle=7036 --ignored=" --type=renderer " /prefetch:3
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=63AE72F1E26E56C3A8F84B8E3B3BFDD8 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=63AE72F1E26E56C3A8F84B8E3B3BFDD8 --channel="5392.44.1147629730\2042253912" --mojo-platform-channel-handle=3036 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=B181F57AB2C89A6C852471FCE756ADD6 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=B181F57AB2C89A6C852471FCE756ADD6 --channel="5392.52.1523776083\99216076" --mojo-platform-channel-handle=6640 /prefetch:1
"C:\Program Files (x86)\Opera\41.0.2353.56\opera.exe" --type=renderer --alt-high-dpi-setting=120 --system-dpi-setting=120 --primordial-pipe-token=5E7A2D97D9CE6DD10C896FE8A407D945 --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-hide-from-program-and-features=off --with-feature:installer-pref-default-overrides-support=on --with-feature:installer-support-x64-download=off --crash-reporter-pid=2260 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553 --mojo-application-channel-token=5E7A2D97D9CE6DD10C896FE8A407D945 --channel="5392.53.1984674914\614141353" --mojo-platform-channel-handle=6476 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe8_ Global\UsGthrCtrlFltPipeMssGthrPipe8 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\kupka\Desktop\RSITx64.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\kupka\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-30 214216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-30 2850608]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-08-24 13885696]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-08-24 1402624]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-08-24 1402624]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-08-24 1402624]
"RtsFT"=C:\Windows\RTFTrack.exe [2015-06-01 5052120]
"LenovoUtility"=C:\Program Files\Lenovo\LenovoUtility\utility.exe [2015-11-19 791848]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2015-07-25 36352]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2016-08-19 3743976]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2016-10-25 1854008]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2016-09-07 631808]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\kupka\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-31 633024]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-10-13 2860832]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\kupka\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64"=C:\WINDOWS\system32\cmd.exe [2016-07-16 232960]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2016-08-24 60136]
"avgnt"=C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2016-10-26 916072]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-11-22 21:28:34 ----D---- C:\rsit
2016-11-22 21:28:34 ----D---- C:\Program Files\trend micro
2016-11-17 14:24:54 ----D---- C:\WINDOWS\LastGood
2016-11-17 14:24:11 ----A---- C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2016-11-17 14:24:11 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2016-11-17 14:24:11 ----A---- C:\WINDOWS\system32\IntelWiDiUMS64.exe
2016-11-17 14:24:11 ----A---- C:\WINDOWS\system32\IntelWiDiMCComp64.dll
2016-11-17 14:24:11 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\SYSWOW64\IntelCpHeciSvc.exe
2016-11-17 14:24:10 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxSDKLibv2_0.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxSDKLib.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxSDK.exe
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxOSP.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxLHMLibv2_0.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxLHMLib.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxext.exe
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxexps.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxEMLibv2_0.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxEMLib.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxDTCM.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxDILibv2_0.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxDILib.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxDHLibv2_0.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxDHLib.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxCUIServicePS.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxCoIn_v4279.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2016-11-17 14:24:10 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2016-11-17 14:24:09 ----A---- C:\WINDOWS\system32\igdumdim64.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\SYSWOW64\igdumdim32.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\SYSWOW64\igdmcl32.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\system32\igdmd64.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\system32\igdmcl64.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2016-11-17 14:24:08 ----A---- C:\WINDOWS\system32\igdde64.dll
2016-11-17 14:24:07 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2016-11-17 14:24:07 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2016-11-17 14:24:07 ----A---- C:\WINDOWS\SYSWOW64\igd12umd32.dll
2016-11-17 14:24:07 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2016-11-17 14:24:07 ----A---- C:\WINDOWS\system32\igdail64.dll
2016-11-17 14:24:07 ----A---- C:\WINDOWS\system32\igd12umd64.dll
2016-11-17 14:24:07 ----A---- C:\WINDOWS\system32\igd11dxva64.dll
2016-11-17 14:24:06 ----A---- C:\WINDOWS\SYSWOW64\igd10idpp32.dll
2016-11-17 14:24:06 ----A---- C:\WINDOWS\system32\igd10idpp64.dll
2016-11-17 14:24:06 ----A---- C:\WINDOWS\system32\igc64.dll
2016-11-17 14:24:05 ----A---- C:\WINDOWS\SYSWOW64\igc32.dll
2016-11-17 14:24:04 ----A---- C:\WINDOWS\SYSWOW64\ig75icd32.dll
2016-11-17 14:24:04 ----A---- C:\WINDOWS\system32\ig75icd64.dll
2016-11-17 14:24:04 ----A---- C:\WINDOWS\system32\Gfxv4_0.exe
2016-11-17 14:24:04 ----A---- C:\WINDOWS\system32\Gfxv2_0.exe
2016-11-17 14:24:04 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2016-11-17 14:24:04 ----A---- C:\WINDOWS\system32\GfxResources.dll
2016-11-17 14:24:04 ----A---- C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2016-11-17 14:24:04 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2016-11-17 14:24:04 ----A---- C:\WINDOWS\system32\difx64.exe
2016-11-17 14:24:03 ----A---- C:\WINDOWS\system32\common_clang64.dll
2016-11-17 14:24:02 ----A---- C:\WINDOWS\SYSWOW64\common_clang32.dll
2016-11-16 12:44:32 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2016-11-16 12:44:31 ----D---- C:\Program Files (x86)\VulkanRT
2016-11-16 12:44:31 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2016-11-16 12:44:31 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2016-11-16 12:44:31 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2016-11-16 12:44:31 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2016-11-16 12:42:35 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2016-11-16 12:42:35 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2016-11-16 12:42:35 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-11-16 12:42:35 ----A---- C:\WINDOWS\system32\nvopencl.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvdispgenco6437586.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvdispco6437586.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvcuda.dll
2016-11-16 12:42:34 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2016-11-16 12:35:44 ----D---- C:\WINDOWS\LastGood.Tmp
2016-11-16 12:35:40 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2016-11-16 12:35:40 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2016-11-11 12:15:10 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2016-11-11 12:15:09 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2016-11-11 12:15:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2016-11-11 12:15:08 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2016-11-11 12:15:08 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2016-11-11 12:15:08 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2016-11-11 12:15:08 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2016-11-11 12:15:08 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2016-11-11 12:15:07 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2016-11-11 12:15:06 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2016-11-11 12:15:05 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2016-11-11 12:15:04 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2016-11-11 12:15:03 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2016-11-11 12:15:02 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2016-11-11 12:15:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2016-11-11 12:15:01 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2016-11-11 12:15:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2016-11-11 12:15:01 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2016-11-11 12:15:01 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2016-11-11 12:15:01 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2016-11-11 12:15:01 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2016-11-11 12:15:01 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2016-11-11 12:15:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2016-11-11 12:15:00 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2016-11-11 12:15:00 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2016-11-11 12:15:00 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2016-11-11 12:15:00 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2016-11-11 12:15:00 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2016-11-11 12:15:00 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2016-11-11 12:15:00 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2016-11-11 12:14:59 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2016-11-11 12:14:58 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2016-11-11 12:14:57 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2016-11-11 12:14:57 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2016-11-11 12:14:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2016-11-11 12:14:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2016-11-11 12:14:57 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2016-11-11 12:14:57 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2016-11-11 12:14:57 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2016-11-11 12:14:57 ----A---- C:\WINDOWS\system32\d3dx10.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2016-11-11 12:14:56 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2016-11-11 12:14:55 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2016-11-11 12:14:55 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2016-11-11 12:14:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2016-11-11 12:14:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2016-11-11 12:14:55 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2016-11-11 12:14:55 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2016-11-11 12:14:55 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2016-11-11 12:14:55 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2016-11-11 12:14:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2016-11-11 12:14:53 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2016-11-11 12:14:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2016-11-11 12:14:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2016-11-11 12:14:53 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2016-11-11 12:14:53 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2016-11-11 12:14:53 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2016-11-11 12:14:53 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2016-11-11 12:14:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2016-11-11 12:14:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2016-11-11 12:14:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2016-11-11 12:14:52 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2016-11-11 12:14:52 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2016-11-11 12:14:52 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2016-11-11 12:14:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2016-11-11 12:14:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2016-11-11 12:14:51 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2016-11-11 12:14:51 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2016-11-09 15:08:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-11-09 15:08:56 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-09 15:08:55 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2016-11-09 15:08:54 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2016-11-09 15:08:54 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-11-09 15:08:54 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2016-11-09 15:08:54 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-11-09 15:08:54 ----A---- C:\WINDOWS\system32\oleaut32.dll
2016-11-09 15:08:54 ----A---- C:\WINDOWS\system32\ole32.dll
2016-11-09 15:08:54 ----A---- C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-09 15:08:53 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-11-09 15:08:53 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2016-11-09 15:08:53 ----A---- C:\WINDOWS\SYSWOW64\chartv.dll
2016-11-09 15:08:53 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-11-09 15:08:52 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2016-11-09 15:08:52 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2016-11-09 15:08:52 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-11-09 15:08:52 ----A---- C:\WINDOWS\system32\weretw.dll
2016-11-09 15:08:52 ----A---- C:\WINDOWS\system32\wer.dll
2016-11-09 15:08:51 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-11-09 15:08:51 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-11-09 15:08:51 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-09 15:08:51 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-09 15:08:51 ----A---- C:\WINDOWS\system32\ubpm.dll
2016-11-09 15:08:51 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-09 15:08:51 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-11-09 15:08:51 ----A---- C:\WINDOWS\system32\asycfilt.dll
2016-11-09 15:08:50 ----A---- C:\WINDOWS\SYSWOW64\NPSM.dll
2016-11-09 15:08:50 ----A---- C:\WINDOWS\system32\WpcTok.exe
2016-11-09 15:08:50 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2016-11-09 15:08:50 ----A---- C:\WINDOWS\system32\ddraw.dll
2016-11-09 15:08:50 ----A---- C:\WINDOWS\system32\dab.dll
2016-11-09 15:08:49 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-11-09 15:08:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-11-09 15:08:49 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-09 15:08:49 ----A---- C:\WINDOWS\system32\TSpkg.dll
2016-11-09 15:08:49 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-11-09 15:08:49 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2016-11-09 15:08:48 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-11-09 15:08:47 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-09 15:08:46 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-11-09 15:08:46 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-11-09 15:08:46 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-11-09 15:08:46 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-11-09 15:08:46 ----A---- C:\WINDOWS\system32\chartv.dll
2016-11-09 15:08:45 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-11-09 15:08:45 ----A---- C:\WINDOWS\system32\wmp.dll
2016-11-09 15:08:44 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2016-11-09 15:08:44 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-11-09 15:08:43 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-09 15:08:43 ----A---- C:\WINDOWS\system32\twinapi.dll
2016-11-09 15:08:43 ----A---- C:\WINDOWS\system32\authui.dll
2016-11-09 15:08:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-11-09 15:08:42 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2016-11-09 15:08:42 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2016-11-09 15:08:42 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-11-09 15:08:41 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-11-09 15:08:41 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2016-11-09 15:08:41 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-11-09 15:08:39 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2016-11-09 15:08:39 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-11-09 15:08:39 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2016-11-09 15:08:39 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-11-09 15:08:38 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-11-09 15:08:38 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-09 15:08:38 ----A---- C:\WINDOWS\system32\ListSvc.dll
2016-11-09 15:08:37 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2016-11-09 15:08:37 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2016-11-09 15:08:37 ----A---- C:\WINDOWS\system32\rdpcore.dll
2016-11-09 15:08:37 ----A---- C:\WINDOWS\system32\efsext.dll
2016-11-09 15:08:37 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-11-09 15:08:36 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-11-09 15:08:36 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-11-09 15:08:36 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-11-09 15:08:36 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2016-11-09 15:08:35 ----A---- C:\WINDOWS\SYSWOW64\AuthExt.dll
2016-11-09 15:08:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-11-09 15:08:32 ----A---- C:\WINDOWS\system32\stobject.dll
2016-11-09 15:08:31 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-11-09 15:08:31 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2016-11-09 15:08:31 ----A---- C:\WINDOWS\system32\themecpl.dll
2016-11-09 15:08:31 ----A---- C:\WINDOWS\system32\sud.dll
2016-11-09 15:08:31 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-11-09 15:08:31 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-11-09 15:08:30 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-11-09 15:08:30 ----A---- C:\WINDOWS\system32\hgcpl.dll
2016-11-09 15:08:30 ----A---- C:\WINDOWS\system32\fontext.dll
2016-11-09 15:08:30 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-11-09 15:08:30 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-11-09 15:08:29 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2016-11-09 15:08:29 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-11-09 15:08:29 ----A---- C:\WINDOWS\system32\gameux.dll
2016-11-09 15:08:29 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-11-09 15:08:29 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-11-09 15:08:28 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-09 15:08:28 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-11-09 15:08:28 ----A---- C:\WINDOWS\explorer.exe
2016-11-09 15:08:27 ----A---- C:\WINDOWS\system32\twinui.dll
2016-11-09 15:08:26 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-09 15:08:23 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-11-09 15:08:22 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-11-09 15:08:22 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-11-09 15:08:22 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-11-09 15:08:22 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-11-09 15:08:21 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-11-09 15:08:21 ----A---- C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-09 15:08:21 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-09 15:08:20 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-09 15:08:20 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-11-09 15:08:20 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-11-09 15:08:20 ----A---- C:\WINDOWS\system32\NPSM.dll
2016-11-09 15:08:20 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-09 15:08:20 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-11-09 15:08:20 ----A---- C:\WINDOWS\system32\DeviceCenter.dll
2016-11-09 15:08:19 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2016-11-09 15:08:19 ----A---- C:\WINDOWS\SYSWOW64\asycfilt.dll
2016-11-09 15:08:18 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2016-11-09 15:08:18 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2016-11-09 15:08:17 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2016-11-09 15:08:17 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-11-09 15:08:15 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-11-09 15:08:14 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-11-09 15:08:14 ----A---- C:\WINDOWS\SYSWOW64\ActionCenterCPL.dll
2016-11-09 15:08:14 ----A---- C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-09 15:08:13 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-11-09 15:08:13 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2016-11-09 15:08:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-11-09 15:08:12 ----A---- C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 15:08:11 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-11-09 15:08:11 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-11-09 15:08:10 ----A---- C:\WINDOWS\system32\shell32.dll
2016-11-09 15:08:09 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-11-09 15:08:09 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-11-09 15:08:08 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-11-09 15:08:08 ----A---- C:\WINDOWS\system32\shdocvw.dll
2016-11-09 15:08:08 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-11-09 15:08:08 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-09 15:08:07 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-11-09 15:08:07 ----A---- C:\WINDOWS\system32\iertutil.dll
2016-11-09 15:08:06 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2016-11-09 15:08:06 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2016-11-09 15:08:06 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-09 15:08:06 ----A---- C:\WINDOWS\system32\mshtmled.dll
2016-11-09 15:08:06 ----A---- C:\WINDOWS\system32\FSClient.dll
2016-11-09 15:08:05 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-11-09 15:08:05 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-11-09 15:08:05 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-11-09 15:08:03 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-11-09 15:08:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2016-11-09 15:08:02 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-09 15:08:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-11-09 15:08:02 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 15:08:02 ----A---- C:\WINDOWS\system32\FrameServer.dll
2016-11-09 15:08:02 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-09 15:08:01 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-11-09 15:08:00 ----A---- C:\WINDOWS\system32\wininet.dll
2016-11-09 15:08:00 ----A---- C:\WINDOWS\system32\mstscax.dll
2016-11-09 15:07:59 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-09 15:07:59 ----A---- C:\WINDOWS\system32\inetcomm.dll
2016-11-09 15:07:59 ----A---- C:\WINDOWS\system32\cdp.dll
2016-11-09 15:07:59 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-11-09 15:07:58 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-11-09 15:07:56 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-09 15:07:56 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-09 15:07:55 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-11-09 15:07:55 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2016-11-09 15:07:55 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-09 15:07:54 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 15:07:54 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-09 15:07:54 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2016-11-09 15:07:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-11-09 15:07:53 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-11-09 15:07:53 ----A---- C:\WINDOWS\system32\mstsc.exe
2016-11-09 15:07:52 ----A---- C:\WINDOWS\SYSWOW64\UIAnimation.dll
2016-11-09 15:07:52 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-11-09 15:07:52 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2016-11-09 15:07:52 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-09 15:07:52 ----A---- C:\WINDOWS\system32\wifitask.exe
2016-11-09 15:07:52 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-11-09 15:07:51 ----A---- C:\WINDOWS\SYSWOW64\TSpkg.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetailsUpdate.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\system32\iepeers.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\system32\dxtrans.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-09 15:07:51 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-11-09 15:07:50 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-11-09 15:07:50 ----A---- C:\WINDOWS\system32\winresume.exe
2016-11-09 15:07:50 ----A---- C:\WINDOWS\system32\winload.exe
2016-11-09 15:07:50 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-09 15:07:49 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-11-09 15:07:49 ----A---- C:\WINDOWS\SYSWOW64\mfsensorgroup.dll
2016-11-09 15:07:49 ----A---- C:\WINDOWS\system32\rdpudd.dll
2016-11-09 15:07:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-11-09 15:07:49 ----A---- C:\WINDOWS\system32\msinfo32.exe
2016-11-09 15:07:48 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-11-09 15:07:48 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-11-09 15:07:48 ----A---- C:\WINDOWS\SYSWOW64\MSVidCtl.dll
2016-11-09 15:07:48 ----A---- C:\WINDOWS\SYSWOW64\msinfo32.exe
2016-11-09 15:07:48 ----A---- C:\WINDOWS\SYSWOW64\FSClient.dll
2016-11-09 15:07:48 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2016-11-09 15:07:47 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-11-09 15:07:47 ----A---- C:\WINDOWS\system32\msctf.dll
2016-11-09 15:07:46 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-11-09 15:07:46 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-11-09 15:07:46 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-09 15:07:46 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-11-09 15:07:46 ----A---- C:\WINDOWS\system32\d3d9.dll
2016-11-09 15:07:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-11-09 15:07:45 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-11-09 15:07:45 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-11-09 15:07:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 15:07:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-11-09 15:07:44 ----A---- C:\WINDOWS\SYSWOW64\efsext.dll
2016-11-09 15:07:44 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-11-09 15:07:44 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-11-09 15:07:44 ----A---- C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-09 15:07:44 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-11-09 15:07:44 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-11-09 15:07:44 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2016-11-09 15:07:43 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-11-09 15:07:43 ----A---- C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 15:07:43 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2016-11-09 15:07:43 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-09 15:07:43 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 15:07:43 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-09 15:07:43 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-11-09 15:07:43 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-11-09 15:07:42 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2016-11-09 15:07:42 ----A---- C:\WINDOWS\system32\win32k.sys
2016-11-09 15:07:42 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-09 15:07:42 ----A---- C:\WINDOWS\system32\drivers\iorate.sys
2016-11-09 15:07:41 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2016-11-09 15:07:41 ----A---- C:\WINDOWS\SYSWOW64\d3d8.dll
2016-11-09 15:07:41 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-11-09 15:07:41 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-11-09 15:07:41 ----A---- C:\WINDOWS\system32\input.dll
2016-11-09 15:07:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-11-09 15:07:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2016-11-09 15:07:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2016-11-09 15:07:39 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2016-11-09 15:07:39 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-10-28 02:01:36 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-10-28 01:31:25 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2016-10-28 01:31:25 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-10-28 01:31:25 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-28 01:31:25 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-28 01:31:23 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-10-28 01:31:22 ----A---- C:\WINDOWS\system32\mfps.dll
2016-10-28 01:31:21 ----A---- C:\WINDOWS\system32\winsrv.dll
2016-10-28 01:31:16 ----A---- C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-28 01:31:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 01:31:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 01:31:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 01:31:14 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-10-28 01:31:13 ----A---- C:\WINDOWS\system32\msvproc.dll
2016-10-28 01:31:13 ----A---- C:\WINDOWS\system32\energy.dll
2016-10-28 01:31:13 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-10-28 01:31:12 ----A---- C:\WINDOWS\SYSWOW64\drvstore.dll
2016-10-28 01:31:12 ----A---- C:\WINDOWS\SYSWOW64\BluetoothApis.dll
2016-10-28 01:31:12 ----A---- C:\WINDOWS\system32\usocore.dll
2016-10-28 01:31:12 ----A---- C:\WINDOWS\system32\user32.dll
2016-10-28 01:31:12 ----A---- C:\WINDOWS\system32\MusNotification.exe
2016-10-28 01:31:12 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2016-10-28 01:31:12 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2016-10-28 01:31:11 ----A---- C:\WINDOWS\SYSWOW64\iscsiwmi.dll
2016-10-28 01:31:11 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2016-10-28 01:31:10 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-28 01:31:10 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-10-28 01:31:08 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-28 01:31:08 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-28 01:31:08 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-28 01:31:07 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-28 01:31:04 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2016-10-28 01:31:03 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2016-10-28 01:31:03 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-10-28 01:31:03 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-10-28 01:31:03 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-28 01:31:03 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2016-10-28 01:31:03 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-10-28 01:31:02 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2016-10-28 01:31:02 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2016-10-28 01:31:02 ----A---- C:\WINDOWS\SYSWOW64\cmifw.dll
2016-10-28 01:31:02 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-10-28 01:31:02 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-10-28 01:31:02 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-28 01:31:02 ----A---- C:\WINDOWS\system32\drivers\capimg.sys
2016-10-28 01:31:02 ----A---- C:\WINDOWS\system32\Display.dll
2016-10-28 01:31:02 ----A---- C:\WINDOWS\system32\autoplay.dll
2016-10-28 01:31:01 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2016-10-28 01:31:01 ----A---- C:\WINDOWS\system32\powercfg.exe
2016-10-28 01:31:01 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-10-28 01:31:01 ----A---- C:\WINDOWS\system32\fhcpl.dll
2016-10-28 01:31:01 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-10-28 01:31:01 ----A---- C:\WINDOWS\system32\DevicePairingFolder.dll
2016-10-28 01:31:00 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-10-28 01:31:00 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-28 01:31:00 ----A---- C:\WINDOWS\system32\qmgr.dll
2016-10-28 01:31:00 ----A---- C:\WINDOWS\system32\mfksproxy.dll
2016-10-28 01:30:59 ----A---- C:\WINDOWS\SYSWOW64\mfksproxy.dll
2016-10-28 01:30:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-10-28 01:30:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-10-28 01:30:58 ----A---- C:\WINDOWS\SYSWOW64\Geolocation.dll
2016-10-28 01:30:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-10-28 01:30:57 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-10-28 01:30:56 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2016-10-28 01:30:56 ----A---- C:\WINDOWS\system32\mispace.dll
2016-10-28 01:30:56 ----A---- C:\WINDOWS\system32\diagtrack.dll
2016-10-28 01:30:56 ----A---- C:\WINDOWS\system32\devinv.dll
2016-10-28 01:30:56 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-28 01:30:56 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-10-28 01:30:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-10-28 01:30:55 ----A---- C:\WINDOWS\system32\wsp_health.dll
2016-10-28 01:30:55 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2016-10-28 01:30:55 ----A---- C:\WINDOWS\system32\wintrust.dll
2016-10-28 01:30:55 ----A---- C:\WINDOWS\system32\spoolsv.exe
2016-10-28 01:30:55 ----A---- C:\WINDOWS\system32\generaltel.dll
2016-10-28 01:30:55 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-10-28 01:30:55 ----A---- C:\WINDOWS\system32\aeinv.dll
2016-10-28 01:30:55 ----A---- C:\WINDOWS\splwow64.exe
2016-10-28 01:30:54 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-10-28 01:30:54 ----A---- C:\WINDOWS\system32\invagent.dll
2016-10-28 01:30:54 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-10-28 01:30:54 ----A---- C:\WINDOWS\system32\esent.dll
2016-10-28 01:30:54 ----A---- C:\WINDOWS\system32\aepic.dll
2016-10-28 01:30:53 ----A---- C:\WINDOWS\SYSWOW64\wmpeffects.dll
2016-10-28 01:30:53 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-10-28 01:30:53 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-10-28 01:30:53 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-10-28 01:30:53 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-10-28 01:30:53 ----A---- C:\WINDOWS\system32\wmpeffects.dll
2016-10-28 01:30:53 ----A---- C:\WINDOWS\system32\drvstore.dll
2016-10-28 01:30:53 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys
2016-10-28 01:30:52 ----A---- C:\WINDOWS\SYSWOW64\wmpdxm.dll
2016-10-28 01:30:52 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-10-28 01:30:52 ----A---- C:\WINDOWS\system32\wmpshell.dll
2016-10-28 01:30:52 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2016-10-28 01:30:52 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2016-10-28 01:30:52 ----A---- C:\WINDOWS\system32\pcasvc.dll
2016-10-28 01:30:52 ----A---- C:\WINDOWS\system32\iscsiwmi.dll
2016-10-28 01:30:52 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2016-10-28 01:30:52 ----A---- C:\WINDOWS\system32\cmifw.dll
2016-10-28 01:30:51 ----A---- C:\WINDOWS\SYSWOW64\wmpshell.dll
2016-10-28 01:30:50 ----A---- C:\WINDOWS\SYSWOW64\esentutl.exe
2016-10-28 01:30:50 ----A---- C:\WINDOWS\system32\wups.dll
2016-10-28 01:30:50 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-10-28 01:30:50 ----A---- C:\WINDOWS\system32\esentutl.exe
2016-10-28 01:30:49 ----A---- C:\WINDOWS\system32\sppsvc.exe
2016-10-28 01:30:49 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-10-28 01:30:49 ----A---- C:\WINDOWS\system32\ClipUp.exe
2016-10-28 01:30:48 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-10-28 01:30:48 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-10-28 01:30:48 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2016-10-28 01:30:48 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-28 01:30:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2016-10-28 01:30:46 ----A---- C:\WINDOWS\system32\FntCache.dll
2016-10-28 01:30:46 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-28 01:30:45 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-28 01:30:45 ----A---- C:\WINDOWS\system32\mos.dll
2016-10-28 01:30:44 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-10-28 01:30:44 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-10-28 01:30:44 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-10-28 01:30:43 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-10-28 01:30:43 ----A---- C:\WINDOWS\system32\CPFilters.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\wc_storage.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\daxexec.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-10-28 01:30:42 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-10-28 01:30:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2016-10-28 01:30:41 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-10-28 01:30:41 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-28 01:30:41 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2016-10-28 01:30:41 ----A---- C:\WINDOWS\system32\D3D12.dll
2016-10-28 01:30:41 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-10-28 01:30:41 ----A---- C:\WINDOWS\system32\combase.dll
2016-10-28 01:30:40 ----A---- C:\WINDOWS\system32\winhttp.dll
2016-10-28 01:30:40 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-10-28 01:30:40 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-10-28 01:30:40 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-10-28 01:30:40 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-10-28 01:30:40 ----A---- C:\WINDOWS\system32\crypt32.dll
2016-10-28 01:30:40 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-28 01:30:40 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2016-10-28 01:30:39 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2016-10-28 01:30:39 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-10-28 01:30:39 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-28 01:30:39 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-10-28 01:30:36 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2016-10-28 01:30:36 ----A---- C:\WINDOWS\SYSWOW64\autoplay.dll
2016-10-28 01:30:36 ----A---- C:\WINDOWS\system32\EncDec.dll
2016-10-28 01:30:36 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-28 01:30:36 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2016-10-28 01:30:35 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-10-28 01:30:34 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2016-10-28 01:30:34 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-10-28 01:30:34 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-10-28 01:30:34 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-10-28 01:30:33 ----A---- C:\WINDOWS\system32\Geolocation.dll
2016-10-28 01:30:32 ----A---- C:\WINDOWS\system32\NotificationController.dll
2016-10-28 01:30:32 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-10-28 01:30:31 ----A---- C:\WINDOWS\system32\winmde.dll
2016-10-28 01:30:31 ----A---- C:\WINDOWS\system32\DWrite.dll
2016-10-28 01:30:31 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2016-10-28 01:30:31 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-10-28 01:30:30 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2016-10-28 01:30:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-10-28 01:30:29 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2016-10-28 01:30:29 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-10-28 01:30:29 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2016-10-28 01:30:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-10-28 01:30:26 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2016-10-28 01:30:24 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-10-28 01:30:24 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2016-10-28 01:30:24 ----A---- C:\WINDOWS\SYSWOW64\D3D12.dll
2016-10-28 01:30:24 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-10-28 01:30:24 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-28 01:30:24 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2016-10-28 01:30:24 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2016-10-28 01:30:23 ----A---- C:\WINDOWS\system32\cdd.dll
2016-10-28 01:30:22 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-28 01:30:22 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2016-10-28 01:30:22 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2016-10-28 01:30:21 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2016-10-28 01:30:21 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2016-10-28 01:30:21 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-28 01:30:20 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2016-10-27 19:36:15 ----D---- C:\QuadcoreM2
2016-10-27 19:36:00 ----D---- C:\Users\kupka\AppData\Roaming\Quadcore
2016-10-25 13:58:49 ----A---- C:\WINDOWS\system32\nvdispgenco6437563.dll
2016-10-25 13:58:49 ----A---- C:\WINDOWS\system32\nvdispco6437563.dll

Re: Preventivní Kontrola

Napsal: 22 lis 2016 21:41
od Kupecpro
Zde druha cast -

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2015-07-25 1455552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2016-10-06 153392]
R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2016-07-18 35488]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2016-10-26 151352]
R2 avnetflt;avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [2016-07-18 78208]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 ACPIVPC;@oem13.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-06-15 42328]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-08-20 84992]
R3 ETD;@oem24.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2016-08-19 468568]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [2016-08-19 30808]
R3 ibtusb;@oem125.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2016-09-08 221448]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-09-04 6406544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-08-24 4486400]
R3 MEIx64;@oem21.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2015-06-12 183584]
R3 NETwNb64;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 8.1 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2016-08-03 3520272]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_fbddf9bc2e340ffc\nvlddmkm.sys [2016-11-11 14172608]
R3 nvvad_WaveExtensible;@oem147.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2016-10-25 47672]
R3 rt640x64;@oem14.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-23 895256]
R3 RTSPER;@oem102.inf,%Rts5227PER%;Realtek PCIE Card Reader - PER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [2016-08-24 761600]
R3 rtsuvc;@oem19.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-06-11 3059416]
R3 semav6msr64;semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [2015-06-04 21984]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-08-20 114176]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-10-15 967168]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 IntcDAud;@oem150.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-08 473864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2015-07-10 3354384]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2016-10-25 29240]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2016-10-26 475232]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2016-10-26 475232]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2016-08-24 346928]
R2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2015-07-29 650680]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_3eaf1;CDPUserSvc_3eaf1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-10-30 3294912]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [2016-06-08 416408]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2016-08-19 134888]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2016-08-04 640928]
R2 GDCAgent;GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [2015-07-30 1155512]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2015-07-22 18856]
R2 ibtsiva;@oem125.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\system32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-09-04 350312]
R2 ImControllerService;System Interface Foundation Service; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [2016-10-05 61256]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-10-25 458296]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2016-11-10 458176]
R2 NVIDIA Wireless Controller Service;NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [2016-10-25 1165368]
R2 OneSyncSvc_3eaf1;Hostitel synchronizace_3eaf1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2016-08-04 157600]
R2 SystemUsageReportSvc_WILLAMETTE;Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [2016-06-08 117400]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_3eaf1;Data kontaktů_3eaf1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2016-10-26 1089088]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2016-10-26 1488240]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-10 270016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2016-10-06 1457160]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-09-04 282216]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_3eaf1;Služba zasílání zpráv_3eaf1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2016-08-04 268704]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2016-10-25 458296]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-10-30 209104]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-07 1312768]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-10-13 1459488]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

Re: Preventivní Kontrola

Napsal: 24 lis 2016 17:43
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: Preventivní Kontrola

Napsal: 24 lis 2016 20:00
od Kupecpro
# AdwCleaner v6.030 - Log soubor vytvořen 24/11/2016 na 19:58:17
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-24.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : kupka - LAPTOP-2QJR22JQ
# Beží od : C:\Users\kupka\Desktop\adw.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Adresáře ] *****



***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupce ] *****



***** [ Plánovač úloh ] *****



***** [ Registry ] *****

[-] Data obnovena:HKU\S-1-5-21-1360556598-960547784-4189704753-1001\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data obnovena:HKU\S-1-5-21-1360556598-960547784-4189704753-1001\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
[-] Data obnovena:HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data obnovena:HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
[-] Data obnovena:[x64] HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data obnovena:[x64] HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1443 Bajtů] - [24/11/2016 19:58:17]
C:\AdwCleaner\AdwCleaner[S0].txt - [2135 Bajtů] - [24/11/2016 19:57:54]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1591 Bajtů] ##########

Re: Preventivní Kontrola

Napsal: 24 lis 2016 20:05
od Rudy
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 .

Re: Preventivní Kontrola

Napsal: 24 lis 2016 20:19
od Kupecpro
Odeslal jsem oba soubory v raru, jelikož TXT byl moc dlouhy.

Re: Preventivní Kontrola

Napsal: 24 lis 2016 21:30
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
SearchScopes: HKU\S-1-5-21-1360556598-960547784-4189704753-1001 -> DefaultScope {5DD52585-29B2-4C31-BF96-A6395AA80942} URL =
SearchScopes: HKU\S-1-5-21-1360556598-960547784-4189704753-1001 -> {5DD52585-29B2-4C31-BF96-A6395AA80942} URL =
C:\WINDOWS\LastGood.Tmp
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
C:\ProgramData\DP45977C.lfl
C:\Users\kupka\AppData\Local\Temp

EmpyTemp:
Emd
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Preventivní Kontrola

Napsal: 24 lis 2016 21:39
od Kupecpro
Fix result of Farbar Recovery Scan Tool (x64) Version: 23-11-2016
Ran by kupka (24-11-2016 21:38:32) Run:1
Running from C:\Users\kupka\Desktop
Loaded Profiles: kupka (Available Profiles: kupka)
Boot Mode: Normal
==============================================

fixlist content:
*****************

*****************


==== End of Fixlog 21:38:32 ====

Re: Preventivní Kontrola

Napsal: 24 lis 2016 21:47
od Rudy
Nějaké divné. Podle toho, co jste sem dal FRST nemazal.

Re: Preventivní Kontrola

Napsal: 24 lis 2016 21:50
od Kupecpro
Udělal jsem to znova uplně přesně podle návodu a tentokrát už to asi mazalo:

Fix result of Farbar Recovery Scan Tool (x64) Version: 23-11-2016
Ran by kupka (24-11-2016 21:48:59) Run:2
Running from C:\Users\kupka\Desktop
Loaded Profiles: kupka (Available Profiles: kupka)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
SearchScopes: HKU\S-1-5-21-1360556598-960547784-4189704753-1001 -> DefaultScope {5DD52585-29B2-4C31-BF96-A6395AA80942} URL =
SearchScopes: HKU\S-1-5-21-1360556598-960547784-4189704753-1001 -> {5DD52585-29B2-4C31-BF96-A6395AA80942} URL =
C:\WINDOWS\LastGood.Tmp
C:\WINDOWS\system32\ApnDatabase.xml
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
C:\ProgramData\DP45977C.lfl
C:\Users\kupka\AppData\Local\Temp

EmpyTemp:
Emd
*****************

HKU\S-1-5-21-1360556598-960547784-4189704753-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-1360556598-960547784-4189704753-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5DD52585-29B2-4C31-BF96-A6395AA80942}" => key removed successfully
HKCR\CLSID\{5DD52585-29B2-4C31-BF96-A6395AA80942} => key not found.
C:\WINDOWS\LastGood.Tmp => moved successfully
C:\WINDOWS\system32\ApnDatabase.xml => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat => moved successfully
Could not move "C:\ProgramData\DP45977C.lfl" => Scheduled to move on reboot.

"C:\Users\kupka\AppData\Local\Temp" folder move:

Could not move "C:\Users\kupka\AppData\Local\Temp" => Scheduled to move on reboot.

EmpyTemp: => Error: No automatic fix found for this entry.
Emd => Error: No automatic fix found for this entry.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 24-11-2016 21:49:54)

C:\ProgramData\DP45977C.lfl => Is moved successfully
C:\Users\kupka\AppData\Local\Temp => moved successfully

==== End of Fixlog 21:49:54 ====

Re: Preventivní Kontrola

Napsal: 24 lis 2016 21:53
od Rudy
Teď je to OK. Log by již měl být čistý. :)

Re: Preventivní Kontrola

Napsal: 24 lis 2016 21:54
od Kupecpro
Tudíž všechno v pořádku? Díky za ochotu a Váš čas =)

Re: Preventivní Kontrola

Napsal: 24 lis 2016 22:42
od Rudy
Ano. Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz