Zamŕzanie pri spúšťaní aplikácii

Zpráva

backpase · #1 Příspěvek od **backpase** » 14 bře 2017 23:37

Zdravím, v poslednom čase mi počítač zamŕza pri spúšťaní niektorých aplikácii/hier, začne sa načítavať, zrazu zamrzne a nedá sa nič, musím dať reštart.. a posledné dni sa mi to stávalo aj na prehliadači chrome, prosím o radu

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peter at 2017-03-14 23:32:58
Microsoft Windows 10 Home
System drive C: has 821 GB (87%) free of 940 GB
Total RAM: 3529 MB (38% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:33:02, on 14.03.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Users\Peter\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Peter.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: McAfee WebAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [PowerDVD14Agent] "C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe"
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=av
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Peter\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AvgAMPS - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgamps.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.500\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12642 bytes

======Listing Processes======

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\AVG\Av\avgwdsvca.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Bonjour\mDNSResponder.exe"

C:\Program Files (x86)\AVG\Av\avgcsrva.exe /pipeName=44800c66-0200-0000-13f7-ec769d006a17 /binaryPath="C:\Program Files (x86)\AVG\Av\\" /logPath=C:\WINDOWS\system32\config\systemprofile\AppData\Local\Avg\log\av16 /logCfgPath=C:\ProgramData\Avg\log\av16
"C:\Program Files (x86)\AVG\Av\avgnsa.exe"
"C:\Program Files (x86)\AVG\Av\avgemca.exe"
C:\Program Files (x86)\AVG\Av\avgrsa.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation

winlogon.exe
"dwm.exe"
atieclxx
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Users\Peter\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe"
/fmw.trayonly
/TRAYONLY
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-cachedir=C:\Users\Peter\AppData\Local\Steam\htmlcache" "-steampid=3284" "-buildid=1489442219" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --disable-spell-checking --disable-out-of-process-pac --disable-smooth-scrolling --enable-direct-write
"c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\Windows Defender\msascuil.exe"
"fontdrvhost.exe"
ctfmon.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Peter\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=56.0.2924.87 --initial-client-data=0x250,0x254,0x258,0x24c,0x25c,0x70057598,0x700575bc,0x700575a4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=9008 --on-initialized-event-handle=720 --parent-handle=724 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=AppBannerTriggering/site-engagement-eager/AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Enabled2/InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/OmniboxBundledExperimentV1/StandardR7/ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/SSLPostQuantum/disabled/SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingDefault/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/WebFontsInterventionV2/Default/ --supports-dual-gpus=false --gpu-driver-bug-workarounds=7,19,20,23,26,40,71 --gpu-vendor-id=0x1002 --gpu-device-id=0x1313 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=21.19.519.2 --gpu-driver-date=2-10-2017 --gpu-secondary-vendor-ids=0x1002 --gpu-secondary-device-ids=0x6665 --service-request-channel-token=4EF87F42D2EF52F8ABF9CF02202B9103 --mojo-platform-channel-handle=1332 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/*SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingDefault/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*WebFontsInterventionV2/Default/ --primordial-pipe-token=34D61152A84EB441679C7D977D698495 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=34D61152A84EB441679C7D977D698495 --renderer-client-id=4 --mojo-platform-channel-handle=3776 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/*SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingDefault/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*WebFontsInterventionV2/Default/ --primordial-pipe-token=361208C742CF1C1F1A0519CA15DC5322 --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=361208C742CF1C1F1A0519CA15DC5322 --renderer-client-id=5 --mojo-platform-channel-handle=4040 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Enabled2/*InstanceID/Enabled/MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/*SecurityChip/Enabled/SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/TranslateRankerLogging/TranslateRankerLoggingDefault/TranslateServerStudy/Default/TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*WebFontsInterventionV2/Default/ --primordial-pipe-token=35F97692213474F44982DE2F16BA776C --lang=sk --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=35F97692213474F44982DE2F16BA776C --renderer-client-id=6 --mojo-platform-channel-handle=4196 /prefetch:1
C:\WINDOWS\system32\cmd.exe /c "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0 < \\.\pipe\chrome.nativeMessaging.in.eb6ccd797454ba2c > \\.\pipe\chrome.nativeMessaging.out.eb6ccd797454ba2c
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ --parent-window=0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,DisableFirstRunAutoImport<DisableFirstRunAutoImport,EnableSyncClientToServerCompression<EnableSyncClientToServerCompression,*ExpectCTReporting<ExpectCTReporting,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,MediaFoundationH264Encoding<MediaFoundationH264Encoding,*NegotiateTLS13<TLS13Negotiation,ParseHTMLOnMainThread<ParseHTMLOnMainThread,PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,PreferHtmlOverPlugins<Html5ByDefault,*PrioritySupportedRequestsDelayable<NetDelayableH2AndQuicRequests,SecurityChip<SecurityChip,SecurityWarningIconUpdate<SecurityWarningIconUpdate,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateRankerLogging<TranslateRankerLogging,*TranslateUI2016Q2<TranslateUI2016Q2 --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,SSLPostQuantumExperiment<SSLPostQuantum,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Enabled10_NoControl/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/DefaultEnableGpuRasterization/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/DocumentWriteScriptBlockGroup_20161208_Launch/EnableSyncClientToServerCompression/Enabled/ExpectCTReporting/ExpectCTReportingDisabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Enabled2/*InstanceID/Enabled/*MarkNonSecureAs/show-non-secure-passwords-cc-ui/*MediaFoundationH264Encoding/Enabled/MetricsAndCrashSampling/OutOfReportingSample/*NetDelayableH2AndQuicRequests/Default/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/EnabledOnDisk/*PluginPowerSaverTiny/Enabled2/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingV4LocalDatabaseManagerEnabled/Default/SaveAsMenuText/default/*SecurityChip/Enabled/*SecurityWarningIconUpdate/Enabled2/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Enabled_100/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TLS13Negotiation/Default/*TranslateRankerLogging/TranslateRankerLoggingDefault/TranslateServerStudy/Default/*TranslateUI2016Q2/DefaultTranslateUI2016Q2/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_91/*UMA-Uniformity-Trial-10-Percent/group_09/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/default/*WebFontsInterventionV2/Default/ --primordial-pipe-token=653121E9F2A480C78FCD2E53D3670BC6 --lang=sk --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --service-request-channel-token=653121E9F2A480C78FCD2E53D3670BC6 --renderer-client-id=37 --mojo-platform-channel-handle=5156 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 648 652 660 8192 656
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x490
"C:\Users\Peter\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\HPCeeScheduleForPeter.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPeter (null)
C:\WINDOWS\tasks\update-S-1-5-21-2356218781-861974734-550684159-1002.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\tasks\update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-01-29 213696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2017-02-22 189376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-01-29 2948288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30 629256]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2017-02-22 160288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-07-20 8848640]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Peter\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-03-04 1518304]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-03-13 3019552]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-03-03 9364696]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PowerDVD14Agent"=C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [2015-06-22 795336]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2016-07-11 225944]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2016-12-06 240400]
"AVG_UI"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2016-12-06 240400]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-03-14 22:55:46 ----HD---- C:\OneDriveTemp
2017-03-14 22:42:52 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2017-03-13 21:26:31 ----D---- C:\Users\Peter\AppData\Roaming\Bandicam Company
2017-02-22 21:45:39 ----D---- C:\Users\Peter\AppData\Roaming\GHISLER
2017-02-22 21:45:39 ----D---- C:\totalcmd
2017-02-19 23:42:06 ----D---- C:\Program Files (x86)\DOSBox-0.74
2017-02-19 13:44:12 ----D---- C:\ProgramData\ATI
2017-02-18 19:31:30 ----SHD---- C:\Config.Msi
2017-02-17 23:33:45 ----D---- C:\Users\Peter\AppData\Roaming\uTorrent
2017-02-17 23:06:23 ----D---- C:\ProgramData\Blizzard Entertainment
2017-02-17 22:59:02 ----D---- C:\ProgramData\Battle.net

======List of files/folders modified in the last 1 month======

2017-03-14 23:33:01 ----D---- C:\Program Files\trend micro
2017-03-14 23:26:46 ----D---- C:\WINDOWS\Temp
2017-03-14 23:26:31 ----D---- C:\WINDOWS\CbsTemp
2017-03-14 23:24:59 ----D---- C:\WINDOWS\system32\config
2017-03-14 23:23:14 ----D---- C:\WINDOWS\Prefetch
2017-03-14 23:14:24 ----D---- C:\Program Files (x86)\Steam
2017-03-14 23:14:23 ----D---- C:\WINDOWS\INF
2017-03-14 23:14:23 ----D---- C:\WINDOWS\debug
2017-03-14 23:14:23 ----D---- C:\Windows
2017-03-14 23:05:00 ----SHDC---- C:\WINDOWS\Installer
2017-03-14 23:04:56 ----D---- C:\ProgramData\Apple
2017-03-14 23:04:56 ----D---- C:\Program Files\Common Files
2017-03-14 23:04:15 ----D---- C:\Program Files (x86)\Common Files
2017-03-14 23:03:11 ----D---- C:\WINDOWS\system32\catroot2
2017-03-14 23:03:10 ----SHD---- C:\System Volume Information
2017-03-14 22:53:32 ----D---- C:\ProgramData\MFAData
2017-03-14 22:52:41 ----D---- C:\WINDOWS\system32\SleepStudy
2017-03-14 22:42:52 ----HD---- C:\ProgramData
2017-03-14 22:40:22 ----D---- C:\WINDOWS\WinSxS
2017-03-14 22:35:14 ----D---- C:\WINDOWS\system32\sru
2017-03-14 15:54:37 ----D---- C:\WINDOWS\AppReadiness
2017-03-14 15:54:33 ----RD---- C:\WINDOWS\Microsoft.NET
2017-03-14 12:38:22 ----HD---- C:\Program Files\WindowsApps
2017-03-13 21:25:38 ----D---- C:\Program Files (x86)\Bandicam
2017-03-13 21:25:34 ----D---- C:\Program Files (x86)\BandiMPEG1
2017-03-13 21:23:38 ----D---- C:\Users\Peter\AppData\Roaming\TS3Client
2017-03-13 21:23:00 ----AD---- C:\Program Files\TeamSpeak 3 Client
2017-03-08 00:40:03 ----D---- C:\WINDOWS\system32\Tasks
2017-03-08 00:40:02 ----D---- C:\WINDOWS\Tasks
2017-03-04 02:11:51 ----D---- C:\WINDOWS\SysWOW64
2017-03-04 02:11:51 ----D---- C:\WINDOWS\System32
2017-03-04 02:11:51 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-03-04 02:10:15 ----AD---- C:\Program Files (x86)\Microsoft Office
2017-02-23 15:18:15 ----D---- C:\WINDOWS\system32\MRT
2017-02-23 15:15:22 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-02-22 21:46:48 ----SD---- C:\Users\Peter\AppData\Roaming\Microsoft
2017-02-22 12:17:31 ----RD---- C:\Program Files (x86)
2017-02-21 18:18:12 ----D---- C:\Counter-Strike 1.6
2017-02-20 14:38:43 ----AD---- C:\Program Files\FACEIT Client
2017-02-19 18:56:21 ----D---- C:\WINDOWS\system32\wbem
2017-02-19 18:53:09 ----RD---- C:\Program Files
2017-02-19 18:45:45 ----D---- C:\WINDOWS\registration
2017-02-19 18:41:31 ----D---- C:\WINDOWS\system32\CatRoot
2017-02-19 13:50:10 ----D---- C:\WINDOWS\system32\DriverStore
2017-02-19 13:48:25 ----D---- C:\WINDOWS\system32\drivers
2017-02-19 13:48:23 ----D---- C:\Program Files (x86)\VulkanRT
2017-02-19 13:44:38 ----D---- C:\ProgramData\Package Cache
2017-02-19 13:43:01 ----D---- C:\AMD
2017-02-18 19:15:25 ----D---- C:\WINDOWS\SoftwareDistribution
2017-02-17 23:53:31 ----D---- C:\WINDOWS\Logs
2017-02-17 23:53:31 ----D---- C:\WINDOWS\LiveKernelReports

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem47.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-06-04 73976]
R0 AVGIDSHA;AVGIDSHA; C:\WINDOWS\system32\DRIVERS\avgidsha.sys [2016-10-05 267008]
R0 Avgloga;AVG Logging Driver; C:\WINDOWS\system32\DRIVERS\avgloga.sys [2016-02-16 360736]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx64.sys [2016-09-26 254208]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx64.sys [2016-06-01 52992]
R0 avguniva;AVG Universal Driver; C:\WINDOWS\system32\DRIVERS\avguniva.sys [2016-06-20 77056]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 Avgdiska;AVG Disk Driver; C:\WINDOWS\system32\DRIVERS\avgdiska.sys [2016-05-13 163072]
R1 AVGIDSDriver;AVGIDSDriver; C:\WINDOWS\system32\DRIVERS\avgidsdrivera.sys [2016-11-04 312576]
R1 Avgldx64;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx64.sys [2016-11-30 298240]
R1 Avgwfpa;AVG Firewall Driver; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [2016-08-04 313096]
R1 FACEIT;FACEIT; \??\C:\WINDOWS\System32\Drivers\FACEIT.sys [2017-02-20 4205568]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0311139.inf_amd64_2aa9c01a2af97538\atikmdag.sys [2017-02-13 32699928]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0311139.inf_amd64_2aa9c01a2af97538\atikmpag.sys [2017-02-13 525848]
R3 AtiHDAudioService;@oem119.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-12-08 101376]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-07-20 4802816]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2016-06-06 46240]
R3 rt640x64;@oem11.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-03-23 896752]
R3 RTSUER;@oem103.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-27 402136]
S0 amdkmafd;@oem121.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2016-08-18 49448]
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\WINDOWS\system32\DRIVERS\avgboota.sys [2016-01-07 21632]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 amdkmdan;amdkmdan; C:\WINDOWS\system32\DRIVERS\atikmnag.sys [2016-04-06 20255232]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 dg_ssudbus;@oem53.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-10-03 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;@oem26.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-07-16 263008]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-02-13 299544]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-02 351944]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [2017-01-09 5337600]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-12-06 1146128]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [2017-01-09 725976]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_c0d5a;CDPUserSvc_c0d5a; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-02-18 3704520]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-12-07 31776]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2017-02-22 188352]
R2 OneSyncSvc_c0d5a;Sync Host_c0d5a; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-04-15 389896]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-07-20 310016]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_c0d5a;Kontaktné údaje_c0d5a; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-13 1590560]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-22 154440]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 AvgAMPS;AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [2017-01-09 971160]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-22 154440]
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-29 1102472]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\3.11.500\McCHSvc.exe [2017-01-19 329480]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_c0d5a;MessagingService_c0d5a; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-01-29 207040]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-10-03 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

#2 Příspěvek od **Roli** » 15 bře 2017 17:50

Zdravím,

v první řadě odinstaluj vše od McAfee a AVG, na něj ještě bude potřeba použít AVG remover

Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Stáhni a spusť AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

P.S. v mezičase otevři skříň PC (bočnici) a stlačeným vzduchem odstraň případný prach ze všech komponent.

backpase · #3 Příspěvek od **backpase** » 15 bře 2017 22:58

McAfee a AVG odinštalované, PC prečistené CCleanerom, tu je report z AdwCleaneru, prečistenie komponentov vykonám počas zajtrašieho dňa

# AdwCleaner v6.044 - *Logfile created 15/03/2017 *at 22:53:06
# *Updated on 28/02/2017 by Malwarebytes
# *Database : 2017-03-15.2 [*Server]
# *Operating System : Windows 10 Home (X64)
# *Username : Peter - DESKTOP-JVJF4JS
# *Running from : C:\Users\Peter\Downloads\adwcleaner_6.044.exe
# *Mode: Clean
# *Support : https://www.malwarebytes.com/support

***** [ *Services ] *****

***** [ *Folders ] *****

[-] *Folder deleted: C:\Users\Peter\AppData\Local\Babylon
[-] *Folder deleted: C:\Users\Peter\AppData\Roaming\Babylon
[-] *Folder deleted: C:\Users\Peter\AppData\Roaming\Microleaves
[-] *Folder deleted: C:\Program Files\RunBooster
[-] *Folder deleted: C:\ProgramData\Babylon
[-] *Folder deleted: C:\ProgramData\Microleaves
[-] *Folder deleted: C:\Program Files (x86)\Microleaves

***** [ *Files ] *****

[-] *File deleted: C:\END
[-] *File deleted: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk

***** [ DLL ] *****

***** [ WMI ] *****

***** [ *Shortcuts ] *****

***** [ *Scheduled Tasks ] *****

***** [ *Registry ] *****

[-] *Key deleted: HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] *Key deleted: HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] *Key deleted: HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}

***** [ *Browsers ] *****

*************************

:: *"Tracing" keys deleted
:: *Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1534 *Bytes] - [15/03/2017 22:53:06]
C:\AdwCleaner\AdwCleaner[S0].txt - [1771 *Bytes] - [15/03/2017 22:52:32]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1682 *Bytes] ##########

#4 Příspěvek od **Roli** » 16 bře 2017 17:07

Nyní spusť skener Cure It podle TOHOTO návodu

po skončení skenu mi sem nakopíruj výsledky - stačí konec logu se souhrnem.

(Upozornění je úchylně pomalý a je zapotřebí ho sledovat občas se na něco ptá)

backpase · #5 Příspěvek od **backpase** » 17 bře 2017 22:27

Total 35401049491 bytes in 57794 files scanned (96820 objects)
Total 57833 files (96781 objects) are clean
Total 1 file are infected
Total 38 files are raised error condition
Scan time is 00:24:27.209

-----------------------------------------------------------------------------
Start curing
-----------------------------------------------------------------------------

C:\Users\Peter\AppData\Local\Temp\HYDA8D9.tmp.1489529161\HTA\3rdparty\FS.dll - quarantined

Total 35401049491 bytes in 57794 files scanned (96820 objects)
Total 57833 files (96781 objects) are clean
Total 1 file are infected
Total 1 file are neutralized
Total 38 files are raised error condition
Scan time is 00:24:27.209

#6 Příspěvek od **Roli** » 20 bře 2017 19:44

Bezva vyčištěno, jak se PC chová nyní ?

backpase · #7 Příspěvek od **backpase** » 20 bře 2017 21:24

Je to lepšie, nezamŕza tak ako predtým ale občas sa sekne na minútu a potom znova ide, dnes mi to pár krát spravilo na prehliadači chrome ale nemyslím, že je to práve prehliadačom.. stalo sa, že na +-30 sekúnd aj keď nebežal žiadny program

#8 Příspěvek od **Roli** » 21 bře 2017 16:04

Dej mi sem tedy ještě aktuální log z Rsit, mrknu co tam ještě běží zbytečně na pozadí.

backpase · #9 Příspěvek od **backpase** » 21 bře 2017 21:23

Logfile of random's system information tool 1.16 (written by random/random)
Run by Peter at 2017-03-21 21:21:12
Microsoft Windows 10 Home
System drive C: has 822 GB (87%) free of 940 GB
Total RAM: 3529 MB (60% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:21:16, on 21.03.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\Users\Peter\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe
C:\Program Files\trend micro\Peter_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPDTDFJS
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE01DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [PowerDVD14Agent] "C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe"
O4 - HKLM\..\Run: [Lightshot] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Peter\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10503 bytes

====== Enumerating Processes ======

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\atieclxx.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Users\Peter\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" "-cachedir=C:\Users\Peter\AppData\Local\Steam\htmlcache" "-steampid=548" "-buildid=1489442219" "-steamid=0" --disable-gpu-compositing --disable-gpu --process-per-tab --disable-spell-checking --disable-out-of-process-pac --disable-smooth-scrolling --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
C:\Program Files\Windows Defender\MpCmdRun.exe
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe" --type=renderer --disable-gpu-compositing --disable-smooth-scrolling --enable-pinch --primordial-pipe-token=D20D72677A6A74DFC89E48ACE3A810C7 --lang=en-US --lang=sk-SK --log-file="C:\Program Files (x86)\Steam\bin\cef\cef.win7\debug.log" --product-version="Valve Steam Client" --disable-spell-checking --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --service-request-channel-token=D20D72677A6A74DFC89E48ACE3A810C7 --renderer-client-id=4 --mojo-platform-channel-handle=884 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\fontdrvhost.exe
C:\WINDOWS\system32\AUDIODG.EXE 0x37c
\\?\C:\WINDOWS\system32\wbem\WMIADAP.EXE
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\WmiApSrv.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
"C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe"
"C:\Users\Peter\Downloads\RSITx64.exe"

====== Scheduled tasks folder ======

C:\WINDOWS\tasks\HPCeeScheduleForPeter.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPeter (null)
C:\WINDOWS\tasks\update-S-1-5-21-2356218781-861974734-550684159-1002.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\tasks\update-sys.job - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\DropboxOEM - "%ProgramFiles(x86)%\Dropbox\DropboxOEM\DropboxOEM.exe" auto
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\HPCeeScheduleForPeter - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForPeter (null)
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\Peter\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\StartCN - "C:\Program Files\AMD\CNext\CNext\cncmd.exe" startwithdelay
C:\WINDOWS\system32\tasks\update-S-1-5-21-2356218781-861974734-550684159-1002 - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\system32\tasks\update-sys - C:\Program Files (x86)\Skillbrains\Updater\Updater.exe -runmode=checkupdate
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{79646EBF-2ED4-4166-B5C6-951A471C710B} - C:\windows\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe Reboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Subscription Maintenance - C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r /m
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\Product Configurator - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA

=========Google Chrome=========

C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Web Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo
Extension dhdgffkkebhmkfjojejmpbldmpobfkfo 1 Tampermonkey 4.2.7
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.6
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension hehijbfgiekmjfkfjpbkbammjbdenadd 1 IE Tab 10.2.24.1
Extension jkfpchpiljkaemlpmpebnglgkomamfeo 0 HP Network Check Launcher 1.5
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension lifbcibllhkdhoafpjfnlhfpfgnpldfl 2 Skype 8.5.0.9167
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage:
default_search_provider.search_url:
C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo]
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl]
"Path"=

======Registry dump ======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=HRTS
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B0C98A0A-2417-494F-A352-8650647F5FE8}]
"URL"=http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTer ... TR&pc=HRTS
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{B0C98A0A-2417-494F-A352-8650647F5FE8}]
"URL"=http://www.amazon.co.uk/s/ref=azs_osd_i ... earchTerms}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-01-29 213696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-01-29 2948288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}]
Evernote extension - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-04-30 629256]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21 416320]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-07-20 8848640]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2016-10-03 631808]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Peter\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-03-04 1518304]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-03-13 3019552]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2017-03-03 9364696]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PowerDVD14Agent"=C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [2015-06-22 795336]
"Lightshot"=C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [2016-07-11 225944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath" = %SystemRoot%\inf\unregmp2.exe /ShowWMP

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

backpase · #10 Příspěvek od **backpase** » 21 bře 2017 21:24

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2017-03-21 21:12:55 ----HD---- C:\OneDriveTemp
2017-03-15 22:51:03 ----D---- C:\AdwCleaner
2017-03-15 20:01:46 ----D---- C:\AVG_Remover
2017-03-15 14:13:25 ----D---- C:\Program Files (x86)\Autodesk
2017-03-14 23:53:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:53:37 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-03-14 23:53:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-03-14 23:53:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-03-14 23:53:35 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2017-03-14 23:53:34 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2017-03-14 23:53:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-03-14 23:53:33 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2017-03-14 23:53:33 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2017-03-14 23:53:32 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-03-14 23:53:32 ----A---- C:\WINDOWS\SYSWOW64\CertEnroll.dll
2017-03-14 23:53:31 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-03-14 23:53:30 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-03-14 23:53:30 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2017-03-14 23:53:30 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2017-03-14 23:53:29 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2017-03-14 23:53:29 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2017-03-14 23:53:29 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2017-03-14 23:53:28 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-03-14 23:53:28 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2017-03-14 23:53:27 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2017-03-14 23:53:27 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-03-14 23:53:27 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2017-03-14 23:53:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2017-03-14 23:53:26 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-03-14 23:53:26 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2017-03-14 23:53:26 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2017-03-14 23:53:26 ----A---- C:\WINDOWS\SYSWOW64\CloudBackupSettings.dll
2017-03-14 23:53:25 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2017-03-14 23:53:25 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2017-03-14 23:53:25 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2017-03-14 23:53:25 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2017-03-14 23:53:25 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2017-03-14 23:53:24 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-03-14 23:53:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2017-03-14 23:53:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2017-03-14 23:53:24 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2017-03-14 23:53:24 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2017-03-14 23:53:24 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2017-03-14 23:53:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2017-03-14 23:53:23 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-03-14 23:53:23 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2017-03-14 23:53:23 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2017-03-14 23:53:23 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2017-03-14 23:53:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2017-03-14 23:53:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2017-03-14 23:53:22 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2017-03-14 23:53:22 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-03-14 23:53:22 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2017-03-14 23:53:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2017-03-14 23:53:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Audio.dll
2017-03-14 23:53:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-03-14 23:53:21 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2017-03-14 23:53:21 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-03-14 23:53:21 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2017-03-14 23:53:21 ----A---- C:\WINDOWS\SYSWOW64\comsvcs.dll
2017-03-14 23:53:21 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2017-03-14 23:53:20 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2017-03-14 23:53:20 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2017-03-14 23:53:20 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2017-03-14 23:53:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2017-03-14 23:53:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.AccountsControl.dll
2017-03-14 23:53:19 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2017-03-14 23:53:19 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2017-03-14 23:53:19 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2017-03-14 23:53:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-14 23:53:18 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2017-03-14 23:53:18 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2017-03-14 23:53:18 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2017-03-14 23:53:18 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2017-03-14 23:53:17 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2017-03-14 23:53:17 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-03-14 23:53:17 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.dll
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\RTMediaFrame.dll
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-03-14 23:53:16 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2017-03-14 23:53:15 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2017-03-14 23:53:15 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2017-03-14 23:53:15 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2017-03-14 23:53:15 ----A---- C:\WINDOWS\SYSWOW64\quartz.dll
2017-03-14 23:53:15 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2017-03-14 23:53:15 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2017-03-14 23:53:15 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2017-03-14 23:53:15 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2017-03-14 23:53:15 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-03-14 23:53:14 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2017-03-14 23:53:14 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:53:14 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2017-03-14 23:53:14 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2017-03-14 23:53:14 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-03-14 23:53:14 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2017-03-14 23:53:14 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2017-03-14 23:53:13 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2017-03-14 23:53:13 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-03-14 23:53:13 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2017-03-14 23:53:13 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2017-03-14 23:53:13 ----A---- C:\WINDOWS\system32\drivers\storahci.sys
2017-03-14 23:53:12 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2017-03-14 23:53:12 ----A---- C:\WINDOWS\SYSWOW64\mbsmsapi.dll
2017-03-14 23:53:12 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-03-14 23:53:12 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2017-03-14 23:53:12 ----A---- C:\WINDOWS\SYSWOW64\AppointmentApis.dll
2017-03-14 23:53:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2017-03-14 23:53:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.3D.dll
2017-03-14 23:53:11 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-03-14 23:53:10 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2017-03-14 23:53:10 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-03-14 23:53:10 ----A---- C:\WINDOWS\SYSWOW64\PCPTpm12.dll
2017-03-14 23:53:10 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2017-03-14 23:53:10 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-03-14 23:53:09 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-03-14 23:53:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2017-03-14 23:53:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Perception.dll
2017-03-14 23:53:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2017-03-14 23:53:09 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-03-14 23:53:09 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2017-03-14 23:53:09 ----A---- C:\WINDOWS\SYSWOW64\EmailApis.dll
2017-03-14 23:53:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-03-14 23:53:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2017-03-14 23:53:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.PointOfService.dll
2017-03-14 23:53:08 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2017-03-14 23:53:08 ----A---- C:\WINDOWS\SYSWOW64\CompPkgSup.dll
2017-03-14 23:53:08 ----A---- C:\WINDOWS\SYSWOW64\basecsp.dll
2017-03-14 23:53:08 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2017-03-14 23:53:07 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2017-03-14 23:53:07 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2017-03-14 23:53:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MediaControl.dll
2017-03-14 23:53:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.AllJoyn.dll
2017-03-14 23:53:07 ----A---- C:\WINDOWS\SYSWOW64\MiracastReceiver.dll
2017-03-14 23:53:07 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2017-03-14 23:53:07 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2017-03-14 23:53:07 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2017-03-14 23:53:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2017-03-14 23:53:06 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2017-03-14 23:53:06 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2017-03-14 23:53:06 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2017-03-14 23:53:06 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2017-03-14 23:53:06 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2017-03-14 23:53:06 ----A---- C:\WINDOWS\SYSWOW64\evr.dll
2017-03-14 23:53:06 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostUser.dll
2017-03-14 23:53:05 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2017-03-14 23:53:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Picker.dll
2017-03-14 23:53:05 ----A---- C:\WINDOWS\SYSWOW64\mstsc.exe
2017-03-14 23:53:05 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2017-03-14 23:53:05 ----A---- C:\WINDOWS\SYSWOW64\input.dll
2017-03-14 23:53:04 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2017-03-14 23:53:04 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2017-03-14 23:53:04 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2017-03-14 23:53:04 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2017-03-14 23:53:04 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\wsp_sr.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Usb.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SmartCards.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.LowLevel.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2017-03-14 23:53:03 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-03-14 23:53:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2017-03-14 23:53:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Midi.dll
2017-03-14 23:53:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 23:53:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:53:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-14 23:53:01 ----A---- C:\WINDOWS\SYSWOW64\netiougc.exe
2017-03-14 23:53:01 ----A---- C:\WINDOWS\SYSWOW64\MCCSEngineShared.dll
2017-03-14 23:53:01 ----A---- C:\WINDOWS\SYSWOW64\imapi2fs.dll
2017-03-14 23:53:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFiDirect.dll
2017-03-14 23:52:59 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-14 23:52:59 ----A---- C:\WINDOWS\SYSWOW64\UserDataAccountApis.dll
2017-03-14 23:52:58 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2017-03-14 23:52:58 ----A---- C:\WINDOWS\SYSWOW64\icm32.dll
2017-03-14 23:52:58 ----A---- C:\WINDOWS\SYSWOW64\CryptoWinRT.dll
2017-03-14 23:52:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2017-03-14 23:52:57 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2017-03-14 23:52:57 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2017-03-14 23:52:57 ----A---- C:\WINDOWS\SYSWOW64\scksp.dll
2017-03-14 23:52:57 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2017-03-14 23:52:57 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-03-14 23:52:56 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2017-03-14 23:52:56 ----A---- C:\WINDOWS\SYSWOW64\WinRtTracing.dll
2017-03-14 23:52:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Perception.Stub.dll
2017-03-14 23:52:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.WiFi.dll
2017-03-14 23:52:56 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2017-03-14 23:52:56 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2017-03-14 23:52:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-14 23:52:55 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2017-03-14 23:52:55 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2017-03-14 23:52:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 23:52:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.FaceAnalysis.dll
2017-03-14 23:52:54 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2017-03-14 23:52:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.SerialCommunication.dll
2017-03-14 23:52:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2017-03-14 23:52:53 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2017-03-14 23:52:53 ----A---- C:\WINDOWS\SYSWOW64\PlayToReceiver.dll
2017-03-14 23:52:53 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-03-14 23:52:52 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2017-03-14 23:52:52 ----A---- C:\WINDOWS\SYSWOW64\Pimstore.dll
2017-03-14 23:52:52 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2017-03-14 23:52:52 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2017-03-14 23:52:52 ----A---- C:\WINDOWS\SYSWOW64\mscms.dll
2017-03-14 23:52:52 ----A---- C:\WINDOWS\SYSWOW64\ChatApis.dll
2017-03-14 23:52:51 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2017-03-14 23:52:51 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2017-03-14 23:52:51 ----A---- C:\WINDOWS\SYSWOW64\mtxclu.dll
2017-03-14 23:52:51 ----A---- C:\WINDOWS\SYSWOW64\msutb.dll
2017-03-14 23:52:51 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2017-03-14 23:52:51 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2017-03-14 23:52:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:52:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2017-03-14 23:52:50 ----A---- C:\WINDOWS\SYSWOW64\MSVPXENC.dll
2017-03-14 23:52:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2017-03-14 23:52:49 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2017-03-14 23:52:49 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.dll
2017-03-14 23:52:49 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2017-03-14 23:52:49 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2017-03-14 23:52:49 ----A---- C:\WINDOWS\SYSWOW64\ExSMime.dll
2017-03-14 23:52:48 ----A---- C:\WINDOWS\SYSWOW64\wlanui.dll
2017-03-14 23:52:48 ----A---- C:\WINDOWS\SYSWOW64\msdtcuiu.dll
2017-03-14 23:52:48 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2017-03-14 23:52:48 ----A---- C:\WINDOWS\SYSWOW64\azroleui.dll
2017-03-14 23:52:47 ----A---- C:\WINDOWS\SYSWOW64\WsmWmiPl.dll
2017-03-14 23:52:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2017-03-14 23:52:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Ocr.dll
2017-03-14 23:52:46 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2017-03-14 23:52:46 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2017-03-14 23:52:46 ----A---- C:\WINDOWS\SYSWOW64\regedit.exe
2017-03-14 23:52:46 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2017-03-14 23:52:46 ----A---- C:\WINDOWS\SYSWOW64\ActiveSyncProvider.dll
2017-03-14 23:52:45 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.HostName.dll
2017-03-14 23:52:45 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2017-03-14 23:52:45 ----A---- C:\WINDOWS\SYSWOW64\RADCUI.dll
2017-03-14 23:52:45 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2017-03-14 23:52:44 ----A---- C:\WINDOWS\SYSWOW64\MSPhotography.dll
2017-03-14 23:52:44 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2017-03-14 23:52:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.Search.dll
2017-03-14 23:52:43 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2017-03-14 23:52:42 ----A---- C:\WINDOWS\SYSWOW64\WwaApi.dll
2017-03-14 23:52:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-14 23:52:42 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2017-03-14 23:52:42 ----A---- C:\WINDOWS\SYSWOW64\ErrorDetails.dll
2017-03-14 23:52:41 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2017-03-14 23:52:41 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2017-03-14 23:52:41 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2017-03-14 23:52:40 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2017-03-14 23:52:40 ----A---- C:\WINDOWS\SYSWOW64\tcpipcfg.dll
2017-03-14 23:52:40 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2017-03-14 23:52:40 ----A---- C:\WINDOWS\SYSWOW64\ProximityCommon.dll
2017-03-14 23:52:39 ----A---- C:\WINDOWS\SYSWOW64\vaultcli.dll
2017-03-14 23:52:39 ----A---- C:\WINDOWS\SYSWOW64\puiapi.dll
2017-03-14 23:52:39 ----A---- C:\WINDOWS\SYSWOW64\mscandui.dll
2017-03-14 23:52:39 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2017-03-14 23:52:39 ----A---- C:\WINDOWS\SYSWOW64\findnetprinters.dll
2017-03-14 23:52:39 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2017-03-14 23:52:39 ----A---- C:\WINDOWS\SYSWOW64\BrowserSettingSync.dll
2017-03-14 23:52:38 ----A---- C:\WINDOWS\SYSWOW64\WMVSENCD.DLL
2017-03-14 23:52:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:52:38 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2017-03-14 23:52:38 ----A---- C:\WINDOWS\SYSWOW64\DavSyncProvider.dll
2017-03-14 23:52:38 ----A---- C:\WINDOWS\SYSWOW64\DafPrintProvider.dll
2017-03-14 23:52:38 ----A---- C:\WINDOWS\SYSWOW64\cemapi.dll
2017-03-14 23:52:38 ----A---- C:\WINDOWS\SYSWOW64\accountaccessor.dll
2017-03-14 23:52:37 ----A---- C:\WINDOWS\SYSWOW64\XInputUap.dll
2017-03-14 23:52:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2017-03-14 23:52:37 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2017-03-14 23:52:37 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2017-03-14 23:52:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Diagnostics.dll
2017-03-14 23:52:36 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2017-03-14 23:52:36 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-03-14 23:52:36 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2017-03-14 23:52:35 ----A---- C:\WINDOWS\SYSWOW64\MSVP9DEC.dll
2017-03-14 23:52:35 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2017-03-14 23:52:35 ----A---- C:\WINDOWS\SYSWOW64\CameraCaptureUI.dll
2017-03-14 23:52:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 23:52:34 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2017-03-14 23:52:34 ----A---- C:\WINDOWS\SYSWOW64\tapi32.dll
2017-03-14 23:52:34 ----A---- C:\WINDOWS\SYSWOW64\msctfui.dll
2017-03-14 23:52:34 ----A---- C:\WINDOWS\SYSWOW64\dplaysvr.exe
2017-03-14 23:52:34 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2017-03-14 23:52:34 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2017-03-14 23:52:34 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-03-14 23:52:33 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-03-14 23:52:33 ----A---- C:\WINDOWS\SYSWOW64\fontext.dll
2017-03-14 23:52:33 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-03-14 23:52:32 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-14 23:52:32 ----A---- C:\WINDOWS\SYSWOW64\UserDeviceRegistration.Ngc.dll
2017-03-14 23:52:32 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2017-03-14 23:52:32 ----A---- C:\WINDOWS\SYSWOW64\msctfp.dll
2017-03-14 23:52:32 ----A---- C:\WINDOWS\SYSWOW64\ddrawex.dll
2017-03-14 23:52:31 ----A---- C:\WINDOWS\SYSWOW64\VCardParser.dll
2017-03-14 23:52:31 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2017-03-14 23:52:31 ----A---- C:\WINDOWS\SYSWOW64\hgcpl.dll
2017-03-14 23:52:31 ----A---- C:\WINDOWS\SYSWOW64\GamePanelExternalHook.dll
2017-03-14 23:52:31 ----A---- C:\WINDOWS\SYSWOW64\ddraw.dll
2017-03-14 23:52:31 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-03-14 23:52:21 ----A---- C:\WINDOWS\system32\tquery.dll
2017-03-14 23:52:21 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-03-14 23:52:20 ----A---- C:\WINDOWS\SYSWOW64\xpsrchvw.exe
2017-03-14 23:52:20 ----A---- C:\WINDOWS\SYSWOW64\wmpmde.dll
2017-03-14 23:52:20 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-03-14 23:52:20 ----A---- C:\WINDOWS\system32\wmpmde.dll
2017-03-14 23:52:18 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2017-03-14 23:52:18 ----A---- C:\WINDOWS\system32\WWanAPI.dll
2017-03-14 23:52:18 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-03-14 23:52:18 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-03-14 23:52:18 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-03-14 23:52:17 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-03-14 23:52:17 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2017-03-14 23:52:15 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-03-14 23:52:13 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-14 23:52:12 ----A---- C:\WINDOWS\system32\XblGameSaveExt.dll
2017-03-14 23:52:04 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2017-03-14 23:52:03 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-03-14 23:52:02 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-03-14 23:52:02 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 23:52:02 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-03-14 23:52:02 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-03-14 23:52:02 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2017-03-14 23:52:02 ----A---- C:\WINDOWS\system32\mssvp.dll
2017-03-14 23:52:02 ----A---- C:\WINDOWS\system32\mssphtb.dll
2017-03-14 23:52:02 ----A---- C:\WINDOWS\system32\mssph.dll
2017-03-14 23:52:01 ----A---- C:\WINDOWS\SYSWOW64\WebcamUi.dll
2017-03-14 23:52:01 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-03-14 23:52:01 ----A---- C:\WINDOWS\system32\wwanmm.dll
2017-03-14 23:52:01 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-03-14 23:52:00 ----A---- C:\WINDOWS\SYSWOW64\WPDShServiceObj.dll
2017-03-14 23:52:00 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-03-14 23:52:00 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-03-14 23:52:00 ----A---- C:\WINDOWS\system32\Windows.Gaming.UI.GameBar.dll
2017-03-14 23:52:00 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-03-14 23:52:00 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2017-03-14 23:51:59 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-03-14 23:51:59 ----A---- C:\WINDOWS\system32\wlanui.dll
2017-03-14 23:51:59 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-03-14 23:51:59 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-03-14 23:51:59 ----A---- C:\WINDOWS\system32\mssitlb.dll
2017-03-14 23:51:58 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-03-14 23:51:58 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-03-14 23:51:57 ----A---- C:\WINDOWS\system32\wwanconn.dll
2017-03-14 23:51:57 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2017-03-14 23:51:57 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-03-14 23:51:55 ----A---- C:\WINDOWS\system32\wmp.dll
2017-03-14 23:51:54 ----A---- C:\WINDOWS\system32\shell32.dll
2017-03-14 23:51:53 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2017-03-14 23:51:52 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-03-14 23:51:51 ----A---- C:\WINDOWS\system32\mos.dll
2017-03-14 23:51:50 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-14 23:51:49 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-03-14 23:51:49 ----A---- C:\WINDOWS\system32\BingMaps.dll
2017-03-14 23:51:48 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-14 23:51:48 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-03-14 23:51:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-03-14 23:51:47 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-14 23:51:47 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-03-14 23:51:47 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-14 23:51:47 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-03-14 23:51:46 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-03-14 23:51:46 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-14 23:51:46 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2017-03-14 23:51:45 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-03-14 23:51:45 ----A---- C:\WINDOWS\system32\MapRouter.dll
2017-03-14 23:51:45 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-14 23:51:44 ----A---- C:\WINDOWS\system32\Wpc.dll
2017-03-14 23:51:44 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-03-14 23:51:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-03-14 23:51:44 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-03-14 23:51:44 ----A---- C:\WINDOWS\system32\MapsStore.dll
2017-03-14 23:51:44 ----A---- C:\WINDOWS\system32\ContactApis.dll
2017-03-14 23:51:43 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-03-14 23:51:43 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-03-14 23:51:43 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-03-14 23:51:42 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-14 23:51:42 ----A---- C:\WINDOWS\system32\mfplat.dll
2017-03-14 23:51:42 ----A---- C:\WINDOWS\system32\localspl.dll
2017-03-14 23:51:41 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-03-14 23:51:41 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-03-14 23:51:41 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-03-14 23:51:40 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-03-14 23:51:40 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2017-03-14 23:51:40 ----A---- C:\WINDOWS\system32\mmc.exe
2017-03-14 23:51:39 ----A---- C:\WINDOWS\system32\WpcMon.exe
2017-03-14 23:51:39 ----A---- C:\WINDOWS\system32\wlansec.dll
2017-03-14 23:51:39 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-03-14 23:51:39 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-03-14 23:51:39 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2017-03-14 23:51:38 ----A---- C:\WINDOWS\system32\wlansvc.dll
2017-03-14 23:51:38 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2017-03-14 23:51:38 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-14 23:51:38 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-03-14 23:51:38 ----A---- C:\WINDOWS\system32\msxml3.dll
2017-03-14 23:51:38 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-14 23:51:38 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2017-03-14 23:51:37 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-03-14 23:51:37 ----A---- C:\WINDOWS\system32\ntshrui.dll
2017-03-14 23:51:37 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-03-14 23:51:37 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2017-03-14 23:51:37 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-03-14 23:51:36 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2017-03-14 23:51:36 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-14 23:51:36 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-03-14 23:51:36 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-03-14 23:51:36 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-03-14 23:51:36 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-03-14 23:51:36 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-03-14 23:51:36 ----A---- C:\WINDOWS\system32\mf.dll
2017-03-14 23:51:35 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2017-03-14 23:51:35 ----A---- C:\WINDOWS\system32\usocore.dll
2017-03-14 23:51:35 ----A---- C:\WINDOWS\system32\PimIndexMaintenance.dll
2017-03-14 23:51:35 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-03-14 23:51:35 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-14 23:51:35 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-03-14 23:51:35 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-03-14 23:51:34 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-03-14 23:51:34 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-03-14 23:51:34 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-03-14 23:51:34 ----A---- C:\WINDOWS\system32\rasgcw.dll
2017-03-14 23:51:34 ----A---- C:\WINDOWS\system32\Pimstore.dll
2017-03-14 23:51:34 ----A---- C:\WINDOWS\system32\AuthHost.exe
2017-03-14 23:51:33 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-03-14 23:51:33 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-14 23:51:33 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-03-14 23:51:33 ----A---- C:\WINDOWS\system32\mfds.dll
2017-03-14 23:51:33 ----A---- C:\WINDOWS\system32\ChatApis.dll
2017-03-14 23:51:33 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2017-03-14 23:51:33 ----A---- C:\WINDOWS\system32\AppointmentApis.dll
2017-03-14 23:51:32 ----A---- C:\WINDOWS\system32\wlanapi.dll
2017-03-14 23:51:32 ----A---- C:\WINDOWS\system32\UserDataService.dll
2017-03-14 23:51:32 ----A---- C:\WINDOWS\system32\moshost.dll
2017-03-14 23:51:32 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2017-03-14 23:51:32 ----A---- C:\WINDOWS\system32\InputService.dll
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\mfsvr.dll
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2017-03-14 23:51:31 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2017-03-14 23:51:30 ----A---- C:\WINDOWS\system32\Windows.Perception.Stub.dll
2017-03-14 23:51:30 ----A---- C:\WINDOWS\system32\RADCUI.dll
2017-03-14 23:51:30 ----A---- C:\WINDOWS\system32\MCCSEngineShared.dll
2017-03-14 23:51:30 ----A---- C:\WINDOWS\system32\internetmail.dll
2017-03-14 23:51:30 ----A---- C:\WINDOWS\system32\FrameServer.dll
2017-03-14 23:51:29 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-03-14 23:51:29 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-03-14 23:51:29 ----A---- C:\WINDOWS\system32\MSPhotography.dll
2017-03-14 23:51:28 ----A---- C:\WINDOWS\system32\RelPost.exe
2017-03-14 23:51:28 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-14 23:51:28 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-03-14 23:51:27 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 23:51:27 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-03-14 23:51:27 ----A---- C:\WINDOWS\system32\MSVP9DEC.dll
2017-03-14 23:51:27 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2017-03-14 23:51:26 ----A---- C:\WINDOWS\system32\wfdprov.dll
2017-03-14 23:51:26 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-03-14 23:51:26 ----A---- C:\WINDOWS\system32\netshell.dll
2017-03-14 23:51:25 ----A---- C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-14 23:51:25 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 23:51:25 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-03-14 23:51:25 ----A---- C:\WINDOWS\system32\sdengin2.dll
2017-03-14 23:51:25 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-03-14 23:51:25 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2017-03-14 23:51:25 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2017-03-14 23:51:25 ----A---- C:\WINDOWS\system32\ExSMime.dll
2017-03-14 23:51:24 ----A---- C:\WINDOWS\system32\Unistore.dll
2017-03-14 23:51:24 ----A---- C:\WINDOWS\system32\puiapi.dll
2017-03-14 23:51:24 ----A---- C:\WINDOWS\system32\PrintRenderAPIHost.DLL
2017-03-14 23:51:24 ----A---- C:\WINDOWS\system32\MSVPXENC.dll
2017-03-14 23:51:24 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2017-03-14 23:51:24 ----A---- C:\WINDOWS\system32\DafPrintProvider.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\wpninprc.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\tapi32.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\sdshext.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\pnidui.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\DuCsps.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\DavSyncProvider.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\cemapi.dll
2017-03-14 23:51:23 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2017-03-14 23:51:22 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 23:51:22 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-03-14 23:51:22 ----A---- C:\WINDOWS\system32\netiougc.exe
2017-03-14 23:51:20 ----A---- C:\WINDOWS\system32\VCardParser.dll
2017-03-14 23:51:18 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-03-14 23:51:16 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-03-14 23:51:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-14 23:51:14 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-03-14 23:51:13 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-03-14 23:51:12 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-03-14 23:51:11 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-03-14 23:51:10 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-03-14 23:51:09 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2017-03-14 23:51:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-03-14 23:51:08 ----A---- C:\WINDOWS\system32\wininet.dll
2017-03-14 23:51:08 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-03-14 23:51:06 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-03-14 23:51:06 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-03-14 23:51:06 ----A---- C:\WINDOWS\system32\d3d11.dll
2017-03-14 23:51:05 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-03-14 23:51:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-03-14 23:51:05 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-03-14 23:51:04 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-03-14 23:51:04 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-14 23:51:04 ----A---- C:\WINDOWS\system32\comsvcs.dll
2017-03-14 23:51:03 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-03-14 23:51:03 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-14 23:51:03 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-03-14 23:51:03 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-03-14 23:51:03 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-03-14 23:51:03 ----A---- C:\WINDOWS\system32\dxgi.dll
2017-03-14 23:51:02 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2017-03-14 23:51:02 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-14 23:51:02 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-03-14 23:51:02 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-14 23:51:02 ----A---- C:\WINDOWS\system32\schannel.dll
2017-03-14 23:51:02 ----A---- C:\WINDOWS\system32\inetcomm.dll
2017-03-14 23:51:02 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2017-03-14 23:51:02 ----A---- C:\WINDOWS\system32\CloudBackupSettings.dll
2017-03-14 23:51:01 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-14 23:51:01 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-03-14 23:51:01 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-03-14 23:51:01 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2017-03-14 23:51:01 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2017-03-14 23:51:01 ----A---- C:\WINDOWS\system32\dnsapi.dll
2017-03-14 23:51:00 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-03-14 23:51:00 ----A---- C:\WINDOWS\system32\winmde.dll
2017-03-14 23:51:00 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-03-14 23:51:00 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-03-14 23:51:00 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-03-14 23:50:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-14 23:50:59 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-03-14 23:50:59 ----A---- C:\WINDOWS\system32\vpnike.dll
2017-03-14 23:50:59 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-03-14 23:50:59 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2017-03-14 23:50:58 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-03-14 23:50:58 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-14 23:50:58 ----A---- C:\WINDOWS\system32\uDWM.dll
2017-03-14 23:50:58 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-03-14 23:50:57 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-14 23:50:57 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2017-03-14 23:50:57 ----A---- C:\WINDOWS\system32\werconcpl.dll
2017-03-14 23:50:57 ----A---- C:\WINDOWS\HelpPane.exe
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\SettingSync.dll
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\quartz.dll
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2017-03-14 23:50:56 ----A---- C:\WINDOWS\system32\DMRServer.dll
2017-03-14 23:50:55 ----A---- C:\WINDOWS\system32\WorkFoldersGPExt.dll
2017-03-14 23:50:55 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-03-14 23:50:55 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-14 23:50:54 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-14 23:50:54 ----A---- C:\WINDOWS\system32\msftedit.dll
2017-03-14 23:50:53 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-03-14 23:50:53 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-03-14 23:50:53 ----A---- C:\WINDOWS\system32\RDXService.dll
2017-03-14 23:50:53 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-03-14 23:50:52 ----A---- C:\WINDOWS\system32\wlidprov.dll
2017-03-14 23:50:52 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-03-14 23:50:52 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-03-14 23:50:52 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2017-03-14 23:50:52 ----A---- C:\WINDOWS\system32\evr.dll
2017-03-14 23:50:52 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-03-14 23:50:50 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-03-14 23:50:49 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-03-14 23:50:48 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-03-14 23:50:48 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-03-14 23:50:48 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-03-14 23:50:48 ----A---- C:\WINDOWS\system32\PhotoScreensaver.scr
2017-03-14 23:50:48 ----A---- C:\WINDOWS\system32\MFPlay.dll
2017-03-14 23:50:48 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-03-14 23:50:48 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-14 23:50:47 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-03-14 23:50:47 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-03-14 23:50:47 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-14 23:50:46 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-14 23:50:46 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 23:50:46 ----A---- C:\WINDOWS\system32\Tabbtn.dll
2017-03-14 23:50:46 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-03-14 23:50:46 ----A---- C:\WINDOWS\system32\icm32.dll
2017-03-14 23:50:46 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-03-14 23:50:46 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-03-14 23:50:45 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-03-14 23:50:45 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-03-14 23:50:45 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2017-03-14 23:50:45 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-03-14 23:50:45 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2017-03-14 23:50:44 ----A---- C:\WINDOWS\SYSWOW64\PhotoScreensaver.scr
2017-03-14 23:50:44 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-03-14 23:50:44 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2017-03-14 23:50:44 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-03-14 23:50:43 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-03-14 23:50:43 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-03-14 23:50:43 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-03-14 23:50:42 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2017-03-14 23:50:42 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2017-03-14 23:50:42 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-03-14 23:50:41 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2017-03-14 23:50:41 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-14 23:50:40 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2017-03-14 23:50:40 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2017-03-14 23:50:40 ----A---- C:\WINDOWS\system32\tbauth.dll
2017-03-14 23:50:40 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2017-03-14 23:50:40 ----A---- C:\WINDOWS\system32\fhcfg.dll
2017-03-14 23:50:40 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-03-14 23:50:40 ----A---- C:\WINDOWS\system32\BrowserSettingSync.dll
2017-03-14 23:50:40 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-03-14 23:50:39 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2017-03-14 23:50:39 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-03-14 23:50:39 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2017-03-14 23:50:39 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-14 23:50:38 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2017-03-14 23:50:38 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-03-14 23:50:38 ----A---- C:\WINDOWS\system32\ddrawex.dll
2017-03-14 23:50:37 ----A---- C:\WINDOWS\system32\ddraw.dll
2017-03-14 23:50:29 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-14 23:50:27 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-03-14 23:50:26 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2017-03-14 23:50:26 ----A---- C:\WINDOWS\system32\twinui.dll
2017-03-14 23:50:26 ----A---- C:\WINDOWS\system32\aepic.dll
2017-03-14 23:50:25 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-14 23:50:25 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-03-14 23:50:25 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-03-14 23:50:25 ----A---- C:\WINDOWS\explorer.exe
2017-03-14 23:50:24 ----A---- C:\WINDOWS\system32\mispace.dll
2017-03-14 23:50:24 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-03-14 23:50:24 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-03-14 23:50:23 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-14 23:50:23 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-14 23:50:23 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-03-14 23:50:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-14 23:50:22 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-03-14 23:50:22 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-03-14 23:50:22 ----A---- C:\WINDOWS\system32\msctf.dll
2017-03-14 23:50:22 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-14 23:50:22 ----A---- C:\WINDOWS\system32\devinv.dll
2017-03-14 23:50:21 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-03-14 23:50:21 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-03-14 23:50:21 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-03-14 23:50:21 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2017-03-14 23:50:21 ----A---- C:\WINDOWS\system32\CspCellularSettings.dll
2017-03-14 23:50:21 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2017-03-14 23:50:21 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-03-14 23:50:20 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2017-03-14 23:50:20 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-03-14 23:50:20 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-03-14 23:50:20 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-03-14 23:50:20 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-03-14 23:50:19 ----A---- C:\WINDOWS\system32\winload.exe
2017-03-14 23:50:19 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-14 23:50:19 ----A---- C:\WINDOWS\system32\invagent.dll
2017-03-14 23:50:19 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-03-14 23:50:19 ----A---- C:\WINDOWS\system32\clusapi.dll
2017-03-14 23:50:18 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-03-14 23:50:17 ----A---- C:\WINDOWS\system32\winresume.exe
2017-03-14 23:50:17 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-03-14 23:50:16 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-03-14 23:50:16 ----A---- C:\WINDOWS\system32\resutils.dll
2017-03-14 23:50:16 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-03-14 23:50:15 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-14 23:50:15 ----A---- C:\WINDOWS\system32\twinapi.dll
2017-03-14 23:50:15 ----A---- C:\WINDOWS\system32\imapi2fs.dll
2017-03-14 23:50:15 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-03-14 23:50:15 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-03-14 23:50:14 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2017-03-14 23:50:14 ----A---- C:\WINDOWS\system32\wer.dll
2017-03-14 23:50:14 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-03-14 23:50:14 ----A---- C:\WINDOWS\system32\uReFS.dll
2017-03-14 23:50:14 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-03-14 23:50:14 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-14 23:50:14 ----A---- C:\WINDOWS\system32\gameux.dll
2017-03-14 23:50:13 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-03-14 23:50:13 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2017-03-14 23:50:13 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-03-14 23:50:13 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-03-14 23:50:13 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-03-14 23:50:13 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-03-14 23:50:12 ----A---- C:\WINDOWS\system32\wintrust.dll
2017-03-14 23:50:12 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-03-14 23:50:12 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-03-14 23:50:12 ----A---- C:\WINDOWS\system32\themecpl.dll
2017-03-14 23:50:12 ----A---- C:\WINDOWS\system32\authui.dll
2017-03-14 23:50:12 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-03-14 23:50:12 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-03-14 23:50:11 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-03-14 23:50:11 ----A---- C:\WINDOWS\system32\policymanager.dll
2017-03-14 23:50:11 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-03-14 23:50:11 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-03-14 23:50:11 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2017-03-14 23:50:10 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-03-14 23:50:10 ----A---- C:\WINDOWS\system32\reseteng.dll
2017-03-14 23:50:10 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-03-14 23:50:10 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-03-14 23:50:10 ----A---- C:\WINDOWS\system32\ci.dll
2017-03-14 23:50:10 ----A---- C:\WINDOWS\system32\bootux.dll
2017-03-14 23:50:10 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-03-14 23:50:09 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-03-14 23:50:09 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-03-14 23:50:09 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-03-14 23:50:09 ----A---- C:\WINDOWS\system32\stobject.dll
2017-03-14 23:50:09 ----A---- C:\WINDOWS\system32\PCPTpm12.dll
2017-03-14 23:50:09 ----A---- C:\WINDOWS\system32\icsvcext.dll
2017-03-14 23:50:09 ----A---- C:\WINDOWS\system32\dui70.dll
2017-03-14 23:50:08 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-03-14 23:50:08 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-14 23:50:08 ----A---- C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-14 23:50:08 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-03-14 23:50:08 ----A---- C:\WINDOWS\system32\DXP.dll
2017-03-14 23:50:08 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-03-14 23:50:07 ----A---- C:\WINDOWS\system32\vssapi.dll
2017-03-14 23:50:07 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2017-03-14 23:50:07 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys
2017-03-14 23:50:07 ----A---- C:\WINDOWS\system32\combase.dll
2017-03-14 23:50:06 ----A---- C:\WINDOWS\system32\systemreset.exe
2017-03-14 23:50:06 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-14 23:50:06 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2017-03-14 23:50:06 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-03-14 23:50:06 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2017-03-14 23:50:06 ----A---- C:\WINDOWS\system32\basecsp.dll
2017-03-14 23:50:06 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2017-03-14 23:50:05 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2017-03-14 23:50:05 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-03-14 23:50:05 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-03-14 23:50:05 ----A---- C:\WINDOWS\system32\sud.dll
2017-03-14 23:50:05 ----A---- C:\WINDOWS\system32\icfupgd.dll
2017-03-14 23:50:05 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2017-03-14 23:50:05 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-03-14 23:50:05 ----A---- C:\WINDOWS\system32\certprop.dll
2017-03-14 23:50:04 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-03-14 23:50:04 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-03-14 23:50:04 ----A---- C:\WINDOWS\system32\wbengine.exe
2017-03-14 23:50:04 ----A---- C:\WINDOWS\system32\gpapi.dll
2017-03-14 23:50:04 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2017-03-14 23:50:04 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-03-14 23:50:03 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-03-14 23:50:03 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-03-14 23:50:03 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-03-14 23:50:03 ----A---- C:\WINDOWS\system32\input.dll
2017-03-14 23:50:03 ----A---- C:\WINDOWS\system32\drivers\vmbkmclr.sys
2017-03-14 23:50:02 ----A---- C:\WINDOWS\system32\netiohlp.dll
2017-03-14 23:50:02 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-03-14 23:50:01 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-03-14 23:50:01 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-03-14 23:50:01 ----A---- C:\WINDOWS\system32\scksp.dll
2017-03-14 23:50:01 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-03-14 23:50:01 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-03-14 23:50:01 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-03-14 23:50:01 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\tabcal.exe
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-03-14 23:50:00 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-03-14 23:49:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-03-14 23:49:59 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2017-03-14 23:49:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-03-14 23:49:59 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2017-03-14 23:49:59 ----A---- C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-14 23:49:59 ----A---- C:\WINDOWS\system32\hgcpl.dll
2017-03-14 23:49:59 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-14 23:49:58 ----A---- C:\WINDOWS\system32\wups.dll
2017-03-14 23:49:58 ----A---- C:\WINDOWS\system32\MultiDigiMon.exe
2017-03-14 23:49:58 ----A---- C:\WINDOWS\system32\msutb.dll
2017-03-14 23:49:58 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-03-14 23:49:57 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-14 23:49:57 ----A---- C:\WINDOWS\regedit.exe
2017-03-14 23:49:56 ----A---- C:\WINDOWS\system32\XInputUap.dll
2017-03-14 23:49:56 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-03-14 23:49:56 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-14 23:49:56 ----A---- C:\WINDOWS\system32\werui.dll
2017-03-14 23:49:56 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-03-14 23:49:56 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-03-14 23:49:56 ----A---- C:\WINDOWS\system32\BluetoothDesktopHandlers.dll
2017-03-14 23:49:55 ----A---- C:\WINDOWS\system32\vds.exe
2017-03-14 23:49:55 ----A---- C:\WINDOWS\system32\mscandui.dll
2017-03-14 23:49:55 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-03-14 23:49:55 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-03-14 23:49:54 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-03-14 23:49:54 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2017-03-14 23:49:54 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-03-14 23:49:54 ----A---- C:\WINDOWS\system32\mspaint.exe
2017-03-14 23:49:54 ----A---- C:\WINDOWS\system32\msctfui.dll
2017-03-14 23:49:54 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-03-14 23:49:54 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-03-14 23:49:53 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-14 23:49:53 ----A---- C:\WINDOWS\system32\msctfp.dll
2017-03-14 23:49:53 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2017-03-14 23:49:53 ----A---- C:\WINDOWS\system32\GamePanelExternalHook.dll
2017-03-14 23:49:53 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-03-14 23:49:52 ----A---- C:\WINDOWS\system32\cdp.dll
2017-03-14 23:49:50 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-14 23:49:49 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-03-14 23:48:34 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSetup.exe
2017-03-14 22:42:52 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2017-03-13 21:26:31 ----D---- C:\Users\Peter\AppData\Roaming\Bandicam Company
2017-02-22 21:45:39 ----D---- C:\Users\Peter\AppData\Roaming\GHISLER
2017-02-22 21:45:39 ----D---- C:\totalcmd

====== List of files/folders modified in the last 1 month ======

2017-03-21 21:21:14 ----D---- C:\Program Files\trend micro
2017-03-21 21:21:10 ----D---- C:\WINDOWS\System32
2017-03-21 21:21:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-21 21:20:40 ----D---- C:\WINDOWS\Prefetch
2017-03-21 21:20:40 ----D---- C:\Program Files (x86)\Steam
2017-03-21 21:19:15 ----D---- C:\WINDOWS\Temp
2017-03-21 21:17:00 ----D---- C:\WINDOWS\system32\sru
2017-03-21 21:14:56 ----D---- C:\WINDOWS\system32\SleepStudy
2017-03-21 20:51:44 ----D---- C:\WINDOWS\AppReadiness
2017-03-21 20:51:43 ----HD---- C:\Program Files\WindowsApps
2017-03-21 15:06:56 ----RD---- C:\WINDOWS\Microsoft.NET
2017-03-20 21:20:20 ----D---- C:\WINDOWS\system32\config
2017-03-19 17:02:22 ----D---- C:\WINDOWS\system32\DriverStore
2017-03-18 10:37:11 ----D---- C:\Windows
2017-03-17 22:31:35 ----RD---- C:\Program Files
2017-03-17 21:58:24 ----D---- C:\WINDOWS\system32\catroot2
2017-03-17 15:43:04 ----D---- C:\WINDOWS\rescache
2017-03-17 15:36:42 ----D---- C:\WINDOWS\CbsTemp
2017-03-17 15:36:24 ----D---- C:\WINDOWS\system32\appraiser
2017-03-17 15:36:19 ----D---- C:\WINDOWS\WinSxS
2017-03-15 22:53:57 ----D---- C:\WINDOWS\INF
2017-03-15 22:53:02 ----RD---- C:\Program Files (x86)
2017-03-15 22:53:02 ----HD---- C:\ProgramData
2017-03-15 22:51:58 ----D---- C:\WINDOWS\SoftwareDistribution
2017-03-15 20:58:15 ----D---- C:\WINDOWS\debug
2017-03-15 20:53:46 ----D---- C:\WINDOWS\system32\WDI
2017-03-15 20:49:42 ----D---- C:\ProgramData\mcafee
2017-03-15 20:49:42 ----D---- C:\Program Files (x86)\Common Files
2017-03-15 19:38:09 ----D---- C:\WINDOWS\system32\Tasks
2017-03-15 19:38:05 ----SHDC---- C:\WINDOWS\Installer
2017-03-15 19:38:05 ----SHD---- C:\Config.Msi
2017-03-15 19:34:44 ----D---- C:\WINDOWS\system32\drivers
2017-03-15 19:32:15 ----HD---- C:\WINDOWS\ELAMBKUP
2017-03-15 01:28:56 ----RSD---- C:\WINDOWS\assembly
2017-03-15 01:13:10 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-CS
2017-03-15 01:13:10 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2017-03-15 01:13:09 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-03-15 01:13:09 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-03-15 01:13:09 ----D---- C:\WINDOWS\SYSWOW64\migration
2017-03-15 01:13:09 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-03-15 01:13:08 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2017-03-15 01:13:08 ----D---- C:\WINDOWS\SysWOW64
2017-03-15 01:12:58 ----D---- C:\WINDOWS\system32\wbem
2017-03-15 01:12:58 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-03-15 01:12:58 ----D---- C:\WINDOWS\system32\sk-SK
2017-03-15 01:12:58 ----D---- C:\WINDOWS\system32\setup
2017-03-15 01:12:58 ----D---- C:\WINDOWS\system32\oobe
2017-03-15 01:12:55 ----D---- C:\WINDOWS\system32\migration
2017-03-15 01:12:54 ----SD---- C:\WINDOWS\system32\F12
2017-03-15 01:12:54 ----D---- C:\WINDOWS\system32\en-US
2017-03-15 01:12:54 ----D---- C:\WINDOWS\system32\en-GB
2017-03-15 01:12:54 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-03-15 01:12:54 ----D---- C:\WINDOWS\system32\Boot
2017-03-15 01:12:41 ----RD---- C:\WINDOWS\PrintDialog
2017-03-15 01:12:41 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-03-15 01:12:41 ----D---- C:\WINDOWS\ShellExperiences
2017-03-15 01:12:41 ----D---- C:\WINDOWS\bcastdvr
2017-03-15 01:12:41 ----D---- C:\WINDOWS\AppPatch
2017-03-15 01:12:40 ----RD---- C:\Program Files\Windows Defender
2017-03-15 01:12:40 ----D---- C:\Program Files\Windows Photo Viewer
2017-03-15 01:12:40 ----D---- C:\Program Files\Windows Mail
2017-03-15 01:12:40 ----D---- C:\Program Files\Internet Explorer
2017-03-15 01:12:40 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-03-15 01:12:40 ----D---- C:\Program Files (x86)\Windows Mail
2017-03-15 01:12:40 ----D---- C:\Program Files (x86)\Windows Defender
2017-03-15 01:12:40 ----D---- C:\Program Files (x86)\Internet Explorer
2017-03-15 00:45:29 ----D---- C:\WINDOWS\system32\MRT
2017-03-15 00:42:57 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-03-15 00:27:38 ----D---- C:\WINDOWS\Tasks
2017-03-14 23:19:47 ----D---- C:\Users\Peter\AppData\Roaming\uTorrent
2017-03-14 23:04:56 ----D---- C:\ProgramData\Apple
2017-03-14 23:04:56 ----D---- C:\Program Files\Common Files
2017-03-14 23:03:10 ----SHD---- C:\System Volume Information
2017-03-13 21:25:38 ----D---- C:\Program Files (x86)\Bandicam
2017-03-13 21:25:34 ----D---- C:\Program Files (x86)\BandiMPEG1
2017-03-13 21:23:38 ----D---- C:\Users\Peter\AppData\Roaming\TS3Client
2017-03-13 21:23:00 ----AD---- C:\Program Files\TeamSpeak 3 Client
2017-03-10 06:17:56 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2017-03-04 08:09:22 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2017-03-04 02:11:51 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-03-04 02:10:15 ----AD---- C:\Program Files (x86)\Microsoft Office
2017-02-22 21:46:48 ----SD---- C:\Users\Peter\AppData\Roaming\Microsoft

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 amdkmpfd;@oem47.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-06-04 73976]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 FACEIT;FACEIT; \??\C:\WINDOWS\System32\Drivers\FACEIT.sys [2017-02-20 4205568]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 amdkmdag;amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0311139.inf_amd64_2aa9c01a2af97538\atikmdag.sys [2017-02-13 32699928]
R3 amdkmdap;amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0311139.inf_amd64_2aa9c01a2af97538\atikmpag.sys [2017-02-13 525848]
R3 AtiHDAudioService;@oem119.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-12-08 101376]
R3 rt640x64;@oem11.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-03-23 896752]
R3 RTSUER;@oem103.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-27 402136]
S0 amdkmafd;@oem121.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2016-08-18 49448]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 amdkmdan;amdkmdan; C:\WINDOWS\system32\DRIVERS\atikmnag.sys [2016-04-06 20255232]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 dg_ssudbus;@oem53.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-10-03 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;@oem26.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2017-02-13 299544]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2015-11-02 351944]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll" = %windir%\system32\inetsrv\apphostsvc.dll
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 CDPUserSvc_308e2;CDPUserSvc_308e2; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusti; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2017-02-18 3704520]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-12-07 31776]
R2 OneSyncSvc_308e2;Sync Host_308e2; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2014-04-15 389896]
R3 PimIndexMaintenanceSvc_308e2;Kontaktné údaje_308e2; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-03-13 1590560]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\TimeBrokerServer.dll
R3 UnistoreSvc_308e2;Ukladací priestor používateľských údajov_308e2; C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-07-16 52920]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-29 1102472]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 MessagingService_308e2;MessagingService_308e2; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2017-01-29 207040]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll" = %systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

#11 Příspěvek od **Roli** » 22 bře 2017 18:21

Stiskni klávesy Windows + R do okna Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)
Služba Google Update (gupdatem)
Cyberlink RichVideo64 Service

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.

V Knihovně Plánovače úloh zakaž Google Update bude to tam vícekrát.

Pokud ani jedno nezabere dej vědět a v rámci možností testnem hardware.

backpase · #12 Příspěvek od **backpase** » 22 bře 2017 19:20

Vykonal som všetko podľa tvojich inštrukcii, zajtra dám vedieť ako to funguje, väčšinou sa zasekáva pri zapnutí po niekoľko hodinovom vypnutí takže teraz si to už nevšimnem ale zajtra sem napíšem, zatiaľ ďakujem

backpase · #13 Příspěvek od **backpase** » 23 bře 2017 15:30

Nie je to ešte úplne v poriadku, po zapnutí zamrzol asi na minútu a potom išiel normálne ale ak som chcel spustiť iný program tak mi zamrzol najskôr úplne, potom som mohol hýbať kurzorom no nešiel dať ani správca úloh takže som musel ako vždy reštartovať

#14 Příspěvek od **Roli** » 23 bře 2017 17:34

Stáhni HD Tune a otestuj HDD.

Benchmark - Test disku Klikni na tlačítko Start a vyčkej dokud se nezaplní celý graf. Poté se dozvíš přenosovou rychlost a přístupový čas pevného disku.

Info Přesná kapacita, souborový systém, podporované funkce, verze firmware, sériové číslo a typ zapojení disků.

Health - Kondice Seznam důležitých parametrů a jejich hodnoty. Ideální je mít všude OK.

Když je nějaká položka žlutá pravděpodobně brzy změní status na failed. Když je červená má status failed, to by znamenalo výměnu disku.

Error Scan - Hledání chyb Klikni na tlačítko Start a program prozkoumá disk zda na něm nejsou vadné bloky.

Pokud na konci testu jsou všechny zelené, je vše v pořádku. Když je byť jeden z nich červený, doporučuji zazálohovat data a počítat s výměnou disku.

Teplota Teploměr nahoře a číslo vedle něj znázorňují teplotu disku. Normální hodnota je pod 50°C. Teplota ale nesmí přesáhnout 60°C, program upozorní když dosáhne hranice 55°C.

Stáhni MEMTEST

soubor rozbal a spusť exe soubor.

Připoj flashdisk pozor vše co na něm je bude smazáno !,

v okénku Select your USB Flash Drive vyber tento disk a dej Create.

Během chvilky se Memtest nainstaluje.

Flashdisk nech v USB, restartuj PC a nabootuj z něj.

Před tím samozřemě musíš v Bios Setup do kterého se dostaneš při restartu mačkáním klávesy :

* DEL
* F2
* F1
* F10

záleží na PC, ale vždy je to na monitoru napsáno,

otevři nabídku ADVANCED BIOS FEATURES a vyhledej Boot Devices 0 až 4 nebo Boot Sequence.

Na první místo nastav Flashdisk,

na druhé pevný disk HDD, u obou položek bývá napsán i výrobce.

Stisknutím Save většinou je to F10 a potvrzením Entrem uložíš nastavení,

pak ještě stisknutím Save and Exit se dostaneš z Biosu.

Test nech projet minimálně jednou, ideálně však několikrát třeba přes noc a s každým RAM modulem zvlášť.

Pak dej vědět jak vše dopadlo.

backpase · #15 Příspěvek od **backpase** » 23 bře 2017 21:52

Ak niečo pokazím pri tom druhom nepoškodím nič? Vyzerá to komplikovanejšie tak sa radšej pýtam, cez víkend si na to nájdem čas

VIRY.CZ

Zamŕzanie pri spúšťaní aplikácii

Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii

Re: Zamŕzanie pri spúšťaní aplikácii